#security (2022-04)

Archive: https://archive.sweetops.com/security/


Or Azarzar avatar
Or Azarzar
AWS RDS Vulnerability Leads to AWS Internal Service Credentialsattachment image

Lightspin obtains credentials to an internal AWS service by exploiting a local file read vulnerability on the RDS EC2 instance using the log_fdw extension.


Lucky avatar
'Mute' button in conferencing apps may not actually mute your micattachment image

A new study shows that pressing the mute button on popular video conferencing apps (VCA) may not actually work like you think it should, with apps still listening in on your microphone.