all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Insurance website's buggy API leaked Office 365 password and a giant email trove

Add to bookmarks
Jan. 18, 2024, 1:58 a.m. | Thomas Claburn

The Register - Security www.theregister.com

Pen-tester accessed more than 650,000 sensitive messages, and still can, at Indian outfit using Toyota SaaS

Toyota Tsusho Insurance Broker India (TTIBI), an Indo-Japanese joint insurance venture, operated a misconfigured server that exposed more than 650,000 Microsoft-hosted email messages to customers, a security researcher has found.…

api broker can customers email exposed found giant india insurance japanese leaked messages microsoft misconfigured misconfigured server office office 365 password pen researcher saas security security researcher sensitive server toyota venture website

Visit resource

More from www.theregister.com / The Register - Security

Akira: Perhaps the next big thing in ransomware, says Tidal threat intelligence chief 15 hours ago | www.theregister.com
akira akira ransomware attention big +15
Uber ex-CSO Joe Sullivan: We need security leaders running to work, not giving up 1 day, 13 hours ago | www.theregister.com
app chief chief security officer convicted +19
'New York Times source code' leaks online via 4chan 2 days, 4 hours ago | www.theregister.com
4chan board breaking claims +10
FCC takes some action against notorious BGP 2 days, 5 hours ago | www.theregister.com
action bgp border border gateway protocol +15
Defiant Microsoft pushes ahead with controversial Recall – tho as an opt-in 2 days, 8 hours ago | www.theregister.com
beef clear customers data +8
Frontier Communications: 750k people's data stolen in April attack on systems 2 days, 9 hours ago | www.theregister.com
april attack claims communications +12
How to navigate NIS2 and secure your vulnerabilities 2 days, 12 hours ago | www.theregister.com
attack challenges cps cyber +13
Cisco fixes WebEx flaw that allowed government, military meetings to be spied on 2 days, 12 hours ago | www.theregister.com
bugs cisco data dutch +15
Russian hacktivists vow mass attacks against EU elections 2 days, 17 hours ago | www.theregister.com
attack attacks elections hacktivist +6

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com