Solving the Access Goldilocks Problem: RBAC for InsightAppSec Is Here
Role-Based Access Control (RBAC) lets you flexibly provide the right levels of access to InsightAppSec for each role on your security team.
R7-2017-03: Improper Access Control of Fuze Meeting Recordings (FIXED)
This post describes a security vulnerability
[https://www.rapid7.com/fundamentals/vulnerabilities-exploits-threats/] in the
Fuze collaboration platform, and the mitigation steps that have been taken to
correct the issue. The Fuze collaboration platform did not require
authentication to access meeting recordings (CWE-284
[https://cwe.mitre.org/data/definitions/284.html]). Shortly after being informed
of this issue, Fuze disabled public access to all recorded meetings, and
Are You Enabling Corporate Espionage?
While I was flipping through some news stories the other day, a small headline
appeared that piqued my interest
The headline reads: Former St. Louis Cardinals Exec Pleads Guilty To Cyber
Cyber espionage… in baseball? That was too intriguing to pass up!
It essentially describes this: employees from one club, the St Louis Cardina