Connect with us
A new open source library designed to thwart server-side request forgery (SSRF) attacks plugs a significant gap in Go developers’ armory, according to its architects. Safeurl, a one-line...
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Vulnerability with public PoC affects Cisco IP phones, fix unavailable (CVE-2022-20968)A...
To evade detection by security software, malware developers and threat actors increasingly use compromised code-signing certificates to sign their malware. This trend was illustrated this week...
Google announced on Friday that it’s adding end-to-end encryption (E2EE) to Gmail on the web, allowing enrolled Google Workspace users to send and receive encrypted emails...
The Glupteba malware botnet has sprung back into action, infecting devices worldwide after its operation was disrupted by Google almost a year ago. In December 2021,...
Organizations in the food sector are now also targeted in business email compromise (BEC) attacks that aim to steal entire shipments of food, according to a...
Colombian energy company Empresas Públicas de Medellín (EPM) suffered a BlackCat/ALPHV ransomware attack on Monday, disrupting the company’s operations and taking down online services. EPM is...
The Centers for Medicare and Medicaid said the breach involved a subcontractor that appears to have violated its obligations to the agency. Personal data including bank...
Our second web security roundup begins with news that a brace of network security flaws in products from Fortinet and Citrix have each come under active attack. These attacks were...
Social media analytics platform Social Blade has confirmed they suffered a data breach after its database was breached and put up for sale on a hacking...
Recent Comments