InfoQ

Yelp Open-Sources Fuzz-Lightyear, A Swagger-Based IDOR Vulnerability Detector

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Infosecurity-magazine.com

Oxeye Discovers Several High Severity IDOR Vulnerabilities in Harbor

The Oxeye security research team found several high–severity insecure direct object reference (IDOR) vulnerabilities in Harbor, an open–source artifact registry developed by the Cloud Native Computing ...
TweakTown

A VMWare AirWatch bug allowed users to access others sensitive data

AirWatch's on-premise mobile device management solution has recently received a major update - patching a flaw that enabled users who manage MDM solutions in multi-tenant environments to access other ...
ZDNet

Bug hunter wins 'Researcher of the Month' award for DOD account takeover bug

The US Department of Defense has fixed a severe vulnerability impacting its internal network that would have allowed threat actors to hijack DOD accounts just by modifying a few parameters in web ...
TechCrunch

A simple bug exposed access to thousands of smart security alarm systems

U.S. power and electronics giant Eaton has fixed a security vulnerability that allowed a security researcher to remotely access thousands of smart security alarm systems. Security researcher Vangelis ...