Security Affairs

JUNE 10, 2019

Security expert discovered an exposed database belonging to Shanghai Jiao Tong University containing 8.4TB in email metadata. The exposed database containing 8.4TB in email metadata was discovered on May 22, 2019, through a Shodan search. . This database contained metadata related to a huge amount of emails. es website.

Metadata 268

Metadata Archiving Authentication Security 268

Security Affairs

SEPTEMBER 10, 2020

CDRThief specifically targets internal MySQL databases running in the devices to steal call metadata, including IP addresses of the callers, phone numbers, start time and duration of the call, call route, and call type. “To steal this metadata, the malware queries internal MySQL databases used by the Softswitch.”

Metadata 266

Metadata Encryption File names Passwords 266

Data Breach Today

JUNE 11, 2019

TB of email metadata. Shanghai Jiao Tong University Has Since Locked-Down Elasticsearch Server A security researcher found an unsecured database belonging to the Shanghai Jiao Tong University in China that contained 8.4

Metadata 254

Metadata Access Security IT 254

Security Affairs

JANUARY 30, 2025

“This level of access posed a critical risk to DeepSeeks own security and for its end-users.

Metadata 302

Metadata Authentication Access Passwords 302

AIIM

MARCH 16, 2021

Metadata resides at the center of many of the essential aspects of content management. In addition to helping organize and classify content, Metadata enables good findability, can trigger workflow and transactional processes, reveals document usage patterns and history, and helps establish retention and disposition events.

Metadata 197

Metadata ECM Customer Experience Analytics 197

AIIM

JULY 1, 2021

The ever increasing petabytes of data required to do business in the modern world of work require utilizing metadata to tag content. Why Metadata? Metadata (aka tags, properties, labels) is the key component in any robust Information Architecture plan. Break down silos.

Metadata 197

Metadata Information architecture Content services Records Management 197

Collibra

DECEMBER 12, 2024

Managing metadata is even harder. So why do I need to care about metadata? What is the value of metadata? Active metadata will help you answer this question. Curious about what active metadata is and how it can help. What is active metadata? Traditional metadata is like a static description of your data.

Metadata 52

Metadata Compliance Privacy Analytics 52

Gimmal

NOVEMBER 21, 2024

Enter metadata—a powerful tool that can revolutionize your information governance strategy. Ineffective Search Capabilities : Without additional metadata, searches are limited to file names or basic content, making it difficult to perform targeted searches. The Power of Metadata So, what is metadata?

Metadata 52

Metadata Information governance Government Records Management 52

Security Affairs

JUNE 19, 2025

The data likely gathered by infostealer often includes tokens, cookies, and sensitive metadata. Some datasets had generic names like “logins,” while others hinted at origins, such as Telegram or Russia. In the summer of 2024, CyberNews discovered the largest password compilation to date, known as RockYou2024 , on a popular hacking forum.

Data breaches 287

Data breaches Passwords Data structuring Phishing 287

Security Affairs

FEBRUARY 4, 2025

The researchers analyzed the LNK files’ metadata, including Machine ID and MAC addresses, to trace infections linked to the same threat actor. The LNK file runs a PowerShell command that connects to a remote server, triggering the next stage of the Coyote Banking Trojan attack.

Metadata 295

Metadata Phishing Access Cybersecurity 295

Security Affairs

APRIL 29, 2025

The flaw in SAP NetWeaver Visual Composer Metadata Uploader stems from a lack of proper authorization checks. Attackers exploited the Metadata Uploader to upload malicious JSP webshells using crafted POST requests, then executed them with GET requests to gain full control of the target systems.

IT 194

IT Metadata Access Cybersecurity 194

Security Affairs

APRIL 23, 2025

Each layer is stored as a tar file with accompanying JSON metadata, rather than a traditional file system. Indeed, when running the file command over the sha256 directory, each layer is shown as a tar file, along with a JSON metadata file.” Instead of having a static folder of files, the image consists of layers.

Mining 289

Mining Metadata IT Security 289

Security Affairs

NOVEMBER 11, 2024

Remcos RAT allows operators to gather multiple data from infected devices, including system metadata, and execute remote commands. The RAT is then activated on a new thread by calling the undocumented API NtCreateThreadEx() , allowing it to run covertly without leaving a trace on disk.

Phishing 324

Phishing Metadata Encryption IT 324

Security Affairs

JUNE 15, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Supply chain attack hits Gluestack NPM packages with 960K weekly downloads Analysis of the latest Mirai wave exploiting TBK DVR devices with CVE-2024-3721 Destructive npm Packages Disguised as Utilities Enable Remote (..)

Security 184

Security Metadata Ransomware Data breaches 184

Security Affairs

SEPTEMBER 7, 2023

addressed two vulnerabilities, respectively tracked as CVE-2023-39265 and CVE-2023-37941 , that could be exploited to take control of Superset’s metadata database. “By default Superset uses SQLite as its metadata database, and the SQLite file is located on the Superset web server. Version 2.1.1

Metadata 336

Metadata Access IT Security 336

Security Affairs

JULY 9, 2025

Since April 2025, attackers have repeatedly used SHELLTER in infostealer attacks, as shown by license metadata. In June, Elastic Security Labs discovered multiple malware campaigns using Shellter Elite to protect their malware, as confirmed by license metadata in the binaries.

Metadata 276

Metadata Sales Security Phishing 276

Security Affairs

DECEMBER 17, 2023

MongoDB on Saturday announced it is investigating a cyberattack that exposed customer account metadata and contact information. MongoDB on Saturday disclosed it is investigating a cyber attack against certain corporate systems. MongoDB is a US company that developed the popular open-source NoSQL database management system.

Metadata 349

Metadata Data breaches Phishing Authentication 349

WIRED Threat Level

JANUARY 26, 2024

US spy agencies purchased Americans' phone location data and internet metadata without a warrant but only admitted it after a US senator blocked the appointment of a new NSA director.

Metadata 330

Metadata IT Privacy Security 330

Security Affairs

JUNE 5, 2024

. “In early May 2024, Cisco identified bugs in Cisco Webex Meetings that we now believe were leveraged in targeted security research activity allowing unauthorized access to meeting information and metadata in Cisco Webex deployments for certain customers hosted in our Frankfurt data center.” ” continues the advisory.

Government 359

Government Metadata Military Access 359

Security Affairs

APRIL 5, 2025

Call metadata can enable real-time surveillance if misused. The issue likely affected most Verizon Wireless users, as the service is often enabled by default. Connelly explained that an attacker can retrieve timestamps associated with incoming calls, exploiting this vulnerability.

Metadata 262

Metadata Risk Authentication Passwords 262

Security Affairs

OCTOBER 15, 2024

To exploit this vulnerability, the attacker needed GitHub Enterprise Server’s encrypted assertions feature enabled, direct network access, and a signed SAML response or metadata document. Additionally, an attacker would require direct network access as well as a signed SAML response or metadata document. and 3.14.2. and 3.14.2,

Metadata 315

Metadata Encryption Phishing Authentication 315

Security Affairs

DECEMBER 14, 2020

The SoReL-20M database includes a set of curated and labeled samples and security-relevant metadata that could be used as a training dataset for a machine learning engine used in anti-malware solutions. The availability of large and well-formed training sets is a major problem for the implementation of machine learning models.

Metadata 332

Metadata Security Access Information Security 332

Security Affairs

OCTOBER 28, 2022

“Phar files (PHP Archive) files contain metadata in serialized format, which when parsed by a PHP file operation function leads to the metadata getting deserialized. An attacker can abuse this behavior to exploit an object instantiation vulnerability inside the Juniper codebase.”

Metadata 361

Metadata Archiving Authentication Access 361

Security Affairs

AUGUST 21, 2024

Combined with a useful SSRF protection bypass, we used this flaw to get access to Microsoft’s internal infrastructure for Copilot Studio, including the Instance Metadata Service (IMDS) and internal Cosmos DB instances.” ” reads the report published by Grant.

Metadata 311

Metadata Access Authentication Cloud 311

Security Affairs

MAY 12, 2025

When executing AsusSetup.exe it first reads from AsusSetup.ini, which contains metadata about the driver. . “The files of importance here are the AsusSetup.exe , AsusSetup.ini and SilentInstall.cmd. I took interest in a property in the file: SilentInstallRun.” ” reads the report published by MrBrush.

Metadata 205

Metadata IT Security Information Security 205

Security Affairs

APRIL 15, 2024

The message logs did not contain any message content but did contain the phone number, phone carrier, country, and state to which each message was sent, as well as other metadata (e.g., Attackers also obtained other metadata, including the date and time of the message, type of message, etc.

Data breaches 351

Data breaches Metadata Authentication Phishing 351

Data Breach Today

OCTOBER 6, 2021

Syniverse Routes Over 1 Trillion Messages Annually for AT&T, Verizon, Others Telecommunications service provider Syniverse, which routes 1 trillion messages annually for many of the world's mobile phone carriers, has disclosed a five-year breach of its systems, which handle call metadata and text messages.

Metadata 297

Metadata Risk IT 297

Security Affairs

OCTOBER 21, 2022

GUAC addresses a need created by the burgeoning efforts across the ecosystem to generate software build, security, and dependency metadata.” GUAC aggregates metadata from different sources, including databases of vulnerabilities, SLSA (Supply chain Levels for Software Artifacts), and software bills of materials (SBOM).

Metadata 246

Metadata Security Risk IT 246

Security Affairs

MAY 26, 2025

Using tools like mysqldump and Bash scripts downloaded from paste sites, the attackers extracted LDAP configs, Office 365 credentials, and metadata on managed devices. This information could allow unauthorized access to Microsoft cloud services like email and SharePoint.

Authentication 231

Authentication Metadata Access Encryption 231

Collaboration 2.0

APRIL 24, 2025

Now available as a public beta, Adobe's new Adobe Content Authenticity app lets creators apply Content Credentials metadata to protect their work.

Metadata 245

Metadata Authentication IT 245

Security Affairs

NOVEMBER 2, 2021

The vulnerability resides in ExifTool , an open source tool used to remove metadata from images, which fails in parsing certain metadata embedded in the uploaded image, resulting in code execution as described here.” ” reads the analysis published by HN Security. The flaw was initially rated with a CVSS score of 9.9,

Metadata 363

Metadata Access Cybersecurity Security 363

Security Affairs

AUGUST 23, 2022

Google addressed the vulnerability in June, an attacker can trigger the flaw using malformed metadata associated with the songs. The OS Audio Server contains a method that extracts the ‘identity’ from metadata representing a song’s title. “we discovered the vulnerability could be remotely triggered by manipulating audio metadata.

Metadata 246

Metadata Security Information Security IT 246

Data Breach Today

JUNE 25, 2019

Cybereason Says Theft of Subscribers' Call Metadata Could Be Linked to Chinese APT Group Attackers - likely operating from China - have been surreptitiously hacking into global telecommunications providers' networks to quietly steal metadata and track subscribers - and those with whom they communicate - as part of an ongoing cyber espionage operation, (..)

Metadata 238

Metadata Communications Security 238

Security Affairs

JUNE 16, 2021

“The syntax and language of the messages, as well as the metadata of the published files show that this material may have been prepared and compiled by Russian speakers,” Dworczyk said. Media reported that the metadata of the leaked documents shows that they were edited by a person using Russian-language software.

Metadata 350

Metadata Government Phishing Communications 350

Security Affairs

JANUARY 29, 2024

Metadata on browsing activity, which includes information about the websites visited, timestamps, and duration of visits, can be abused for surveillance in several ways, privacy advocated warn. Senator pointed out that according to a recent FTC order, data brokers cannot sell Americans’ data without informed consent.

Metadata 350

Metadata Personal data Sales Privacy 350

Security Affairs

MARCH 27, 2022

The CVE-2021-44142 vulnerability is a Samba out-of-bounds heap read/write that impacts the vfs_fruit VFS module when parsing EA metadata when opening files in smbd. The specific flaw exists within the parsing of EA metadata when opening files in smbd. The vulnerability was reported by the security researcher Orange Tsai from DEVCORE.

Cloud 292

Cloud Metadata Access Security 292

Security Affairs

MAY 28, 2022

All private npm package manifests and package metadata as of April 7, 2021. Over the next few days, we will directly notify those with exposed private package manifests, metadata, and private package names and versions.” This contained npm usernames, password hashes, and email addresses for roughly 100k npm users.

Metadata 363

Metadata Passwords Archiving Access 363