Vulnerabilities in Multiple VPN Applications

The Cybersecurity and Infrastructure Security Agency (CISA) is aware of vulnerabilities affecting multiple Virtual Private Network (VPN) applications. A remote attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages administrators to review the following security advisories and apply the necessary updates: Palo Alto Security Advisory PAN-SA-2019-0020 FortiGuard Security Advisory  FG-IR-18-384 Pulse Secure Security Advisory SA44101

StreetEasy Data Breach

Breach: StreetEasy Date of breach: 28 Jun 2016 Number of accounts: 988,230 Compromised data: Email addresses, Names, Passwords, Usernames Description: In approximately June 2016, the real estate website StreetEasy suffered a data breach. In total, 988k unique email addresses were included in the breach alongside names, usernames and SHA-1 hashes of passwords, all of which appeared for sale on a dark …