Several public websites designed to allow courts across the United States and Canada to manage the personal information of potential jurors had a simple security flaw that easily exposed their sensitive data, including names and home addresses, TechCrunch has exclusively learned.
A security researcher, who asked not to be named for this story, contacted TechCrunch with details of the easy-to-exploit vulnerability, and identified at least a dozen juror websites made by government software maker Tyler Technologies that appear to be vulnerable, given that they run on the same platform.
Read more…
Source: TechCrunch News
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- connect:ID 2018 reveals exciting new plans to put next-generation identity solutions in the spotlight
September 12, 2017
connect:ID will be held April 30 – May 2, 2018 at the Walter E. Washington Convention Center, Washington, DC. A rapidly expanding event, connect:ID is expected to attract 1,300 identity professionals and 100+ industry and government exhibitors. This year, connect:ID will introduce a new Start-up Zone, where young identity businesses can gain vital exposure to high-level buyers and ...
- Russian cybersecurity firm Kaspersky Lab a ‘danger’ to US security, senator warns
September 5, 2017
Prominent cybersecurity firm Kaspersky Lab poses a danger to U.S. security, warns Sen. Jeanne Shaheen, D-N.H., who is pushing to prohibit the federal government from using the Moscow-based company’s products. In a New York Times column, Shaheen alleges that the company has “extensive” ties to Russian intelligence, noting that the firm’s founder Eugene Kaspersky graduated from the ...
- Military Contractor’s Vendor Leaks Resumes in Misconfigured AWS S3
September 5, 2017
Thousands of resumes and job applications containing the personal information of U.S. veterans, many with top secret clearances, and law enforcement officers were left exposed in an Amazon Web Services S3 bucket, continuing a trend where poorly configured cloud-storage services are putting people at risk. The applicants were seeking employment with a private military contractor from ...
- FDA Recalls Nearly Half a Million Pacemakers Over Hacking Fears
August 31, 2017
Almost half a million people in the United States are highly recommended to get their pacemakers updated, as they are vulnerable to hacking. The Food and Drug Administration (FDA) has recalled 465,000 pacemakers after discovering security flaws that could allow hackers to reprogram the devices to run the batteries down or even modify the patient’s heartbeat, ...
- Pentagon Thinks Blockchain Technology Can be Used as Cybersecurity Shield
August 20, 2017
Just like any currency, Bitcoin has been involved in cases of money-laundering, drug transactions, and terrorism in previous years. However, it has also caught the Pentagon’s eyes as a potential cybersecurity shield. Why Blockchain technology? The US military has been open about their interest in Blockchain technology, so it’s no surprise that they may soon develop their own applications.. US defence analysts have previously ...
- Experts Unveil Cyber Espionage Attacks by CopyKittens Hackers
July 25, 2017
Security researchers have discovered a new, massive cyber espionage campaign that mainly targets people working in government, defence and academic organisations in various countries. The campaign is being conducted by an Iran-linked threat group, whose activities, attack methods, and targets have been released in a joint, detailed report published by researchers at Trend Micro and Israeli ...