Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

SSRF Flaw in Fintech Platform Allowed for Compromise of Bank Accounts

Vulnerabilities

Cerberus last edited by

Researchers discovered the vulnerability in an API already integrated into many bank systems, which could have defrauded millions of users by giving attackers access to their funds.

https://threatpost.com/ssrf-flaw-fintech-bank-accounts/179247/
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
1 Reply Last reply
Reply Quote 0

Suggested Topics

Time to Ditch Big-Brother Accounts for Network Scanning
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

0
Views

Yaron Kassner, CTO and co-founder of Silverfort, discusses why using all-seeing privileged accounts for monitoring is bad practice.

https://threatpost.com/domain-admin-accounts-scan-network/177194/
The Log4j Vulnerability Puts Pressure on the Security World
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

1
Views

It’s time to sound the alarm for Log4Shell. Saryu Nayyar, CEO at Gurucul, discusses what actions you should be taking.

https://threatpost.com/log4j-vulnerability-pressures-security-world/177721/
Box 2FA Bypass Opens User Accounts to Attack
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

0
Views

A security bug in the file-sharing cloud app could have allowed attackers using stolen credentials to skate by one-time SMS code verification requirements.

https://threatpost.com/box-2fa-bypass-accounts-attack/177760/

1 / 1

SSRF Flaw in Fintech Platform Allowed for Compromise of Bank Accounts

Suggested Topics

Time to Ditch Big-Brother Accounts for Network Scanning Vulnerabilities • vulnerabilities • • Cerberus

The Log4j Vulnerability Puts Pressure on the Security World Vulnerabilities • vulnerabilities • • Cerberus

Box 2FA Bypass Opens User Accounts to Attack Vulnerabilities • vulnerabilities • • Cerberus

Time to Ditch Big-Brother Accounts for Network Scanning
Vulnerabilities • vulnerabilities • • Cerberus

The Log4j Vulnerability Puts Pressure on the Security World
Vulnerabilities • vulnerabilities • • Cerberus

Box 2FA Bypass Opens User Accounts to Attack
Vulnerabilities • vulnerabilities • • Cerberus