Episode #193 - Unintentional Data Leak by VirusTotal Exposes 5,600 Account Details; Death of Twitter Info Sec; CT License Plate Scans; CITRIX Pwned

🎙️ Free access to “It’s 5:05!” on your favorite podcast platforms: bit.ly/its505-free-access-on-all-podcast-platforms 📌

Unintentional Data Leak by VirusTotal Exposes 5,600 Account Details

🇦🇺 Edwin Kwan, Sydney, Australia ↗

VirusTotal has suffered a data leak. The popular online service was launched in 2004 and is used to analyze suspicious files and URLs to detect malicious content or malware. The data leak involved a database with 5,600 registered customer names and email addresses.

Death of Twitter Info Sec

🇷🇴 Olimpiu Pop, Transylvania, Romania ↗

Twitter was the information source for many technologist; security experts included. The Cyentia Institute wanted to know the size of what they called " InfoSec Twitter." Under this umbrella, they followed all information related to CVEs posted on the platform. 

 CT License Plate Scans

🇺🇸 Hillary Coover, Washington, DC ↗

License plate readers are becoming more common on Connecticut roads, raising privacy concerns. However, the readers, which scan and record license plates, are not really an infringement of privacy since vehicle registration data are publicly available.

 CITRIX Pwned

🇺🇸 Katy Craig, San Diego, California ↗

In a cybersecurity cat-and-mouse-game, attackers are taking advantage of a critical Remote Code Execution (RCE) vulnerability in Citrix's NetScaler ADC and NetScaler Gateway Technologies. The scary part? No authentication is needed for the exploit.