Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-40747

Malicious code in bioql PyPI...

9.1CVSS9AI score0.00577EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/06/20 12:0 a.m.5 views

A Common Pool of Privacy Problems: Legal and Technical Lessons from a Large-Scale Web-Scraped Machine Learning Dataset

We investigate the contents of web-scraped data for training AI systems, at sizes where human dataset curators and compilers no longer manually annotate every sample. Building off of prior privacy concerns in machine learning models, we ask: What are the legal privacy implications of web-scraped...

6.7AI score
Exploits0
Qualys Blog
Qualys Blog
added 2024/11/14 7:33 p.m.7 views

Best Practices for Cloud Compliance

Introduction In today’s data-driven landscape, businesses are embracing cloud computing technology for its efficiency and scalability. A Cloud Security Alliance CSA report revealed that 98% of organizations worldwide use cloud services. Yet, more than 1/3rd of those organizations may not be using...

6.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2024/02/20 1:30 p.m.21 views

The New York Times vs. OpenAI: A Turning Point for Web Scraping?

In a recent blog, we covered the blurry lines of legality surrounding web scraping and how the advent of artificial intelligence AI and large language models LLMs further complicates the matter. Shortly after publishing the blog, a significant legal development began unfolding: The New York Times...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/12/07 1:45 p.m.18 views

Is Web Scraping Illegal? Depends on Who You Ask

Web scraping has existed for a long time, and depending on who you ask, it can be loved or hated. But where is the line drawn between extracting data for legitimate business purposes and malicious data extraction that hurts business? The bar is getting blurrier by the day, and the introduction of...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2023/08/08 12:30 p.m.29 views

Nac_Bypass_Agent - This Function Combines All The Above Functions And Takes Necessary Information From The User To Change The IP And MAC Address, Start The Responder And Tcpdump Tools, And Run The Nbtscan Tool

Nac Bypass Agent This piece of code is a script written in Python and designed to run on Kali Linux. Here is a summary explaining what each function does: runcommandcommand: This function runs the command it takes as input and returns its output. killnetworkservices: This function stops the...

7.4AI score
Exploits0References1
NVD
NVD
added 2023/07/03 6:15 p.m.33 views

CVE-2023-36817

tktchurch/website contains the codebase for The King's Temple Church website. In version 0.1.0, a Stripe API key was found in the public code repository of the church's project. This sensitive information was unintentionally committed and subsequently exposed in the codebase. If an unauthorized...

9.1CVSS7.9AI score0.00577EPSS
Exploits0References1
Prion
Prion
added 2023/06/05 8:15 p.m.25 views

Design/Logic Flaw

Kanboard is open source project management software that focuses on the Kanban methodology. Versions prior to 1.2.30 are subject to an Insecure direct object reference IDOR vulnerability present in the application's URL parameter. This vulnerability enables any user to read files uploaded by any...

4CVSS6.3AI score0.00625EPSS
Exploits1References2Affected Software1
Imperva Blog
Imperva Blog
added 2022/08/10 12:51 p.m.15 views

Is it Illegal to Scrape a Website for Content?

Web scraping is the process of using bots to extract information from a website. In recent years, the debate over web scraping is growing more complex as business intelligence and data privacy issues arise. The practice of web scraping has gone on for nearly as long as there have been websites. T...

0.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/07/28 2:38 p.m.19 views

“Orwellian in the extreme” food store installs facial recognition cameras to stop crime, faces backlash

A convenience shop chain is under fire and facing legal charges for installing cameras with facial recognition software in 35 of its branches across the UK. The cameras analyze and convert video face captures into biometric data. The data is compared with a database of people who have committed...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2021/03/10 2:44 p.m.259 views

Breach Exposes Verkada Security Camera Footage at Tesla, Cloudflare

Hackers claim to have breached Silicon Valley startup Verkada to gain unauthorized access to live feeds of 150,000 security cameras. They claim, the hack gave them widespread access to surveillance footage within companies such as Tesla and Cloudflare, as well as hospitals, companies,...

0.6AI score
Exploits0References6
Krebs on Security
Krebs on Security
added 2020/11/04 7:32 p.m.22 views

Why Paying to Delete Stolen Data is Bonkers

Companies hit by ransomware often face a dual threat: Even if they avoid paying the ransom and can restore things from scratch, about half the time the attackers also threaten to release sensitive stolen data unless the victim pays for a promise to have the data deleted. Leaving aside the notion...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2020/08/03 4:26 p.m.41 views

Garmin Pays Up to Evil Corp After Ransomware Attack — Reports

Garmin, the GPS and aviation tech specialist, reportedly negotiated with Evil Corp for an decryption key to unlock its files in the wake of a WastedLocker ransomware attack. The attack, which started on July 23, knocked out Garmin’s fitness-tracker services, customer-support outlets and commercia...

0.5AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/11/13 10:19 p.m.50 views

Consumer Data Privacy Rights: Emerging Tech Blurs Lines

LAS VEGAS – From drones to facial recognition, new technology applications are introducing unique consumer privacy issues for civil society — and U.S. lawmakers and legal teams are struggling to keep up. Privacy is a fundamental human right for consumers, but new ways in which data is collected a...

Exploits0References20
ThreatPost
ThreatPost
added 2018/08/13 5:29 p.m.12 views

Black Hat 2018: IoT Security Issues Will Lead to Legal ‘Feeding Frenzy’

LAS VEGAS – The troves of insecure internet of things IoT devices have not yet led to widespread legal implications. But that’s set to change, a well-known attorney warned at Black Hat USA last week. Ijay Palansky, partner at the law firm Armstrong Teasdale, said at the conference last week that...

1.2AI score
Exploits0References5
Schneier on Security
Schneier on Security
added 2018/02/07 12:19 p.m.13 views

Cabinet of Secret Documents from Australia

This story of leaked Australian government secrets is unlike any other I've heard: It begins at a second-hand shop in Canberra, where ex-government furniture is sold off cheaply. The deals can be even cheaper when the items in question are two heavy filing cabinets to which no-one can find the...

6.4AI score
Exploits0
ThreatPost
ThreatPost
added 2017/09/18 2:19 p.m.14 views

Pirate Bay Spotted Hosting Monero Cryptocurrency Miner

A cryptocurrency miner surfaced on the world’s largest torrenting site for a day over the weekend, raising the ire of users unaware the tool was there, let alone leveraging their machine’s computing power. Users noticed the miner Friday night on The Pirate Bay, a site that acts as a treasure trov...

6.9AI score
Exploits0References7
ThreatPost
ThreatPost
added 2017/09/08 1:23 p.m.17 views

Many Questions, Few Answers For Equifax Breach Victims

Americans who either applied for new jobs, loans, or just wanted to check their credit score via Equifax are having a difficult time getting answers as to whether they are part of the breach of 143 million records that occurred Thursday. The company disclosed yesterday it was the victim of a...

8.3AI score
Exploits0References25
ThreatPost
ThreatPost
added 2016/03/02 5:17 p.m.12 views

Gentle Reminder at RSA: Hacking Back is a Bad Idea

SAN FRANCISCO—Surely all breached organizations consider hacking back as some means of response to being attacked and losing intellectual property. Thankfully there was a room full of lawyers at RSA Conference on Wednesday to remind IT pros of what a colossally bad idea that is. Putting aside the...

7.1AI score
Exploits0References1
0day.today
0day.today
added 2015/09/25 12:0 a.m.57 views

X2Engine 4.2 - Arbitrary File Upload / CSRF Vulnerabilities

Exploit for php platform in category web applications X2Engine 4.2 - Arbitrary File Upload Details: It was discovered that authenticated users were able to upload files of any type providing that the file did not have an extension that was listed in the following blacklist: const EXTBLACKLIST =...

7.5CVSS0.2AI score0.07505EPSS
Exploits5
Rows per page
Query Builder