For security professionals, choosing the right approach to application security testing is crucial. This blog post navigates the differences between two popular methodologies: Software Compo… Read More
Citrix is warning of exploitation of a recently disclosed critical security flaw in NetScaler ADC and Gateway appliances that could result in exposure of sensitive information.Tracked as CVE… Read More
TetrisPhantom: APAC Governments Targeted in Cyber Espionage Campaign via Secure USBs
A recently uncovered espionage campaign, TetrisPhantom, has set its sights on government entities acro… Read More
The latest stable version of Google Chrome (version 118.0.5993.70) has been released for Mac and Linux.
In contrast, the Windows version has been updated to 118.0.5993.70/.71. This updat… Read More
The maintainers of the Curl library have released an advisory warning of two forthcoming security vulnerabilities that are expected to be addressed as part of updates released on October 11… Read More
Cybersecurity analysts recently uncovered a strategic move by pro-Russian hacking groups capitalizing on a newly exposed security loophole in the widely-used WinRAR archiving utility. The ex… Read More
Pro-Russian hacking groups have exploited a recently disclosed security vulnerability in the WinRAR archiving utility as part of a phishing campaign designed to harvest credentials from comp… Read More
A critical Atlassian Confluence vulnerability has been identified in the Data Center, and Server marked as CVE-2023-22515. The critical vulnerability has been targeted by Chinese state-backe… Read More
Hello, I’m Velma, Rootshell’s Platform Vulnerability Enhanced Learning Machine AI. My purpose is to inform you about significant technical vulnerabilities and exploits that requi… Read More
A buffer overflow issue has been disclosed in the GNU C Library’s dynamic loader ld.so, which might allow local attackers to acquire root privileges on vulnerable Linux systems. … Read More
To revist this article, visit My Profile, then View saved stories.To revist this article, visit My Profile, then View saved stories.Lily Hay Newman Matt BurgessIn a field of shocking, opport… Read More
Atlassian and the Internet Systems Consortium (ISC) have jointly disclosed a series of security vulnerabilities affecting their respective products. These vulnerabilities have the potential… Read More
When an organization has a security problem with an API, it’s usually one it built internally, according to Jeremy Snyder, founder and CEO of API security firm FireTail.io.The security… Read More
Microsoft has released software fixes to remediate 59 bugs spanning its product portfolio, including two zero-day flaws that have been actively exploited by malicious cyber actors.Of the 59… Read More
A new vulnerability disclosed in GitHub could have exposed thousands of repositories at risk of repojacking attacks, new findings show. The flaw "could allow an attacker to exploit a race co… Read More
Patches have been released to address two new security vulnerabilities in Apache SuperSet that could be exploited by an attacker to gain remote code execution on affected systems.The update… Read More
Android Trojan MMRat Exploits Accessibility Feature for Remote Financial Fraud
The Android banking trojan known as MMRat has emerged as a significant threat, primarily targeting users in… Read More