13 matches found
CVE-2026-25643
Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...
Sensitive Illinois Voter Data Exposed by Contractor’s Unsecured Databases
Social Security numbers, death certificates, voter applications, and other personal data were accessible on the open internet, highlighting the ongoing challenges in election security...
The U.S. ‘No Fly List’ Found On the Open Internet
By Habiba Rashid The Ohio-based airline, CommuteAir, responsible for the incident confirmed the legitimacy of the data to the media. This is a post from HackRead.com Read the original post: The U.S. ‘No Fly List’ Found On the Open Internet...
The Election That Saved the Internet From Russia and China
Open-internet advocates are breathing a sigh of relief after a recent election for the International Telecommunications Union's top leadership...
SQL Injection Vulnerability in Panavision Cloud Bridge
Panavision Cloud Bridge e-Bridge is a system integration middleware used to bridge open Internet resources with enterprise information systems. A SQL injection vulnerability exists in e-Bridge, which can be exploited by attackers to obtain sensitive database information...
Data-Enriched Profiles on 1.2B People Exposed in Gigantic Leak
An open Elasticsearch server has exposed the rich profiles of more than 1.2 billion people to the open internet. First found on October 16 by researchers Bob Diachenko and Vinny Troia, the database contains more than 4 terabytes of data. It consists of scraped information from social media source...
A Hacking Spree, a Fight for Open Internet, and More News
Catch up on the most important news today in 2 minutes or less...
Hurdles Remain After Senate Votes To Restore Net Neutrality
The U.S. Senate this week gave the nod to restoring net neutrality regulations that would prevent ISPs from controlling access to certain websites. But roadblocks remain, even as the legislation is pushed on the fast track to a House vote: Bigwig ISPs, independent ISPs, small businesses, Democrat...
FCC Just Killed Net Neutrality—What Does This Mean? What Next?
Net neutrality is DEAD—3 out of 5 federal regulators voted Thursday to hand control of the future of the Internet to cable and telecommunication companies, giving them powers to speed up service for websites they favor or slow down others. As proposed this summer, the US Federal Communications...
HackerOne: Private partial disclosure of h1 infrastructure
Description I've found that following servers & services can be potentially interesting when attacking h1-infrastructure: Payments Admin ██████ API Docs ██████████ API █████████ MailCatcher ██████████ Story Book ███ Karma ████████ Core Test Server █████████ Core Staging ████ Core Production...
Lobbyists Press Trump to Support Strong Encryption, Surveillance Reform
A lobbying organization that includes some of the Internet’s most valuable entities made a plea to President-Elect Donald Trump to support the expansion of strong encryption and reform government surveillance activities. The Internet Association on Monday sent a letter to Trump’s transition team...
Security, Tech Communities Rally to Support GnuPG
The last year has seen a big swing in the support from the technology community for open-source security tools, many of which are maintained by tiny staffs or volunteers. OpenSSL last year received a large chunk of funding from the Core Infrastructure Initiative, and now it’s GnuPG’s turn. After ...
Tumbleweed SecureTransport 4.6.1 FileTransfer - ActiveX Buffer Overflow
Tumbleweed SecureTransport 4.6.1 FileTransfer - ActiveX Buffer Overflow !-- aushack.com - Vulnerability Advisory ----------------------------------------------- Release Date: 07-Apr-2008 Software: Tumbleweed Communications - SecureTransport FileTransfer http://www.tumbleweed.com/ Description:...