Hackers Actively Exploiting Citrix ADC and Gateway Zero-Day Vulnerability
Dec 14, 2022Ravie LakshmananApplication Security / Zero-Day
The U.S. National Security Agency (NSA) on Tuesday said a threat actor tracked as APT5 has been...
Google Adds Passkey Support to Chrome for Windows, macOS and Android
Dec 12, 2022Ravie LakshmananPassword Management
Google has officially begun rolling out support for passkeys, the next-generation passwordless login standard, to its stable version of...
How to Counter Cyberdangers Online
As a society, we have never been so connected. The internet allows for instant connections across the world, something that was only a dream...
Fortinet Warns of Active Exploitation of New SSL-VPN Pre-auth RCE Vulnerability
Dec 13, 2022Ravie LakshmananVirtual Private Network / Network Security
Fortinet on Monday issued emergency patches for a severe security flaw affecting its FortiOS SSL-VPN...
StormWall’s New Point of Presence in Singapore
StormWall, a cybersecurity service that specializes in providing DDoS protection for IT infrastructures of all sizes and complexity, including websites, networks, and online services,...
Google Launches Largest Distributed Database of Open Source Vulnerabilities
Dec 13, 2022Ravie LakshmananOpen Source / Vulnerability Database
Google on Tuesday announced the open source availability of OSV-Scanner, a scanner that aims to offer...
Hackers Deploy New Python Malware on VMware ESXi Server
A backdoor was found on a VMware ESXi virtualization server by Juniper Threat Labs. Reports say two vulnerabilities in the ESXi’s OpenSLP service, CVE-2019-5544...
Malware Strains Targeting Python and JavaScript Developers Through Official Repositories
Dec 13, 2022Ravie Lakshmanan
An active malware campaign is targeting the Python Package Index (PyPI) and npm repositories for Python and JavaScript with typosquatted...
Multiple Zero-Day Vulnerabilities in Antivirus and Endpoint
Or Yair of SafeBreach Labs recently discovered multiple security Zero-Day vulnerabilities that could be exploited by the threat actors to create next-generation wipers by...
Serious Attacks Could Have Been Staged Through This Amazon ECR Public Gallery Vulnerability
Dec 13, 2022Ravie LakshmananSoftware Security / Cloud Security
A critical security flaw has been disclosed in Amazon Elastic Container Registry (ECR) Public Gallery that...