The popular, headless CMS Strapi patched two vulnerabilities that allowed users with lower levels of privilege to see data only higher privileged users were cleared to see — including information allowing account takeover.
Protecting critical information, whether that be personal data or intellectual property or data tied to national security, is the number one priority for most organizations. An integral component of this is to secure the databases where that information resides.
Assaults like spamming, credential stuffing, CAPTCHA defeat, fraudulent account creation, and denial-of-service (DoS) can cause monetary and brand damage, particularly as customers demand more and more online services.
Financial firms and non-bank financial technology players are encouraged to migrate to the cloud more quickly to cut costs and garner the benefit of the “enhanced capabilities” cloud might afford, according to a study by Next Pathway.