boca-raton-hurricane-lawyer-insurance-claim-damage.com XSS vulnerability

Open Bug Bounty ID: OBB-584302 Description| Value ---|--- Affected Website:| boca-raton-hurricane-lawyer-insurance-claim-damage.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting /...

rosewoodinsurance.com XSS vulnerability

Open Bug Bounty ID: OBB-579879 Description| Value ---|--- Affected Website:| rosewoodinsurance.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

Insurance Customers’ Personal Data Exposed Due to Misconfigured NAS Server

Detailed personal information from thousands of insurance customers in Maryland–as well as login credentials for a massive national insurance claims database–was exposed due to an an open port on a NAS server. The misconfiguration exposed a wealth of information on Maryland Joint Insurance...

January 24, 2018 – Morning Cyber Coffee Headlines – “Taco” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! January 24, 2018 - Headlines Carbon Black in the News: Amazon Web Services Buys...

internationalstudentinsurance.com XSS vulnerability

Open Bug Bounty ID: OBB-515482 Description| Value ---|--- Affected Website:| internationalstudentinsurance.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

digitalinsuranceagenda.com XSS vulnerability

Open Bug Bounty ID: OBB-472685 Description| Value ---|--- Affected Website:| digitalinsuranceagenda.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated...

Mitsui Sumitomo Insurance SumaHo application for Android certificate validation vulnerability

Mitsui Sumitomo Insurance SumaHo application for Android is an Android-based insurance product management application from Mitsui Sumitomo Insurance in Japan. A certificate validation vulnerability exists in versions 3.0.0 and earlier of the Mitsui Sumitomo Insurance SumaHo application for Androi...

Source: Deloitte Breach Affected All Company Email, Admin Accounts

Deloitte, one of the world's "big four" accounting firms, has acknowledged a breach of its internal email systems, British news outlet The Guardian revealed today. Deloitte has sought to downplay the incident, saying it impacted "very few" clients. But according to a source close to the...

OWASP AntiSamy CVE-2017-14735 Cross Site Scripting Vulnerability

Description OWASP AntiSamy is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the...

A Framework for Cyber Security Insurance

New paper: "Policy measures and cyber insurance: a framework," by Daniel Woods and Andrew Simpson, Journal of Cyber Policy, 2017. Abstract: The role of the insurance industry in driving improvements in cyber security has been identified as mutually beneficial for both insurers and policy-makers. ...

August 30, 2017 – Morning Cyber Coffee Headlines – “Eiffel Tower” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 30, 2017 - Headlines Carbon Black in the News: Carbon Black names Marco...

August 22, 2017 – Morning Cyber Coffee Headlines – “Hamilton” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 22, 2017 - Headlines The Intelligence Community’s Top 3 Cybersecurity...

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

Roombas will Spy on You

The company that sells the Roomba autonomous vacuum wants to sell the data about your home that it collects. Some questions: What happens if a Roomba user consents to the data collection and later sells his or her home -- especially furnished -- and now the buyers of the data have a map of a home...

Cyber Insurance Rates to Rise – What Should I Do?

Organizations manage risk in three ways: they accept it, they take out insurance against it, or they take active measures to diminish its potential impact. These active measures commonly include deploying or enhancing or removing technology, updating policies and procedures, instituting training...

preferred-stock.com XSS vulnerability

Vulnerable URL: http://www.preferred-stock.com/screener.php?exchange=-=Insurancequote=all=1"...

bangkokinsurance.com XSS vulnerability

Vulnerable URL: http://www.bangkokinsurance.com/home/garagedetail.asp?garageid=73&s3;=1"...

June 27, 2017 – Morning Cyber Coffee Headlines – “Helen Keller” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! June 27, 2017 - Headlines 'Petya' ransomware attack strikes companies across...

mpi.mb.ca XSS vulnerability

Vulnerable URL: https://www.mpi.mb.ca/en/Reg-and-Ins/Insurance/Trip/Rental/Pages/rentalcarinsurance.aspx?FollowSite=0=%27-confirm/OPENBUGBOUNTY/-%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 07.09.2017 Vulnerability type:| XSS Vulnerability status:| Publicly...

insurance-forums.net XSS vulnerability

Vulnerable URL: http://www.insurance-forums.net/forum/life-insurance-forum/difference-between-traditional-term-mortgage-protection-term-t88905.html/...