Government must take the lead on STEM diversity
MPs have asked the government to clarify how the newly created Department for Science, Innovation and Technology will help to...
Read more →News Archive
View All →
Misconfigured JSF ViewStates can lead to severe RCE vulnerabilities
tl;dr ViewStates in JSF are serialized Java objects. If the used JSF implementation in a web application is not configured...
Read more →
ChatGPT payment data leak caused by open-source bug
OpenAI says a Redis client open-source library bug was behind Monday’s ChatGPT outage and data leak, where users saw other...
Read more →
Analysis: Will ChatGPT’s Perfect English Change the Game For Phishing Attacks?
[ This article was originally published here ] By John E. Dunn Nobody predicted how rapidly AI chatbots would change...
Read more →
Seguridad de iOS – Web View XSS – allysonomalley.com
Esta entrada se trata de una vulnerabilidad sencilla, pero peligrosa, que he visto en varias ocasiones. Creo que esta falla...
Read more →
UK creates fake DDoS-for-hire sites to identify cybercriminals
The U.K.’s National Crime Agency (NCA) revealed today that they created multiple fake DDoS-for-hire service websites to identify cybercriminals who utilize...
Read more →
CISA Released a New Tool to Detect Hacking Activity
As part of its ongoing efforts to protect Microsoft cloud environments against malicious activity, CISA recently introduced an open-source incident...
Read more →
LATEST CYBERTHREATS AND ADVISORIES – MARCH 24, 2023
[ This article was originally published here ] By John Weiler FBI arrests Breached hacking forum leader, smartphones hijacked without...
Read more →
‘Bitter’ espionage hackers target Chinese nuclear energy orgs
A cyberespionage hacking group tracked as ‘Bitter APT’ was recently seen targeting the Chinese nuclear energy industry using phishing emails...
Read more →
Synopsys discover new vulnerability in Pluck Content Management System
Software security company Synopsys have discovered a new remote code execution vulnerability (RCE) in the Pluck CMS system. Pluck is...
Read more →
Malicious ChatGPT Chrome Extension Steal Facebook Accounts
Thousands of Facebook accounts have been stolen due to a trojanized version of the legitimate ChatGPT extension for Google Chrome....
Read more →
Malicious Python Package Uses Unicode Trickery to Evade Detection and Steal Data
Mar 24, 2023Ravie LakshmananDevSecOps / Software Security A malicious Python package on the Python Package Index (PyPI) repository has been...
Read more →