Microsoft has issued a warning over ViewState code injection attacks on ASP.NET websites, where remote code execution can enable cybercriminals to inject malicious code. There are reportedly thousands of publicly available machine keys, originally designed to protect ViewState data, now being used by developers to side-step the process of generating their own, increasing the risk. Microsoft recommends developers generate their own keys, encrypt sensitive data and migrate to newer versions of ASP.NET.
41% of Third-Party Breaches in 2024 Targeted Healthcare Orgs
The healthcare sector accounted for 41.2% of third-party breaches in 2024, according to a report from Black Kite, marking it the most targeted industry. The
