Lucene search
K

125 matches found

Microsoft Secure
Microsoft Secure
added 2022/10/06 4:0 p.m.14 views

Microsoft publishes new report on holistic insider risk management

The risk landscape for organizations has changed significantly in the past few years. The amount of data captured, copied, and consumed is expected to grow to more than 180 zettabytes through 2025.1 Traditional ways of identifying and mitigating risks don’t always work. Historically, organization...

6.9AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/10/06 4:0 p.m.17 views

Microsoft publishes new report on holistic insider risk management

The risk landscape for organizations has changed significantly in the past few years. The amount of data captured, copied, and consumed is expected to grow to more than 180 zettabytes through 2025.1 Traditional ways of identifying and mitigating risks don’t always work. Historically, organization...

6.9AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/10/06 4:0 p.m.7 views

Microsoft publishes new report on holistic insider risk management

The risk landscape for organizations has changed significantly in the past few years. The amount of data captured, copied, and consumed is expected to grow to more than 180 zettabytes through 2025.1 Traditional ways of identifying and mitigating risks don’t always work. Historically, organization...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/10/06 4:0 p.m.10 views

Microsoft publishes new report on holistic insider risk management

The risk landscape for organizations has changed significantly in the past few years. The amount of data captured, copied, and consumed is expected to grow to more than 180 zettabytes through 2025.1 Traditional ways of identifying and mitigating risks don’t always work. Historically, organization...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2022/01/08 7:15 a.m.29 views

Facebook Launches 'Privacy Center' to Educate Users on Data Collection and Privacy Options

Meta Platforms, the company formerly known as Facebook, on Friday announced the launch of a centralized Privacy Center that aims to "educate people" about its approach with regards to how it collects and processes personal information across its family of social media apps. "Privacy Center provid...

7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/09/14 3:29 p.m.22 views

The business case to expand ISO 27001 certification with privacy controls

Third-party inspections of organizational privacy risk remain a novel trend. Only five years ago, the most basic of common controls frameworks for this risk taxonomy did not even exist. Today, privacy has captured the collective global consciousness. Every segment, from regulators and industry...

2.5AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/08/24 7:15 p.m.4 views

CVE-2021-30856

This issue was addressed by adding a new Remote Login option for opting into Full Disk Access for Secure Shell sessions. This issue is fixed in macOS Big Sur 11.3. A malicious unsandboxed app on a system with Remote Login enabled may bypass Privacy preferences...

9.1CVSS5.4AI score0.00936EPSS
Exploits0References2
Schneier on Security
Schneier on Security
added 2021/04/05 11:15 a.m.53 views

Wi-Fi Devices as Physical Object Sensors

The new 802.11bf standard will turn Wi-Fi devices into object sensors: In three years or so, the Wi-Fi specification is scheduled to get an upgrade that will turn wireless devices into sensors capable of gathering data about the people and objects bathed in their signals. "When 802.11bf will be...

2.5AI score
Exploits0
ThreatPost
ThreatPost
added 2021/01/13 10:3 p.m.50 views

TikTok Takes Teen Accounts Private

TikTok has decided to boost privacy measures for its underage users, the popular video-sharing social-media company announced. TikTok’s popularity is being driven by teens — the company reported in 2019 about 60 percent of its 26.5 monthly users are between the ages of 16 and 24, and these latest...

6.8AI score
Exploits0References10
The Hacker News
The Hacker News
added 2020/12/02 7:47 a.m.39 views

CISO with a small security team? Learn from your peers' experience with this free e-book

CISOs with small security teams hold an intensive juggling act. They're responsible for sustaining the company's security resilience, ensuring compliance is adhered to and implementing privacy controls. In between these tasks, they need to follow up on board updates, lead cross-team communication...

Exploits0
The Hacker News
The Hacker News
added 2020/06/23 3:6 p.m.3 views

New Privacy Features Added to the Upcoming Apple iOS 14 and macOS Big Sur

Unprecedented times call for unprecedented measures. No, we're not talking about 'coronavirus,' the current global pandemic because of which Apple—for the very first time in history—organized its Worldwide Developer Conference WWDC virtually. Here we're talking about a world in which we are all...

5.9AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2020/05/10 11:0 a.m.41 views

How to Set Your Facebook, Twitter, and Instagram to Control Who Sees What

Pick who sees your tweets, posts, and stories—and choose what you want to see, too...

1.6AI score
Exploits0
Github Security Blog
Github Security Blog
added 2020/05/07 6:4 p.m.48 views

Potential Observable Timing Discrepancy in Wagtail

Impact A potential timing attack exists on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through a character-by-character string comparison, and so an attacker who is able to measure the time taken by this...

6.1CVSS2.4AI score0.0025EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/05/07 12:0 a.m.22 views

FreeBSD : Wagtail -- potential timing attack vulnerability (d5fead4f-8efa-11ea-a5c8-08002728f74c)

Wagtail release notes : CVE-2020-11037: Potential timing attack on password-protected private pages This release addresses a potential timing attack on pages or documents that have been protected with a shared password through Wagtail's 'Privacy' controls. This password check is performed through...

6.1CVSS5.2AI score0.0025EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2020/05/04 12:0 a.m.24 views

Wagtail -- potential timing attack vulnerability

Wagtail release notes: CVE-2020-11037: Potential timing attack on password-protected private pages This release addresses a potential timing attack on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through ...

6.1CVSS1.4AI score0.0025EPSS
Exploits0References2
NVD
NVD
added 2020/04/30 11:15 p.m.28 views

CVE-2020-11037

In Wagtail before versions 2.7.3 and 2.8.2, a potential timing attack exists on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through a character-by-character string comparison, and so an attacker who is...

6.1CVSS6.4AI score0.0025EPSS
Exploits0References5
OSV
OSV
added 2020/04/30 11:15 p.m.12 views

CVE-2020-11037

In Wagtail before versions 2.7.3 and 2.8.2, a potential timing attack exists on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through a character-by-character string comparison, and so an attacker who is...

4.7CVSS5.5AI score
Exploits0References5
PyPA
PyPA
added 2020/04/30 11:15 p.m.4 views

PYSEC-2020-153

In Wagtail before versions 2.7.2 and 2.8.2, a potential timing attack exists on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through a character-by-character string comparison, and so an attacker who is...

6.1CVSS6.8AI score0.0025EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/04/30 11:15 p.m.14 views

Design/Logic Flaw

In Wagtail before versions 2.7.2 and 2.8.2, a potential timing attack exists on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through a character-by-character string comparison, and so an attacker who is...

1.9CVSS4.9AI score0.0025EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/30 10:20 p.m.29 views

CVE-2020-11037 Potential Observable Timing Discrepancy in Wagtail

In Wagtail before versions 2.7.3 and 2.8.2, a potential timing attack exists on pages or documents that have been protected with a shared password through Wagtail's "Privacy" controls. This password check is performed through a character-by-character string comparison, and so an attacker who is...

6.1CVSS6.3AI score0.0025EPSS
Exploits0References5
Rows per page
Query Builder