"According to BleepingComputer, a recent breach on LexisNexis gave hackers access to nearly 4 million database records, thousands of accounts, password hashes, and cloud records. The company admitted the hackers gained access by exploiting an unpatched React vulnerability in its systems."
"According to Automox, 60% of data breaches are tied to unpatched vulnerabilities. While others have slightly different statistics, the signal is clear: unpatched system flaws have been an easy way in for hackers. And LexisNexis is yet another number in the broader stats."
"BleepingComputer reported that the hackers exploited a months-old vulnerability in React2Shell. The flaw enabled them to access AWS containers containing customer information. The hackers noted that the company, which also provides security services, had insecure AWS infrastructure, allowing them to gain easy access to data stored in its cloud account."
LexisNexis, a global legal and data analytics provider serving government and corporate organizations across 150+ countries, suffered a major breach affecting nearly 4 million database records. Hackers exploited an unpatched React vulnerability in the company's systems to gain access to thousands of accounts, password hashes, and cloud records. The stolen data, totaling over 2 gigabytes, was dumped on dark web platforms by hacker group FulcrumSec. The breach highlights a critical security issue: approximately 60% of data breaches stem from unpatched vulnerabilities. The hackers also discovered insecure AWS infrastructure, enabling them to easily access customer information stored in cloud containers.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]