CISA, Australia warn of IDOR vulnerabilities after major breaches

Cybersecurity agencies in the U.S. and Australia warned Thursday of a specific brand of vulnerabilities that allow hackers to change or delete data by using the identities of users allowed to access the information. Known as insecure direct object reference (IDOR) vulnerabilities, the bugs involve hackers issuing requests to websites or web application programming interfaces

access australia brand breaches bugs change cisa cybercrime cybersecurity data delete government hackers identities idor information insecure insecure direct object reference major object reference requests vulnerabilities websites