Category: security-incident
-
Your private Git repository might have been exposed by Azure App Service
By Varun Om | December 23, 2021 | in Security Incident
The .git folder inside a Git repository is the most important folder as it has the entire Git commit history. In fact everything else is your current working area and .git is the true repository folder. If someone gets access to this folder, you can …
-
Critical RCE vulnerability in Log4j Java package can lead to server take over
By Varun Om | December 11, 2021 | in Security Incident
A very critical remote code execution (RCE) vulnerability has been discovered in Log4J – a popular Java package for logging. A huge number of applications, frameworks and even cloud services are likely using this package and therefore, is at grave …
-
533 million Facebook users' personal data have been leaked: Measures to protect your web application from scraping
By Varun Om | April 4, 2021 | in Security Incident
Personal data of hundreds of millions of Facebook users was published on Saturday in a low-level cybercriminal forum for anyone to access. The exposed data includes personal information of over 533 million Facebook users from 106 countries, …
-
Massive data breach at several US universities
By Varun Om | April 1, 2021 | in Security Incident
Several US Universities have been hit by a massive data breach, including Stanford University, University of California, University of Miami, University of Colorado Boulder, University of Maryland etc. Hackers have stolen terabytes of student, …
-
Lessons from Ubiquiti breach: Advice on protecting admin user accounts
By Varun Om | March 31, 2021 | in Security Incident
Recently, Ubiquiti, which has shipped more than 85 million devices related to cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders and security cameras in over 200 countries, got hacked, with hacker getting root …