Cloud misconfiguration has evolved and your controls haven't - Help Net Security Learn how bucket name squatting and cross-service confused deputy issues expose AWS environments, and how to fix both misconfigurations.

Cloud misconfiguration has evolved and your controls haven’t

🎥 Link to the video: www.helpnetsecurity.com/2026/03/20/a...

#cybersecurity #cybersecuritynews #cloudsecurity #AWS #misconfiguration #strategy @vectraai.bsky.social

Original post on webpronews.com

The Unintended Window: Perplexity AI’s Browser Flaw and the Rush to Desktop Dominance A deep dive into CVE-2025-0599, the critical vulnerability in Perplexity AI’s macOS app. We analyze how the...

#AISecurityPro #AI #agent #risks #Comet #vulnerability #CORS […]

[Original post on webpronews.com]

Over a Billion Records Exposed: Inside the Massive Global Data Breach That Has Cybersecurity Experts Sounding the Alarm Over 1.2 billion personal records were found exposed in an unprotected Elasti...

#CybersecurityUpdate #cloud #security #data #enrichment […]

[Original post on webpronews.com]

Exposed Moltbook Database Let Anyone Take Control of Any AI Agent on the Site 'It exploded before anyone thought to check whether the database was properly secured.'

Because of course.....

#ai #misconfiguration #cybersecurity

Cloudflare misconfiguration behind recent BGP route leak Cloudflare has shared more details about a recent 25-minute Border Gateway Protocol (BGP) route leak affecting IPv6 traffic, which caused measurable congestion, packet loss, and approximately 12 Gbps ...

Cloudflare misconfiguration behind recent BGP route leak
www.bleepingcomputer.com/news/securit...

#Infosec #Security #Cybersecurity #CeptBiro #Cloudflare #Misconfiguration #BGProuteLeak

📰 Aplikasi Uji Keamanan Disalahgunakan, Peretas Tembus Lingkungan Cloud Perusahaan Fortune 500

👉 Baca artikel lengkap di sini: ahmandonk.com/2026/01/21/eksploitasi-a...

#cloud #security #iam #keamanan #siber #malware #misconfiguration #pentesting

Original post on blog.qualys.com

Inside an Automotive Giant’s Data Leak — A Cloud Misconfiguration Lesson for AWS Users 70 TB+ of data, hard-coded keys, and weak IAM controls. For even the most experienced enterprises, one con...

#Product #and #Tech #Vulnerabilities #and #Threat #Research […]

[Original post on blog.qualys.com]

Original post on blog.qualys.com

Inside an Automotive Giant’s Data Leak — A Cloud Misconfiguration Lesson for AWS Users 70 TB+ of data, hard-coded keys, and weak IAM controls. For even the most experienced enterprises, one con...

#Product #and #Tech #Vulnerabilities #and #Threat #Research […]

[Original post on blog.qualys.com]

EY Leaks 4TB+ SQL Database Packed with Corporate Secrets via Cloud Misconfiguration Consulting firm EY exposed a 4TB+ unencrypted SQL Server backup file containing API keys, passwords, and other sensitive data on the public internet due to a cloud misconfiguration.

CRITICAL LEAK: Consulting giant EY exposed a 4TB+ unencrypted SQL database to the public internet. 😳 The backup file, found by researchers, contained API keys, passwords & other corporate secrets. #DataBreach #CloudSecurity #Misconfiguration

Massive 70TB Data Leak at Tata Motors from Exposed AWS Keys Over 70TB of sensitive data from Tata Motors was exposed due to misconfigured AWS access keys left in plaintext on a public website, leading to a major data breach.

🚗 Massive 70TB data leak at Tata Motors! Exposed AWS keys on an e-commerce site led to the breach of customer PII, financial records & more. A stark reminder to secure cloud credentials. #DataBreach #AWS #CloudSecurity #Misconfiguration

DNS Misconfiguration Exploited as New Botnet Launches Large Scale Cyber Attack DNS Misconfiguration - A newly uncovered botnet leveraging thousands of compromised network devices has been observed distributing malware.

DNS Misconfiguration Exploited as New Botnet Launches Large Scale Cyber Attack A newly uncovered botnet leveraging thousands of compromised network devices has been observed distributing malware-la...

#Cyber #Attack #Cyber #Security #News #DNS #Misconfiguration

Origin | Interest | Match

Misconfigured Server Leaks 378GB of Navy Federal Credit Union Files Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

"No customer data" isn't the all-clear. This leak is an attack roadmap. Operational data is just as critical as customer data.

TL;DR
📦 378GB backups exposed
🔑 No customer PII
🗺️ Internal roadmap leaked

hackread.com/misconfigure...
#misconfiguration #cybersecurity

Misconfigured PHP Upload Path Exploited

~Varonis~
A misconfigured public file upload page allowed threat actors to upload a PHP web shell and a mailer script to a Linux server.
-
IOCs: mailer. php
-
#Misconfiguration #ThreatIntel #WebShell

⚠️ Tencent Cloud leak

Misconfigured subdomains exposed internal source code, hardcoded admin passwords, and .git repos since April 2025, potentially allowing full console access and backend compromise.

Issue discovered by Cybernews, promptly patched.

#ransomNews #CloudSecurity #Misconfiguration

Admin Emails & Passwords Exposed via HTTP Method Change Hello folks, I’m Mahmoud El manzalawy , a bug bounty hunter who enjoys finding vulnerabilities in his free time. Today, I’ll walk yo...

#infosec #pentesting #cybersecurity #vulnerability #misconfiguration

Origin | Interest | Match

Global Fashion Label SABO’s 3.5M Customer Records Exposed Online Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Over 3.5 million customer records from Australian global fashion brand #SABO were exposed online containing over 292GB database without any security authentication or encryption.

🔗 hackread.com/global-fashi...

#CyberSecurity #Privacy #Australia #DataProtection #Misconfiguration