McAfee sues former employees for leaking trade secrets
Security firm McAfee has sued three former employees. The employees are accused of wanting to steal trade secrets and pass them on to their new employer, competitor Tanium. That's what ZDNet reports.
The three employees, Jennifer Kinney, Alan Coe and Percy Tejeda, were senior sales employees. They ... Read more
Security researchers find serious equipment leakage Cisco
Cisco devices have been affected by a serious vulnerability. Red Balloon security researchers discovered the problem in 2018, but have now announced it. For the vast majority of the affected devices, it will take months before the problem can be solved.
The problem is called Thrangrycat and uses an ... Read more
More than 100,000 GitHub repositories leak API keys
As part of an academic study, researchers scanned thirteen percent of all public GitHub repositories. The many billions of documents scanned showed that more than 100,000 of those repositories contained API tokens and cryptographic keys. Thousands of new repositories leak secrets on a daily basis.
T... Read more
Database leaks over 250,000 legal documents
A database of 257,287 legal documents was visible on the public internet, without a password. This allowed everyone to access the documents and download sensitive legal material. Some of the documents were marked 'not for publication'.
The database was online for about two weeks, and contained unpu... Read more
Yelp for conservatives’ 63red Safe leaks user data
A new mobile app described as 'Yelp for Conservatives' is leaking user data and business reviews, according to a French security researcher. The app, 63red Safe, was launched this weekend in the App Store and Play Store.
63red Safe describes itself as a service where users can read "reviews of loca... Read more
Sensitive data from large companies leaked through Box accounts
Companies that use Box as a cloud-based file hosting and sharing system may accidentally leak their internal files, sensitive documents or proprietary technology. That discovered security company Adversis, which worked with Box and affected companies to fix the errors.
The leaks are the result of a ... Read more
798 million e-mail addresses leaked through MongoDB database
Security researchers Bob Diachenko and Vinny Troia have discovered a publicly accessible database owned by an email validation company. The MongoDB database contained nearly 800 million email addresses, as well as other data, which were visible to everyone.
Diachenko and Troia discovered the databas... Read more
Hackers infect workstations through two-year-old vulnerability
Hackers successfully use a two-year-old vulnerability in a software package of IT support companies to gain a foothold in networks. In this way, hackers can place the GandCrab-ransomware on the workstations of those IT supporters' customers.
A report on Reddit, which was later confirmed by the cyber... Read more
Pictures of gay dating app Jack’d exposed by wrong AWS setting
Pictures of the users of the gay dating app Jack'd have appeared online. That's because the developers set up their Amazon Web Services instance incorrectly. As a result, private images, including sensitive images, were placed on the Internet.
Jackd is a gay dating app that connects gay men from all... Read more
Serious Microsoft Office vulnerability leaks sensitive information
Mimecast informs Techzine that it has found a serious memory leak in Microsoft Office, which may leak sensitive information such as passwords. Due to the leak, users are at risk when creating, editing, opening and saving an Office file with ActiveX. Office includes popular programs such as Word, Exc... Read more