Security researchers have discovered three authentication bypass bugs in enterprise analytics platform, Yellowfin BI. The vulnerabilities, originating from hardcoded keys, allowed attackers to sign in as any user and execute commands. Researchers from Assetnote found the flaws, giving them CVE numbers. They also found another bug that enabled remote code execution. While Yellowfin BI has patched the vulnerabilities in their 9.8.1 version, experts advise other security researchers to map out pre-authentication attack surfaces in detail for similar codebases.
Hapn Tracker Company Leaks Names of Thousands of GPS Tracking Customers – DataBreaches.Net
Well, well, well. Have you heard the latest gossip from the cyber world? Zack Whittaker, that investigative wizard, has been at it again. He’s been