A van delivery entrepreneur whose startup was dubbed the Uber of the moving business was accused of asset-stripping and misappropriating funds after his takeover of a major UK parcel shipment firm fell apart. Shift, which was set up in 2017, agreed to rescue Yodel last year but the deal unraveled a few months later. Now, … Read more
Flipaclip, an animation creation app that is particularly popular with youngsters, has exposed the details of over 890,000 users. A vulnerability in the frame-by-frame animation app, which is available for iOS and Android, was initially discovered this month by researcher “BobDaHacker” who responsibly reported it to FlipaClip’s developers Visual Blasters. The vulnerability allowed unauthorised parties … Read more
A recent cyber attack targeting telematics provider Microlise has highlighted critical vulnerabilities in supply chain security, disrupting tracking services for prominent clients such as DHL and Serco and exposing limited employee data. The breach, disclosed on October 31, led to a significant 16% drop in Microlise’s stock value and raised concerns about the broader implications … Read more
Nov 01, 2024Ravie LakshmananVulnerability / Cloud Security Cybersecurity researchers have flagged a “massive” campaign that targets exposed Git configurations to siphon credentials, clone private repositories, and even extract cloud credentials from the source code. The activity, codenamed EMERALDWHALE, is estimated to have collected over 10,000 private repositories and stored in an Amazon S3 storage bucket … Read more
Aug 28, 2024Ravie LakshmananWordPress Safety / Web site Safety A important safety flaw has been disclosed within the WPML WordPress multilingual plugin that might enable authenticated customers to execute arbitrary code remotely beneath sure circumstances. The vulnerability, tracked as CVE-2024-6386 (CVSS rating: 9.9), impacts all variations of the plugin earlier than 4.6.13, which was launched … Read more
