Tag Archives: Breach

OWASP Foundation reveals data breach following Wiki web server issue

The Open Worldwide Application Security Project (OWASP) suffered a data breach in late February 2024 resulting in the exposure of sensitive data belonging to some of its members. 

In an announcement published on the OWASP website, Executive Director Andrew van der Stock confirmed the breach and explained that it happened due to a misconfiguration of an old OWASP Wiki web server.


Source link

HostUS WHMCS Data Breach | Web Hosting Talk


Quote Originally Posted by JohnCS
View Post

So it is Lagom Client Theme vulnerability not WHMCS itself.

That’s correct.

Unfortunately, on certain forums, it’s being referred to as a “WHMCS vulnerability”.

A bit like how people commonly say “WordPress is insecure” when a site is hacked, what they really mean most of the time is that the outdated and poorly written plugins attached to that WordPress website are insecure, and were responsible for that site being hacked.


Source link

Leaseweb Hosting Provider Admits Security Breach After Downtime

Cloud hosting firm Leaseweb recently disclosed a security breach after its Customer Portal suffered downtime. The incident surfaced online after the firm started informing its customers about the matter via email, confirming system restoration works.

Leaseweb Discloses Security Breach

According to Bleeping Computer, Leaseweb recently suffered a security breach affecting its cloud environments. While details are yet to arrive, the firm has admitted enduring the attack via emails to its customers.

As reported, Leaseweb officials noticed a breach in “certain areas” of their cloud environment on August 22, 2023. This impact on a specific cloud-based infrastructure triggered downtime.

Investigating the matter confirmed the intrusion, compelling the firm to pull off sensitive…


Source link

Sensitive Patient Data Shared on WhatsApp: A Breach of Privacy and Trust in Healthcare

Sensitive patient data was shared on WhatsApp by at least 26 healthcare staff members in Scotland, resulting in over 500 verified instances of data disclosure. The data shared included names, addresses, images, videos, and screenshots, as well as clinical information of the individuals involved. However, the most concerning aspect was the unauthorized disclosure of personal data to an individual who was not part of the medical staff, and had been mistakenly added to the WhatsApp group.

The Information Commissioner’s Office (ICO), the UK’s data protection authority, announced this incident and has warned the responsible healthcare authority, NHS Lanarkshire. This organization serves a population of over 652,000 people in the council areas of North Lanarkshire and South…


Source link

What You Need to Know About the Major GoDaddy Security Breach

Huge chunks of the internet were redirecting to malware-spewing websites in the latest of a series of attacks on web giant GoDaddy over a three-year period.


So if you’ve had complaints from visitors that your site redirects to malicious pages, the problem might not be with you or your plug-ins. So how did this happen? How can you protect yourself from harmful redirects?

What Is GoDaddy?

If you want to set up a website for either personal or professional use, there are a few big providers who offer both registration and hosting packages to make your life easier. Of these, GoDaddy is one of the largest and boasts a 19.61 percent market share, according to Enlyft. With reasonably priced plans and a range of features including 24×7 security monitoring, GoDaddy regularly makes…


Source link