⚠️ VULNERABILITY DISCLOSURE 1[−]
20 OctHackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login CredentialsUnknown threat actors have been observed attempting to exploit a now-patched security flaw in the open-source Roundcube webmail software as part of a phishing attack designed to steal user credentials. Russian cybersecurity company Positive Technologies said it discovered last mo…THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 1[−]
20 OctInternet Archive breached again through stolen access tokensThe Internet Archive was breached again, this time on their Zendesk email support platform after repeated warnings that threat actors stole exposed GitLab authentication tokens. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 1[−]
20 OctCyprus Thwarted a Digital Attack Against the Government’s Main Online PortalCyprus said that it has successfully thwarted a DDoS attack aimed at blocking access to the government’s central online portal. The post Cyprus Thwarted a Digital Attack Against the Government’s Main Online Portal appeared first on SecurityWeek .SECURITYWEEK.COM
📡 INFOSEC NEWS 1[−]
20 OctSevere flaws in E2EE cloud storage platforms used by millionsSeveral end-to-end encrypted (E2EE) cloud storage platforms are vulnerable to a set of security issues that could expose user data to malicious actors. [...]BLEEPINGCOMPUTER.COM