With the advancement in technology, organizations have taken it to video conferencing for immediate meetings, sales pitch, and even critical tasks like partnership discussions to finish a job efficiently and on time. However, that’s not the case always. Organizations also have confidential meetings, strategic planning, corporate or legal negotiations, and more that needs to be discussed in a face-to-face interaction, requiring businessmen to travel to foreign countries.
Google has agreed to pay $7.5 million to settle class-action lawsuits filed against the company over Google+ data breach incidents. The incidents in question had exposed the data of over 10 million users.
Around half of the websites that use WebAssembly, a new web technology, use it for malicious purposes, according to academic research published last year.
Identified while analyzing PayPal’s main authentication flow, the issue was related to PayPal placing cross-site request forgery (CSRF) tokens and the user session ID in a JavaScript file, thus making them retrievable by attackers via cross-site script inclusion (XSSI) attacks. An obfuscator was used to randomize variable names on each request, but one could still predict where interesting tokens are located, and then retrieve them, security researcher Alex Birsan explains.
