Connect with us
Drupal, the widely used web content management system (CMS), has released security updates due to vulnerabilities in CKEditor, a third-party rich text editor bundled with Drupal....
Clubhouse, the audio-based chatroom application, has rolled out a public bug bounty program on HackerOne. Financial rewards for unearthing critical flaws are pegged at $3,000, while ‘high’ severity...
GitHub security researchers have released details of two vulnerabilities they discovered in NPM, the Node.js package manager, one of which could allow a malicious actor to publish new...
Cybercriminals are starting to consider leasing our rather than just selling zero-day vulnerabilities under a potential “exploit-as-a-service” model for the first time, according to threat intel firm Digital...
Multiple security vulnerabilities in a popular open source content management system (CMS) could allow a malicious attacker to gain full control of the underlying web server. The issues...
A change of focus took place in the Magniber ransomware’s gang attack method arsenal, as now the threat actor group started to propagate the ransomware and...
The maintainers of GoCD, a widely used, open source tool that automates the continuous delivery (CD) of software, have addressed three vulnerabilities that, if chained, could lead to...
Security researchers have discovered a high-impact vulnerability on some versions of the widely used Palo Alto GlobalProtect Firewall/VPN that leaves enterprise networks open to attack. The vulnerability (CVE 2021-3064; with...
A security researcher has released details of a high-impact, but long-since patched vulnerability in Google’s GSuite that allowed an attacker to add themselves as a super...
Apache Storm, an open source real-time streaming data analytics platform, has patched two vulnerabilities that led to remote code execution (RCE). Discovered and reported by GitHub...
