#security-misconfiguration

[ follow ]
#data-exposure #broken-access-control #software-supply-chain-failures #owasp-top-10 #automotive #personal-data
fromTheregister
6 days ago

Broken access control still tops list of app sec top 10

The Open Worldwide Application Security Project (OWASP) just published its top 10 categories of application risks for 2025, its first list since 2021. It found that while broken access control remains the top issue, security misconfiguration is a strong second, and software supply chain issues are still prominent. The update was presented at the organization's Global AppSec USA event. The list is final but the official write-up is in preview, according to OWASP Top 10 co-leads Neil Smithline and Tanya Janca.
Science
Information security
fromDataBreaches.Net
1 month ago

ClaimPix Data Leak Exposes 5 Million Customer Records - DataBreaches.Net

An unencrypted public database exposed 5.1 million files totaling 10 TB containing sensitive vehicle, insurance, and legal documents with PII, VINs, and powers of attorney.
fromInsideEVs
2 months ago

Thousands Of Tesla EVs Can Be Located In Real Time, Security Researcher Finds

Over 1,300 publicly accessible TeslaMate dashboards were discovered by Seyfullah Kiliç, founder of cybersecurity company SwordSec, by scanning the internet with simple tools to expose instances that were not secured, either with a password or behind a firewall or a virtual private network VPN). TeslaMate is an open-source data logger and visualizer for Tesla electric vehicles, which allows owners to run a server and keep tabs on charging sessions, temperatures, battery health, driving speed, location history and much more.
Information security
[ Load more ]