Category: CLOUDSEC

Many VMware Products Affected by SACK Linux Vulnerabilities

Over 30 VMware products are affected by SACK Panic and SACK Slowness, two recently disclosed Linux kernel vulnerabilities that can be exploited remotely without authentication for denial-of-service (DoS) attacks. read more http://feedproxy.google.com/~r/Securityweek/~3/y6oLJTJtYoY/many-vmware-products-affected-sack-linux-vulnerabilities

Cloud computing giant PCM hacked

The attackers allegedly stole admin credentials for Office 365 accounts, and planned to use stolen data to conduct gift card fraud. https://nakedsecurity.sophos.com/2019/07/01/cloud-computing-giant-pcm-hacked/

MongoDB Leak Exposed Millions of Medical Insurance Records

Millions of records containing personal information and medical insurance data were exposed by a database belonging to insurance marketing website MedicareSupplement.com. https://threatpost.com/mongodb-leak-exposed-millions-of-medical-insurance-records/146125/

PCM Breach: Expert Commentary

Brian Krebs recently broke the news that there was an intrusion at PCM Inc., a major U.S.-based cloud solution provider. The hackers were able to access email and file sharing systems for some of the company’s more than 2,000 clients. [ … ]

Provider of Data Integration Services for Fortune 100 Firms Exposed Sensitive Files

Attunity, a Qlik-owned data integration and big data management company whose solutions are used by over 2,000 enterprises and half of the Fortune 100 firms, exposed a significant amount of sensitive data through unprotected Amazon S3 buckets. read more http://feedproxy.google.com/~r/Securityweek/~3/bj48tP5CLUc/provider-data-integration-services-fortune-100-firms-exposed-sensitive-files