A Python vulnerability discovered in the tarfile module impacts hundreds of thousands of open source projects, posing supply chain security concerns, according to Trellix. CVE-2007-4559, the Python vulnerability, was discovered in 2007 and is still present in the tarfile module. The Trellix Advanced Research Center uncovered the route traversal attack

Equifax Data Breach Settlement update released by the FTC. The settlement administrator starts examining current claims for time spent and out-of-pocket damages. How to get compensation? What is the administrator’s email? What is the compensation amount? We explained everything about the Equifax Data Breach Settlement in this article. Equifax Data

An “unauthorized actor” received customers’ personal information from an American Airlines security breach, including names, birthdays, mailing and email addresses, phone numbers, driver’s licenses, passport numbers, and “some medical information.” According to a sample letter from the company dated September 16th, the airline discovered the breach in July and launched

This week, the European Commission announced its proposal for the Cyber Resilience Act, which aims to protect consumers and businesses from digitally linked devices that lack fundamental cyber security safeguards. Essential requirements for vulnerability management strategies used by manufacturers to maintain the cybersecurity of goods with digital elements throughout their

Rockstar’s upcoming title might be one of the most anticipated video games ever, and fresh alleged GTA 6 leaks might have given gamers their best look yet at the game. The data trove, via a GTAForums post by the claimed hacker, has about 90 game footage videos, with debugging code

The company acknowledged the Uber security breach on Friday and they said that all of its services were up and running after what security experts described as a catastrophic data breach and that there was no sign the hacker had access to sensitive user data. The attack, which looked like

Are you considering a cyber risk assessment? We recommend that you do not keep the thinking part long and take action. According to University of Maryland research, a cyberattack against a computer with internet access occurs every 39 seconds. That’s why you should not waste time. You can be the

EvilProxy is a reverse-proxy service platform that promises to steal authentication tokens to defeat multi-factor authentication on many sites. The service allows low-skill threat actors who don’t know how to set up reverse proxies to steal otherwise well-protected internet accounts. The business claims to steal usernames, passwords, and session cookies

Microsoft discovered a TikTok vulnerability. This vulnerability was a verification bypass on the Android app, raising concerns about the security and use of the popular social media app. In a blog post published Wednesday, Microsoft highlighted the TikTok vulnerability, known as CVE-2022-28799, which might allow threat actors to hijack accounts

The UK government has completed a set of new cybersecurity rules and a code of practice for communications service providers (CSPs) to comply with their new legal obligations under the Telecommunications (Security) Act, which became law in November 2021. The Act, which the government describes as among the strictest telecom