Security Affairs

JUNE 10, 2019

Security expert discovered an exposed database belonging to Shanghai Jiao Tong University containing 8.4TB in email metadata. The exposed database containing 8.4TB in email metadata was discovered on May 22, 2019, through a Shodan search. . This database contained metadata related to a huge amount of emails. es website.

Metadata 265

Metadata Archiving Authentication Security 265

Security Affairs

SEPTEMBER 10, 2020

CDRThief specifically targets internal MySQL databases running in the devices to steal call metadata, including IP addresses of the callers, phone numbers, start time and duration of the call, call route, and call type. “To steal this metadata, the malware queries internal MySQL databases used by the Softswitch.”

Metadata 262

Metadata Encryption File names Passwords 262

Data Breach Today

JUNE 11, 2019

TB of email metadata. Shanghai Jiao Tong University Has Since Locked-Down Elasticsearch Server A security researcher found an unsecured database belonging to the Shanghai Jiao Tong University in China that contained 8.4

Metadata 254

Metadata Access Security IT 254

Security Affairs

JANUARY 30, 2025

“This level of access posed a critical risk to DeepSeeks own security and for its end-users.

Metadata 297

Metadata Authentication Access Passwords 297

AIIM

MARCH 16, 2021

Metadata resides at the center of many of the essential aspects of content management. In addition to helping organize and classify content, Metadata enables good findability, can trigger workflow and transactional processes, reveals document usage patterns and history, and helps establish retention and disposition events.

Metadata 197

Metadata ECM Customer Experience Analytics 197

AIIM

JULY 1, 2021

The ever increasing petabytes of data required to do business in the modern world of work require utilizing metadata to tag content. Why Metadata? Metadata (aka tags, properties, labels) is the key component in any robust Information Architecture plan. Break down silos.

Metadata 197

Metadata Information architecture Content services Records Management 197

Collibra

DECEMBER 12, 2024

Managing metadata is even harder. So why do I need to care about metadata? What is the value of metadata? Active metadata will help you answer this question. Curious about what active metadata is and how it can help. What is active metadata? Traditional metadata is like a static description of your data.

Metadata 52

Metadata Compliance Privacy Analytics 52

Gimmal

NOVEMBER 21, 2024

Enter metadata—a powerful tool that can revolutionize your information governance strategy. Ineffective Search Capabilities : Without additional metadata, searches are limited to file names or basic content, making it difficult to perform targeted searches. The Power of Metadata So, what is metadata?

Metadata 52

Metadata Information governance Government Records Management 52

Data Breach Today

JUNE 29, 2020

Malwarebytes Researchers Find Malicious JavaScript in WordPress Plugin Payment card hackers are now hiding malicious JavaScript inside an image's EXIF metadata and then sneaking the image onto e-commerce sites, according to the security firm Malwarebytes.

Metadata 165

Metadata Security 165

Schneier on Security

NOVEMBER 2, 2021

Interesting Twitter thread on how cell phone metadata can be used to identify and track people who don’t want to be identified and tracked.

Metadata 138

Metadata 138

Schneier on Security

DECEMBER 10, 2021

A January 2021 FBI document outlines what types of data and metadata can be lawfully obtained by the FBI from messaging apps. Lots of apps leak all sorts of metadata: iMessage and WhatsApp seem to be the worst. Signal protects the most metadata. Rolling Stone broke the story and it’s been written about elsewhere.

Metadata 140

Metadata Access Encryption IT 140

Security Affairs

FEBRUARY 4, 2025

The researchers analyzed the LNK files’ metadata, including Machine ID and MAC addresses, to trace infections linked to the same threat actor. The LNK file runs a PowerShell command that connects to a remote server, triggering the next stage of the Coyote Banking Trojan attack.

Metadata 290

Metadata Phishing Access Cybersecurity 290

Security Affairs

SEPTEMBER 7, 2023

addressed two vulnerabilities, respectively tracked as CVE-2023-39265 and CVE-2023-37941 , that could be exploited to take control of Superset’s metadata database. “By default Superset uses SQLite as its metadata database, and the SQLite file is located on the Superset web server. Version 2.1.1

Metadata 331

Metadata Access IT Security 331

National Archives Records Express

JUNE 12, 2023

S49-07-001 – STS-049 – In cabin view of crewmember at the forward flight deck with laptop terminal National Archives Identifier: 22702275 In this blog post, we will explore the key aspects of metadata requirements and their significance in recordkeeping.

Metadata 109

Metadata Digital transformation File names Archiving 109

Security Affairs

DECEMBER 17, 2023

MongoDB on Saturday announced it is investigating a cyberattack that exposed customer account metadata and contact information. MongoDB on Saturday disclosed it is investigating a cyber attack against certain corporate systems. MongoDB is a US company that developed the popular open-source NoSQL database management system.

Metadata 345

Metadata Data breaches Phishing Passwords 345

Security Affairs

JUNE 5, 2024

. “In early May 2024, Cisco identified bugs in Cisco Webex Meetings that we now believe were leveraged in targeted security research activity allowing unauthorized access to meeting information and metadata in Cisco Webex deployments for certain customers hosted in our Frankfurt data center.” ” continues the advisory.

Government 357

Government Metadata Military Passwords 357

Security Affairs

APRIL 15, 2024

The message logs did not contain any message content but did contain the phone number, phone carrier, country, and state to which each message was sent, as well as other metadata (e.g., Attackers also obtained other metadata, including the date and time of the message, type of message, etc.

Data breaches 347

Data breaches Metadata Authentication Phishing 347

Security Affairs

OCTOBER 28, 2022

“Phar files (PHP Archive) files contain metadata in serialized format, which when parsed by a PHP file operation function leads to the metadata getting deserialized. An attacker can abuse this behavior to exploit an object instantiation vulnerability inside the Juniper codebase.”

Metadata 360

Metadata Archiving Authentication Access 360

Security Affairs

DECEMBER 14, 2020

The SoReL-20M database includes a set of curated and labeled samples and security-relevant metadata that could be used as a training dataset for a machine learning engine used in anti-malware solutions. The availability of large and well-formed training sets is a major problem for the implementation of machine learning models.

Metadata 326

Metadata Security Access Information Security 326

Security Affairs

OCTOBER 15, 2024

To exploit this vulnerability, the attacker needed GitHub Enterprise Server’s encrypted assertions feature enabled, direct network access, and a signed SAML response or metadata document. Additionally, an attacker would require direct network access as well as a signed SAML response or metadata document. and 3.14.2. and 3.14.2,

Metadata 309

Metadata Encryption Phishing Authentication 309

Security Affairs

AUGUST 21, 2024

Combined with a useful SSRF protection bypass, we used this flaw to get access to Microsoft’s internal infrastructure for Copilot Studio, including the Instance Metadata Service (IMDS) and internal Cosmos DB instances.” ” reads the report published by Grant.

Metadata 306

Metadata Access Authentication Cloud 306

Data Breach Today

OCTOBER 6, 2021

Syniverse Routes Over 1 Trillion Messages Annually for AT&T, Verizon, Others Telecommunications service provider Syniverse, which routes 1 trillion messages annually for many of the world's mobile phone carriers, has disclosed a five-year breach of its systems, which handle call metadata and text messages.

Metadata 297

Metadata Risk IT 297

The Last Watchdog

MARCH 21, 2019

Metadata spying. Metadata is worthy of a separate examination. Despite warnings from cybersecurity academics, whistleblowers or former NSA and CIA agents, the general public shows no animosity toward metadata surveillance. Metadata can be used to reverse-engineer and pinpoint identity quite easily.

Metadata 230

Metadata IT Privacy Education 230

Data Breach Today

JUNE 25, 2019

Cybereason Says Theft of Subscribers' Call Metadata Could Be Linked to Chinese APT Group Attackers - likely operating from China - have been surreptitiously hacking into global telecommunications providers' networks to quietly steal metadata and track subscribers - and those with whom they communicate - as part of an ongoing cyber espionage operation, (..)

Metadata 238

Metadata Communications Security 238

Security Affairs

AUGUST 23, 2022

Google addressed the vulnerability in June, an attacker can trigger the flaw using malformed metadata associated with the songs. The OS Audio Server contains a method that extracts the ‘identity’ from metadata representing a song’s title. “we discovered the vulnerability could be remotely triggered by manipulating audio metadata.

Metadata 246

Metadata Security Information Security IT 246

Security Affairs

NOVEMBER 2, 2021

The vulnerability resides in ExifTool , an open source tool used to remove metadata from images, which fails in parsing certain metadata embedded in the uploaded image, resulting in code execution as described here.” ” reads the analysis published by HN Security. The flaw was initially rated with a CVSS score of 9.9,

Metadata 363

Metadata Access Cybersecurity Security 363

National Archives Records Express

JULY 31, 2024

We are requesting comments on a draft NARA Bulletin: Metadata Guidance for the Transfer of Classified Electronic Records Please send comments or questions to rmstandards@nara.gov by August 16, 2024. This metadata documents the access restrictions, review and declassification, and other metadata elements. National Archives.

Metadata 90

Metadata Archiving Access Security 90

Security Affairs

JUNE 16, 2021

“The syntax and language of the messages, as well as the metadata of the published files show that this material may have been prepared and compiled by Russian speakers,” Dworczyk said. Media reported that the metadata of the leaked documents shows that they were edited by a person using Russian-language software.

Metadata 346

Metadata Government Phishing Communications 346

Security Affairs

JANUARY 29, 2024

Metadata on browsing activity, which includes information about the websites visited, timestamps, and duration of visits, can be abused for surveillance in several ways, privacy advocated warn. Senator pointed out that according to a recent FTC order, data brokers cannot sell Americans’ data without informed consent.

Metadata 346

Metadata Personal data Sales Privacy 346

Security Affairs

MARCH 27, 2022

The CVE-2021-44142 vulnerability is a Samba out-of-bounds heap read/write that impacts the vfs_fruit VFS module when parsing EA metadata when opening files in smbd. The specific flaw exists within the parsing of EA metadata when opening files in smbd. The vulnerability was reported by the security researcher Orange Tsai from DEVCORE.

Cloud 287

Cloud Metadata Access Security 287

WIRED Threat Level

MAY 21, 2020

By using metadata instead of content to spot suspicious behavior, the social network can keep privacy intact.

Encryption 246

Encryption Metadata Privacy Security 246

Security Affairs

MAY 28, 2022

All private npm package manifests and package metadata as of April 7, 2021. Over the next few days, we will directly notify those with exposed private package manifests, metadata, and private package names and versions.” This contained npm usernames, password hashes, and email addresses for roughly 100k npm users.

Metadata 363

Metadata Passwords Archiving Access 363

IG Guru

JULY 3, 2024

Check out the article here The post New Memo Offers Guidance on Registering Metadata in Army Data Catalog via ExecutiveGov first appeared on IG GURU.

Metadata 97

Metadata 97

Security Affairs

JANUARY 31, 2024

The credentials of clients using the white-label service were exposed in plaintext, along with details of database locations and negotiated commission percentages.

Metadata 346

Metadata Passwords Risk Cybersecurity 346

Security Affairs

NOVEMBER 19, 2023

Larger files will have smaller blocks of data encrypted throughout the file and a list of these blocks is saved in the metadata along with the key at the end of the file. The malware supports the following features: Full encryption of files below 1.5MB and partial encryption of files above this threshold to improve the speed of encryption.

Ransomware 349

Ransomware Encryption Metadata Manufacturing 349

Security Affairs

DECEMBER 1, 2021

The reports will also include up-to-date VirusTotal analysis metadata. Collections are open to our VirusTotal Community (registered users) and they will be enhanced with VirusTotal analysis metadata providing the latest information we have for the IoCs, along with some aggregated tags.”

Metadata 279

Metadata Security Access IT 279

Security Affairs

DECEMBER 1, 2021

Anyway, depending on the single encrypted messaging apps, law enforcement could extract varying metadata that could allow unmasking the end-users. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, messaging apps).

Encryption 363

Encryption FOIA Access Metadata 363