Connect with us
Developers of the OpenSSH secure networking utility are ‘future proofing’ the technology by adopting post-quantum cryptography. The latest OpenSSH 9.0 release defaults to the NTRU Prime algorithm – a...
Miscreants have started abusing the recently discovered Spring4Shell vulnerability as a vector for the spread of the Mirai botnet. Trend Micro researchers have noticed the active exploitation of...
The early months of 2022 are behind us and, as security professional prepare for the upcoming conference season, it’s high time to load up the security...
Cybersecurity researchers have disclosed a code injection flaw in the Spring Cloud computing framework that poses a remote attack risk. On March 28, infosec firm NSFOCUS...
Attackers are exploiting security vulnerabilities more quickly, often within a week of their public disclosure, according to a study by Rapid7. The latest edition of Rapid7’s annual Vulnerability Intelligence...
A popular software library for rendering PDFs from HTML documents suffers from an unpatched vulnerability that poses a remote code execution (RCE) risk, security researchers claim. Flaws in...
Users of Parse Server, a popular API server module for Node/Express, are being urged to immediately apply a fix for a remote code execution (RCE) vulnerability. Discovered by security researchers...
A security researcher has disclosed a second tranche of bugs in Facebook Canvas that, like their predecessors, pose an account takeover risk. Security researcher Youssef Sammouda...
Security limitations in the default protection offered by Google’s web application firewall (WAF) make it possible to bypass the company’s cloud-based defenses. Researchers at security consultancy Kloudle found...
A remote code execution (RCE) attack chain caused by a local file inclusion bug in blogging platform Hashnode has been disclosed by security researchers. On February...
Recent Comments