Initial reports suggest a basic security error allowed the attacker to access the company’s live customer database via an unauthenticated API.
Related Post
- June 2, 2025
Cryptojacking Campaign Exploits DevOps APIs Using Off-the-Shelf Tools
Cybersecurity researchers have discovered a new cryptojacking campaign that’s targeting publicly accessible DevOps web servers such as those associated with
- June 2, 2025
Preinstalled Apps on Ulefone, Krüger&Matz Phones Let Any
Three security vulnerabilities have been disclosed in preloaded Android applications on smartphones from Ulefone and Krüger&Matz that could enable any
- June 2, 2025
Qualcomm Fixes 3 Zero-Days Used in Targeted Android
Qualcomm has shipped security updates to address three zero-day vulnerabilities that it said have been exploited in limited, targeted attacks
- June 2, 2025
⚡ Weekly Recap: APT Intrusions, AI Malware, Zero-Click
If this had been a security drill, someone would’ve said it went too far. But it wasn’t a drill—it was