1181 matches found
Who Is Afraid of More Spams and Scams?
Security researchers who rely on data included in Web site domain name records to combat spammers and scammers will likely lose access to that information for at least six months starting at the end of May 2018, under a new proposal that seeks to bring the system in line with new European privacy...
IBM Application Performance Management for Monitoring&Diagnostics Information Disclosure Vulnerability
IBM Application Performance Management for Monitoring&Diagnostics is an application performance management tool for monitoring and diagnostics from IBM USA. A security vulnerability exists in IBM Application Performance Management for Monitoring&Diagnostics. An attacker could exploit the...
CVE-2018-1387
IBM Application Performance Management for Monitoring & Diagnostics IBM Monitoring 8.1.3 and 8.1.4 may release sensitive personal data to the staff who can access to the database of this product. IBM X-Force ID: 138210...
GDPR: The Stakes Are High and Time Is of the Essence
With the General Data Protection Regulation GDPR going into effect in under three months, the countdown clock is fast approaching zero for organizations worldwide that handle personal data of EU residents. GDPR is a very broad and wide-ranging regulation that requires organizations to obtain a lo...
Hackers spread Android spyware through Facebook using Fake profiles
By Waqas The Android spyware was used to steal personal data of This is a post from HackRead.com Read the original post: Hackers spread Android spyware through Facebook using Fake profiles...
CVE-2018-7216
Cross-site request forgery CSRF vulnerability in esop/toolkit/profile/regData.do in Bravo Tejari Procurement Portal allows remote authenticated users to hijack the authentication of application users for requests that modify their personal data by leveraging lack of anti-CSRF tokens...
CVE-2018-7216
Cross-site request forgery CSRF vulnerability in esop/toolkit/profile/regData.do in Bravo Tejari Procurement Portal allows remote authenticated users to hijack the authentication of application users for requests that modify their personal data by leveraging lack of anti-CSRF tokens...
Countdown to GDPR: For GDPR Compliance, Web App Security Is a Must
With web and mobile apps becoming a preferred vector for data breaches, organizations must include application security in their plans for complying with the EU's General Data Protection Regulation GDPR. First discussed in the 1990s and turned into law in 2016, GDPR goes into effect in May of thi...
GDPR and Breach Detection: How to Ask the Right Questions to Meet the GDPR Breach Notification Rule
It is now less than four months before the General Data Protection Regulation GDPR becomes effective. This new data regulation of the European Union is designed to provide individuals with rights and protections over their personal data collected by business around the world. It aims to unify dat...
Data Privacy in the Age of IoT
On Data Privacy Day, January 28th, we should have all taken a few moments to think more carefully about safeguarding our personal data, staying safe online, and improving our privacy habits. Just what does that mean in the age of IoT — the Internet of Things? In previous years, cyber threats most...
How to Protect Your Personal Data in 3 Simple Ways
By Carolina As the big tech corporations are coming under increased attack This is a post from HackRead.com Read the original post: How to Protect Your Personal Data in 3 Simple Ways...
Meltdown and Spectre fallout: patching problems persist
Last week, the disclosure by multiple teams from Graz and Pennsylvania University, Rambus, Data61, Cyberus Technology, and Google Project Zero of vulnerabilities under the aliases Meltdown and Spectre rocked the security world, sending vendors scurrying to create patches, if at all possible, and...
Three Reasons Why GDPR Encourages Pseudonymization
The General Data Protection Regulation GDPR is the European Union’s new data regulation designed to provide individuals with rights and protections over their personal data that is collected or created by businesses or government entities. It unifies data protection regulation across all member...
The seven most colossal data breaches of 2017
By Logan Strain If it seems like the words “leak,” “compromised data,” and “breach” are constantly in the news, it’s not just you. The frequency of major data breaches is increasing. According to the Identity Theft Resource Center, the number of breaches is expected to top 1,500 in 2017. That’s a...
OV-chipkaart: Personal data of all Dutch public transport cards ("OV-Chipkaart") accessible
███████████████████████████████...
Uber Paid 20-Year-Old Florida Hacker $100,000 to Keep Data Breach Secret
Last year, Uber received an email from an anonymous person demanding money in exchange for the stolen user database. It turns out that a 20-year-old Florida man, with the help of another, breached Uber's system last year and was paid a huge amount by the company to destroy the data and keep the...
Massive Breach Exposes Keyboard App that Collects Personal Data On Its 31 Million Users
In the digital age, one of the most popular sayings is—if you're not paying, then you're not the customer, you're the product. While downloading apps on their smartphones, most users may not realize how much data they collect on you. Believe me; it’s way more than you can imagine. Nowadays, many...
CVE-2017-1484
IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 7.0 and 8.0 could allow an authenticated attacker to obtain information such as user personal data. IBM X-Force ID: 128622...
CVE-2017-1484
IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 7.0 and 8.0 could allow an authenticated attacker to obtain information such as user personal data. IBM X-Force ID: 128622...
IBM WebSphere Commerce Information Disclosure Vulnerability (CNVD-2017-37836)
IBM WebSphere Commerce is a suite of e-business solutions from IBM in the United States. The solution supports all sales business models, including B2C, B2B and B2B2C, on a single customer interaction platform. An information disclosure vulnerability exists in IBM WebSphere Commerce. A remote...