Connect with us
OSS-Fuzz is now on the lookout for the Log4j Java library flaw. The remotely exploitable flaw in Log4j – the widely deployed Java error logging library...
A basic Javascript WebSocket connection can trigger a local Log4j remote code attack via a drive-by compromise. Wonderful. Truly wonderful. It doesn’t rain, but it pours....
Western Digital is urging customers to update their WD My Cloud devices to the latest available firmware to keep receiving security updates on My Cloud OS...
All set for the weekend? Not so fast. Yesterday, BleepingComputer summed up all the log4j and logback CVEs known thus far. Ever since the critical log4j zero-day saga started...
The Cybersecurity and Infrastructure Security Agency order comes as a prominent firm says nation states are exploiting the vulnerabilities. Federal agencies have until 5 pm on...
Four affiliated online sports gear sites have disclosed a cyberattack where threat actors stole credit cards for 1,813,224 customers. While not much is known about the...
An information technology system security breach detected late last month prompted the Virginia Museum of Fine Arts to shut down its website for a state investigation,...
Threat Actors Have Switched from LDAP Callback URLs to RMI in Order to Increase Their Chances of Success. These past few days have been about the...
Cybersecurity professionals from across Ukraine have tackled a large-scale cyber-attack simulation with echoes of the hugely damaging real-world assault against the country’s power grid in 2015....
An information security industry campaign geared towards stamping out workplace harassment and social media cyber bullying has received pledges from a number of businesses to implement...
