Experts devised a technique to bypass web application firewalls (WAF) of several vendorsSecurity Affairs
avatar

https://securityaffairs.co/wordpress/139445/hacking/web-application-firewalls-waf-bypass.html

Posted in Security | Leave a comment

Lapsus$ Extortion Group Claims Okta Hack, Microsoft Source Code Leak | WIRED
avatar

This is exactly why I am always leery about allowing a third party to authenticate users.

Source: Lapsus$ Extortion Group Claims Okta Hack, Microsoft Source Code Leak | WIRED

Posted in News | Leave a comment

50% reduction in accounts being compromised with MFA
avatar

This just goes to show a little inconvenience, can significantly increase security.

https://9to5google.com/2022/02/08/google-account-2sv/

Posted in News, Security | Leave a comment

Open source developer corrupts widely-used libraries, affecting tons of projects – The Verge
avatar

This is why I have trust issues with using open source projects which aren’t supported by companies.  While he isn’t wrong I think there were much better ways to handle this.

Source: Open source developer corrupts widely-used libraries, affecting tons of projects – The Verge

Posted in News, Security | Leave a comment

93% of tested networks are vulnerable to breach…
avatar

Just more evidence that cybersecurity is important for all companies.

https://www.darkreading.com/attacks-breaches/93-of-tested-networks-vulnerable-to-breach-pentesters-find

Posted in News | Leave a comment