Category: SecurityWeek

A newly discovered peer-to-peer (P2P) worm is targeting Redis servers that are vulnerable to a year-old Lua sandbox escape bug,…

Adobe has released a second round of patches for some recently disclosed ColdFusion vulnerabilities, including flaws that appear to have…

Kevin Mitnick, a hacker who famously served time in prison for various computer and communications-related crimes, has died after a…

Facing intense pressure to free up access to cloud security logs, Microsoft on Wednesday said it would expand logging defaults…

SecurityWeek’s 2023 Cloud & Data Security Summit kicks off today! This fully immersive 3D virtual event will take place on Wednesday,…

Norwegian recycling giant Tomra has taken some of its systems offline after falling victim to what it describes as “an…

Attackers are apparently trying to exploit two path traversal vulnerabilities in the ‘Stagil navigation for Jira – Menus & Themes’…

Over a dozen vulnerabilities patched recently by GE in its Cimplicity product are reminiscent of industrial control system (ICS) attacks…

Google on Tuesday announced the release of Chrome 115 to the stable channel, with patches for 20 vulnerabilities, including 11…

Oracle on Tuesday announced the release of 508 new security patches as part of the July 2023 CPU, including more…

Citrix on Tuesday announced patches for three vulnerabilities, including an actively exploited zero-day that allows remote code execution. The zero-day,…

The U.S. government’s clampdown on commercial spyware and mercenary hacking companies ramped up this week with the addition of Cytrox…