Data Exposure
Articles covering incidents of unauthorized data access, leaks, and privacy exposure in digital systems.
-
Threat actors mass-scan Salesforce Experience Cloud using modified AuraInspector tool
Salesforce says threat actors are increasingly targeting publicly accessible Experience Cloud sites with a customized AuraInspector tool to exploit overly permissive guest-user configurations and gain access to sensitive information.
-
What Is a Remote Code Execution (RCE) Vulnerability?
Remote Code Execution (RCE) vulnerabilities allow attackers to run arbitrary code on remote systems—often leading to full compromise. Learn how RCE works and how to mitigate it.
-
Unit 42 Links Smishing Triad to 194 000 Malicious Domains in Global Phishing Operation
Unit 42 research links Smishing Triad to 194 000 malicious domains; Fortra warns of brokerage phishing expansion and PhaaS industrialization.
-
FIA Driver Portal Flaw Granted Admin Access, Exposed F1 Driver Data Including Max Verstappen’s PII
Security researchers identified a mass assignment flaw in the FIA Driver Categorisation portal that exposed personal data of Formula 1 drivers, including Max Verstappen, before being patched.