Data Breach Today

NOVEMBER 4, 2023

Threat Actor Used Session Hijacking Technique to Access Files of 134 Okta Customers Days after announcing a security compromise, cloud-based Identity and authentication management provider Okta said that an unknown threat actor accessed files of 134 customers by after an employee signed in to a personal Google profile on the Chrome browser of an Okta-managed laptop.

Authentication 325

Authentication Cloud Access Security 325

Security Affairs

NOVEMBER 4, 2023

Kinsing threat actors are exploiting the recently disclosed Linux privilege escalation flaw Looney Tunables to target cloud environments. Researchers are cloud security firm Aqua have observed threat actors exploiting the recently disclosed Linux privilege escalation flaw Looney Tunables in attacks against cloud environments. The vulnerability Looney Tunables ( CVE-2023-4911 (CVSS score 7.8)) is a buffer overflow issue that resides in the GNU C Library’s dynamic loader ld.so while processing th

Cloud 107

Cloud Mining Access Security 107

WIRED Threat Level

NOVEMBER 4, 2023

Plus: SolarWinds is charged with fraud, New Orleans police face recognition has flaws, and new details about Okta’s October data breach emerge.

Data breaches 99

Data breaches Privacy Security 99