cybersecurity

This magazine is from a federated server and may be incomplete. Browse more on the original instance.

JetBrains TeamCity Mass Exploitation Underway, Rogue Accounts Thrive (www.darkreading.com)

One of the vulnerabilities (identified as CVE-2024-27198) has a near-maximum severity CVSS rating of 9.8 out of 10 and is an authentication bypass issue in TeamCity’s Web component. Researchers from Rapid7 who discovered the vulnerability and reported it to JetBrains have described it as enabling a remote unauthenticated...

Online bank One Finance removed my account's password in favor of _only_ phone/email OTP and a 4 digit pin

How is this legal? This has to be the most insecure login method I’ve ever seen. They removed the password from my account without consent and have no way to go back to requiring a password. Literally all an attacker has to do it gain control of either my phone/email and brute force a 4 digit pin. I’m going to have to change...

  • All
  • Subscribed
  • Moderated
  • Favorites
  • cybersecurity@infosec.pub
  • DreamBathrooms
  • ngwrru68w68
  • modclub
  • magazineikmin
  • thenastyranch
  • rosin
  • khanakhh
  • InstantRegret
  • Youngstown
  • slotface
  • Durango
  • kavyap
  • mdbf
  • GTA5RPClips
  • JUstTest
  • tacticalgear
  • normalnudes
  • tester
  • osvaldo12
  • everett
  • cubers
  • ethstaker
  • Leos
  • anitta
  • cisconetworking
  • megavids
  • provamag3
  • lostlight
  • All magazines