Security Alerts & News
by Tymoteusz A. Góral

History
#2156 Doxed by Microsoft’s Docs.com: Users unwittingly shared sensitive docs publicly
On March 25, security researcher Kevin Beaumont discovered something very unfortunate on Docs.com, Microsoft's free document-sharing site tied to the company's Office 365 service: its homepage had a search bar. That in itself would not have been a problem if Office 2016 and Office 365 users were aware that the documents they were posting were being shared publicly.

Unfortunately, hundreds of them weren't. As described in a Microsoft support document, "with Docs.com, you can create an online portfolio of your expertise, discover, download, or bookmark works from other authors, and build your brand with built-in SEO, analytics, and email and social sharing." But many users used Docs.com to either share documents within their organizations or to pass them to people outside their organizations—unaware that the data was being indexed by search engines.
Read more
#2161 Ransomware scammers exploited Safari bug to extort porn-viewing iOS users
#2160 Apple pushes security update to OSX Yosemite and ElCapitan
#2159 Researcher says API flaw exposed Symantec certificates, including private keys
#2158 Alleged vDOS owners poised to stand trial
#2157 Nokia to smartphone owners: Malware infections are far higher than you think
#2156 Doxed by Microsoft’s Docs.com: Users unwittingly shared sensitive docs publicly
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12