#Web Security

A stored XSS and arbitrary file-upload bug can be paired with an authorization bypass to wreak havoc.

The previously unknown SnapMC group exploits unpatched VPNs and webserver apps to breach systems and carry out quick-hit extortion in less time than it takes to order a pizza.

Microsoft's October 2021 Patch Tuesday included security fixes for 74 vulnerabilities, one of which is an actively exploited zero-day.

An Iran-linked group is taking aim at makers of drones and satellites, Persian Gulf ports and maritime shipping companies, among others.

The destroyer-class USS Kidd streamed hours of game play in a funny incident that has serious cybersecurity ramifications.

A researcher combed through the Twitch leak and found what they said was evidence of PayPal chargebacks with names and emails; employees' emails; and more.

A researcher combed through the Twitch leak and found what they said was evidence of PayPal chargebacks with names and emails, employees' emails, and more.

The possible cyberattacks include disabling monitoring, location-tracking of children and malicious redirects of parent-console users.

An anonymous user posted a link to a 125GB torrent to 4chan yesterday, containing all of Twitch's source code, comments going back to its inception and more.

Three security vulnerabilities in Axis video products could open up the door to a bevy of different cyberattacks on businesses.