Tag Archives: Data Breaches

Twitter private account name may have been released for some users

Twitter revealed that an earlier security vulnerability that allowed someone to enter a phone number or email address to verify if that information was tied to an existing Twitter account. The Twitter user account name was returned if a match was found. Twitter fixed this issue and is in the process of contacting only those users that were affected by this incident.

Apache Java logging library security alert for servers

The Apache Software Foundation has released a security advisory for Java logging library Apache Log4j. This flaw is also known as Log4Shell.  This vulnerability may be exploited over a network without the need for a username and password.  This is logged in the National Vulnerability Database (NVD) as CVE-2021-44228.  Multiple server and cloud software vendors will be releasing security updates.