TL;DR: A critical deserialization vulnerability (CVSS 9.8 – CVE-2025-27520) in BentoML (v1.3.8–1.4.2) lets attackers execute remote code without authentication. Discovered by Checkmarx Zero. Upgrade to…
We all have a problem keeping up with friends and family that have moved away. The problem is simple: we, as humans, can only have…
Dive Brief: Fortinet detailed new exploitation activity against known critical vulnerabilities in FortiGate devices, including CVE-2022-42475, CVE-2023-27997 and CVE-2024-21762, in a Thursday blog post.. Fortinet said that…
Western Sydney University (WSU) announced two security incidents that exposed personal information belonging to members of its community. WSU is a prominent Australian institution offering…
Table Tennis is my sport. It has been since the late 90’s. I’ll not go into my many reasons for loving it, but a good…
Dive Brief: Cybersecurity threats emerged as tech executives’ top challenge and area for investment, according to a report published Tuesday by IT resources and managed…
Fortinet warns that threat actors use a post-exploitation technique that helps them maintain read-only access to previously compromised FortiGate VPN devices even after the original…
In recent years, we’ve become familiar with ransomware attacks, where hackers infiltrate computer networks, encrypt files, and demand payment in exchange for restoring access. As…
The US State Department reportedly plans to sign an international agreement designed to govern the use of commercial spyware known as the Pall Mall Pact.…
So I now have fully functioning VOIP at the house using Asterisk, but I currently only have a soft phone, i.e. phone software running on…
Google’s AI video generator tool Veo 2, which is the company’s take on OpenAI’s Sora, is now rolling out to some users in the United…
Maintaining work-life balance has been the biggest challenge many women in the technology industry have come up against, according to a survey. Recruitment firm Lorien…
