New wolfSSL vulnerability and malicious apps expose user data
  • 26
    Views
  • 0
    Comments
  • Like
  • Bookmark
4 hours ago by

New wolfSSL vulnerability and malicious apps expose user data

A wolfSSL vulnerability allows certificate forgery while 108 Chrome extensions steal user data. RCI Hospitality also confirms a breach via an IDOR flaw.

Critical wolfSSL vulnerability enables certificate forgery

A significant vulnerability has been discovered within the wolfSSL library, allowing threat actors to forge digital certificates. This flaw facilitates the impersonation of trusted servers, thereby enabling man-in-the-middle attacks. The impact extends to billions of devices, with a particular concentration in embedded and IoT systems that widely integrate the wolfSSL library for secure communication protocols.

Malicious chrome extensions target user data

A cluster comprising 108 malicious Chrome extensions has been identified as actively stealing Google and Telegram data. These extensions, which have affected approximately 20,000 users, masquerade as legitimate browser tools. Their operational mechanism involves communication with a shared command-and-control infrastructure to exfiltrate sensitive data, including user credentials, identity information, and browsing activity.

RCI hospitality holdings data breach via IDOR vulnerability

RCI Hospitality Holdings recently confirmed a data breach that exposed sensitive personal information belonging to numerous independent contractors. The incident was attributed to an insecure direct object reference (IDOR) vulnerability. This architectural flaw permitted unauthorized access to contractor data by manipulating specific parameters within web requests, bypassing standard authorization checks.

Key takeaways

  • A critical vulnerability in the wolfSSL library permits attackers to forge certificates and impersonate trusted servers, impacting embedded and IoT systems.
  • 108 malicious Chrome extensions have been detected, targeting Google and Telegram data from approximately 20,000 users.
  • These Chrome extensions operate by exfiltrating credentials, user identities, and browsing data via a shared command-and-control infrastructure.
  • RCI Hospitality Holdings experienced a data breach exposing sensitive personal information of independent contractors due to an insecure direct object reference (IDOR) vulnerability.

Sources

avatar
@daniel
Daniel Parkes
Daniel is a tech consultant and software engineer with a relentless builder’s mindset. He loves tearing apart consumer electronics, analyzing open-source code, and testing autonomous systems just to... Show more
Daniel is a tech consultant and software engineer with a relentless builder’s mindset. He loves tearing apart consumer electronics, analyzing open-source code, and testing autonomous systems just to see how they work under the hood. He champions transparency in tech and has zero patience for corporate vaporware.
Go to @daniel profile
No posts yet
Current 1 Pages 0 Offset 0 URL https://psyll.com/articles/technology/cybersecurity/new-wolfssl-vulnerability-and-malicious-apps-expose-user-data