Twitter did not know what data it had nor who had access to it, Peiter “Mudge” Zatko told Congressional lawmakers during a Senate panel hearing.

from Dark Reading https://ift.tt/Fb6Dve9
via IFTTT

CloudFox is a command-line tool to help penetration testers understand unknown cloud environments.

from Dark Reading https://ift.tt/NbzWhcZ
via IFTTT

In Microsoft’s lightest Patch Tuesday update of the year so far, several security vulnerabilities stand out as must-patch, researchers warn.

from Dark Reading https://ift.tt/iFtP3dw
via IFTTT

Password compromise led to unauthorized access to a customer contract search tool over a five-month window, according to the company.

from Dark Reading https://ift.tt/btnBlxH
via IFTTT

Cyber-spies are using legitimate apps for DLL side-loading, deploying an updated range of malware, including the new “Logdatter” info-stealer.

from Dark Reading https://ift.tt/AWo5Ing
via IFTTT

Facebook lead-generation forms are being repurposed to collect passwords and credit card information from unsuspecting Facebook advertisers.

from Dark Reading https://ift.tt/9JSCvzp
via IFTTT

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

from Dark Reading https://ift.tt/W2HNPvT
via IFTTT

Siemplify veterans introduce Cloud Security Orchestration and Remediation platform, backed by high-profile investors including YL Ventures, Tiger Global, and CEOs of CrowdStrike and CyberArk

from Dark Reading https://ift.tt/XRZTpsA
via IFTTT

.

from Dark Reading https://ift.tt/MASYy4V
via IFTTT

The ransomware gang has been seen exploiting a Mitel RCE flaw discovered in VoIP devices in April (and patched in July) to perform double-extortion attacks.

from Dark Reading https://ift.tt/zhrYp8R
via IFTTT