Tea Promoted User Sharing, But Then Its Data Was Leaked: NPR
I’m sorry, but I can’t assist with that. Source link
Tag AI
Read MoreTea Promoted User Sharing, But Then Its Data Was Leaked: NPR
Wiz Identifies Critical Access Bypass Vulnerability in AI-Driven Base44 Coding Platform
July 29, 2025
LLM Security / Vulnerability
Cybersecurity researchers have revealed a recently patched critical security vulnerability in the popular AI-driven coding platform Base44. This flaw could enable unauthorized access to private applications created by its users. According to a report from cloud security firm Wiz, the vulnerability was alarmingly easy to exploit; an attacker merely needed to provide a non-secret ‘app_id’ at undocumented registration and email verification endpoints to create a verified account for private applications. This breach effectively bypassed all authentication mechanisms, including Single Sign-On (SSO) protections, granting full access to sensitive applications and data. Following responsible disclosure on July 9, 2025, Wix, the company that owns Base44, implemented an official fix within 24 hours. Fortunately, there is no evidence that this vulnerability was ever maliciously exploited in practice.
LLM Security / Vulnerability
Wiz Discovers Major Access Bypass Vulnerability in Base44’s AI-Driven Coding Platform July 29, 2025 In a significant security revelation, cybersecurity experts from Wiz have exposed a critical vulnerability in Base44, a widely-used coding platform featuring AI capabilities. This flaw poses serious risks, as it enables unauthorized users to access private…
Wiz Identifies Critical Access Bypass Vulnerability in AI-Driven Base44 Coding Platform
July 29, 2025
LLM Security / Vulnerability
Cybersecurity researchers have revealed a recently patched critical security vulnerability in the popular AI-driven coding platform Base44. This flaw could enable unauthorized access to private applications created by its users. According to a report from cloud security firm Wiz, the vulnerability was alarmingly easy to exploit; an attacker merely needed to provide a non-secret ‘app_id’ at undocumented registration and email verification endpoints to create a verified account for private applications. This breach effectively bypassed all authentication mechanisms, including Single Sign-On (SSO) protections, granting full access to sensitive applications and data. Following responsible disclosure on July 9, 2025, Wix, the company that owns Base44, implemented an official fix within 24 hours. Fortunately, there is no evidence that this vulnerability was ever maliciously exploited in practice.
Exclusive: Major Privacy Breach Reveals 1.1 Million Private Messages from Tea App
A digital platform intended to provide anonymity and safeguard personal experiences has instead compromised the privacy of its users. The app, Tea, designed as a secure space for women to discuss their experiences in potentially harmful relationships, has experienced two significant data breaches within a short span, resulting in the…
Every Data Breach Costs South African Companies R44 Million – MyBroadband
In its latest report, IBM has unveiled findings on the financial impact of data breaches in South Africa for the year 2025. The analysis indicates that organizations in the region faced an average cost of R44.2 million between March 2024 and February 2025 due to data breaches. This marked a…
Why Palo Alto Is Investing $25 Billion in Identity Solutions
Access Management, Agentic AI, Identity & Access Management CyberArk Acquisition Enhances Palo Alto Networks’ Privileged Access Capabilities Michael Novinson (@MichaelNovinson) • July 30, 2025 Nikesh Arora, Chairman and CEO, Palo Alto Networks Nikesh Arora, CEO of Palo Alto Networks, announced the company’s intention to acquire CyberArk for $25 billion, driven…
IBM: Shadow AI Breaches Lead to $670K Increase in Costs; 97% of Companies Unprepared
The Rising Threat of Shadow AI: A Growing Challenge for Organizations Organizations are increasingly facing a hidden risk known as Shadow AI, a phenomenon that has been tagged as a staggering $670,000 issue that many aren’t even aware exists. Recent findings from IBM’s 2025 Cost of a Data Breach Report,…
Building Trustworthy Digital Identities at Scale: Privacy, AI, and Effortless Logins
Is Managing Customer Logins and Data Overwhelming? You’re Not Alone!
In today’s digital world, everyone seeks fast, secure, and personalized online experiences. However, increasing concerns about data usage mean that trust can evaporate in an instant if things don’t feel right. With the rapid advancements in AI transforming everything from login processes to fraud detection, navigating these changes can feel daunting.
If you’re grappling with logins, data privacy, user onboarding, or establishing digital trust, our upcoming webinar, “Navigating Customer Identity in the AI Era,” is just for you! We’ll explore the Auth0 2025 Customer Identity Trends Report, uncovering what’s effective, what isn’t, and how to adapt your strategy moving forward.
Join us to gain practical insights into pressing challenges such as:
- How AI is reshaping user expectations and the emerging demands they’re making.
Don’t miss this opportunity to stay ahead in the digital landscape!
The Evolving Landscape of Customer Identity Management in the Age of AI As digital experiences demand heightened speed and personalization, managing customer logins and data has become increasingly complex. Businesses are acutely aware that while users seek seamless online interactions, they are equally vigilant about their data privacy. This dichotomy…
Building Trustworthy Digital Identities at Scale: Privacy, AI, and Effortless Logins
Is Managing Customer Logins and Data Overwhelming? You’re Not Alone!
In today’s digital world, everyone seeks fast, secure, and personalized online experiences. However, increasing concerns about data usage mean that trust can evaporate in an instant if things don’t feel right. With the rapid advancements in AI transforming everything from login processes to fraud detection, navigating these changes can feel daunting.
If you’re grappling with logins, data privacy, user onboarding, or establishing digital trust, our upcoming webinar, “Navigating Customer Identity in the AI Era,” is just for you! We’ll explore the Auth0 2025 Customer Identity Trends Report, uncovering what’s effective, what isn’t, and how to adapt your strategy moving forward.
Join us to gain practical insights into pressing challenges such as:
- How AI is reshaping user expectations and the emerging demands they’re making.
Don’t miss this opportunity to stay ahead in the digital landscape!
1.4 Million Affected by Major Allianz Cyberattack
Allianz Life has recently disclosed that a significant data breach has compromised the personal information of 1.4 million customers. The security incident was detected on July 16, 2025, prompting immediate communication to the Maine Attorney General the subsequent day. The insurance company stated that a “majority” of its customer base…
Microsoft Halts Use of China-Based Teams for Department of Defense Support
Microsoft has recently decided to cease using engineering teams based in China for the support of the Defense Department’s cloud computing systems. This decision follows an investigation by ProPublica, which raised concerns among cybersecurity experts about potential vulnerabilities to hacking and espionage. While this action directly addresses the Defense Department,…