CVE-2026-30574

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-sales.php file. The application fails to verify if the requested sales quantity txtqty exceeds the available stock level. An attacker can manipulate the request to purchase a quantity that is...

CVE-2026-30574

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-sales.php file. The application fails to verify if the requested sales quantity txtqty exceeds the available stock level. An attacker can manipulate the request to purchase a quantity that is...

The Disgruntled Employee?

When we talk about cyber threat actors one of the terms we use is “Disgruntled Employee”. Everyone knows what that means; someone who is fed up at work, has an axe to grind, feels aggrieved etc. There are sometimes other factors though, ones that aren’t as obvious… The symptoms and effects I was...

FDA, DHS Investigating St. Jude Device Vulnerabilities

The U.S. government has entered into the St. Jude-MedSec-Muddy Waters fray with an investigation into claims St. Jude medical devices are vulnerable to cyberattacks. The Food and Drug Administration and Department of Homeland Security also apparently disapprove of the approach taken by MedSec and...

St. Jude Alleges False Claims, Stock Manipulation in Suit Against Med Sec, Muddy Waters

St. Jude Medical yesterday filed a lawsuit alleging that investment research firm Muddy Waters and healthcare security research company Med Sec made false claims in a report focused on the security of St. Jude products. The report released Aug. 25 warned of potentially catastrophic cybersecurity...

Scottrade Breach Affects 4.6 Million Users

Discount brokerage firm Scottrade began firing off emails late last week, warning customers that as a result of a breach, their names and street addresses may have been stolen from its system. Scottrade’s statement on the incident, published on its site last Thursday doesn’t exactly rule out that...

Alleged Russian Cybercriminal Extradited to U.S.

Vladimir Zdorovenin, an alleged prolific Russian cybercriminal, has arrived in New York City following his arrest and subsequent extradition by Swiss authorities. The FBI had been working to find and extradite Zdorovenin for several years. Originally indicted under seal in May 2007, the 54-year-o...

Pump and Dump Hacker Gets 7-Year Sentence

An Indian national was sentenced to 81 months in prison for hacking into online brokerage accounts and using those accounts to manipulate stock prices for personal gain. Read the full article. Computerworld...

SEC: BroCo Investments Hijacked Accounts

A U.S. federal judge has agreed to freeze the assets of a company being accused of manipulating the stocks of 38 companies listed on the Nasdaq and New York Stock Exchange via compromised trading accounts. Read the full article. CNet...