Researchers discovered the authentication bypass vulnerability while investigating a prior issue in the same service.
Related Articles
All CyberSecurityDive →
US agencies, international allies issue guidance on OT asset inventorying
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Government agencies from the U.S., Australia, Canada,…
Critical vulnerability in CrushFTP file transfer software under attack
A critical vulnerability in CrushFTP’s file transfer server software has come under attack less than a week after the flaw was assigned a CVE. The…
CFOs, financial execs in crosshairs of ‘highly targeted’ spearphishing campaign
Dive Brief: A “highly targeted” spearphishing campaign is attempting to ensnare financial executives at banks, investment firms, energy utilities and insurance companies around the world,…
Companies want more from their threat intelligence platforms
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Businesses face a range of…
Grafana Labs links GitHub environment breach to TanStack npm supply chain attack
The company behind the widely used observability platform refused an extortion demand and has since taken steps to harden its security. Source link
CISOs see gaps in their incident response playbooks
A survey by Sygnia reveals that senior-level security leaders fear they are not prepared to respond to the next cyberattack. Source link