Connect with us
A three-day hackathon held by Yahoo last week uncovered hundreds of security bugs in its text search engine tool Vespa. The event, held in Antwerp, Belgium...
A security researcher has discovered a way to launch code execution attacks by exploiting the GitHub Pages build process. Joren Vrancken netted a $4,000 reward for...
Researchers at Johns Hopkins University have developed a graph-based code analysis tool that can detect a wide range of vulnerabilities in JavaScript programs. Called ODGen, the tool...
Google will now pay security researchers to find and report bugs in the latest versions of Google-released open-source software (Google OSS). The company’s newly announced Vulnerability...
Vulnerability disclosures impacting IoT devices increased by 57% in the first half (1H) of 2022 compared to the previous six months, according to a research by Claroty....
A critical vulnerability (CVE-2022-36804) in Atlassian Bitbucket Server and Data Center could be exploited by unauthorized attackers to execute malicious code on vulnerable instances. About CVE-2022-36804...
Data for over 2.5 million individuals with student loans from Oklahoma Student Loan Authority (OSLA) and EdFinancial was exposed after hackers breached the systems of technology services provider Nelnet...
Veracode released data revealing that the financial services industry ranks among the best for overall flaw percentage when compared to other industries, but has one of...
A critical command injection vulnerability in a Bitbucket product could allow an attacker to execute arbitrary code, researchers warn. Bitbucket is a Git-based source code repository hosting service...
LastPass has alerted users to a security incident after an unauthorized party gained access to the company’s internal network. In a statement issued yesterday (August 25), LastPass CEO...
