Wide open Apache Airflow server at Universal Music Group contractor exposes FTP, SQL, AWS credentials
Researchers at the Kromtech Security Center, who discovered the unprotected server, said that because Airflow is wide open by default, organizations need to take steps to safeguard servers.
Anyone who ran across the exposed server could access Apple IDs, user ID and passwords stored in plaintext.
Like many college students who cram the night before a test - and some writers who test the limits of their editors' patience with their procrastination - many companies have pushed off GDPR compliance, believing either it doesn't apply to them, it's too costly or overwhelming or they can afford to wait and see just how serious regulators are about admonishing and fining companies who falter on privacy. Big mistake.
Fitbit and Google have inked a deal that will have the fitness device vendor upload data to Google's Cloud Healthcare API to it can be made accessible by healthcare providers.
The federal government and Microsoft have clashed for years after the U.S. asked for access to the emails belonging to one individual linked to a narcotics investigation back in December 2013 and stored on a server in Ireland.
Microsoft has rolled out a series of new tools to protect its Office 365 Home and 365 Personal customers from a variety of cyberthreats, including ransomware.
Ask prospective cloud servers these five questions germane to security.
A GulfTech researcher spotted multiple vulnerabilities In Western Digital's MyCloud products, some of which could lead to remote code execution and unauthorized access.
Ever on the lookout for a new avenue of attack, cybercriminals had figured out a method of using Google App Scripts to automatically download malware hosted in Google drive to any computer.
As cybersecurity has grown in importance within organizations, professional development has become a greater priority. These groups stand out as they educate and elucidate.
The exposed data -- a whopping 111 GB worth - allegedly affects tens of thousands of consumers.
McAfee has agreed to acquire Skyhigh Networks in move that McAfee believes will help boost its presence in the cloud access security broker market.
UpGuard Director of Cyber Risk Research Chris Vickery came across an Amazon Web Services S3 cloud storage bucket within the AWS "inscom" subdomain, and set to public, on September 27.
Amazon Web Services has launched a new cloud-based hosting service that can accommodate government intelligence, files and work product classified as Secret or below.
As misconfigured Amazon servers continue to leak sensitive data, Australian Broadcasting Corporation (ABC) is the latest culprit of administrators not properly securing their cloud servers.
Microsoft's already battered Office 365 is once again being targeted, this time by KnockKnock, a botnet attack designed to specifically victimize the office productivity software suite.
The first half of 2017 has not exactly been a ride in the park for cybersecurity professionals.
A misconfigured database on an Amazon S3 server may have exposed the data of between two and four million Dow Jones & Co. customers, a report on the incident stated.
Lax privacy settings in a campus file-sharing network led to an unintentional exposure of the educational records of thousands of students at the University of Oklahoma.
When it comes to cloud data storage the jury has handed in its verdict and the case is closed. The cloud is the future home for data storage for almost every company and organization, both large and small.
The president's executive order on cybersecurity has drawn immediate, if mixed reactions, from cybersecurity pros who either praise it for providing much-needed guidance or criticize it for falling short.
From time to time we run across a product or service, purely serendipitously, that knocks our virtual socks off. Joe Sandbox Cloud is one such product.
An unsecured database left exposed on an Amazon server revealed PII of up to one million applicants for car loans.
Bose, the audio equipment manufacturer, was sued in a federal court in Chicago earlier this week for selling user data without permission.