Developers addressed a command injection vulnerability in asciidoctor-include-ext, a popular Ruby library that allows users to parse and convert AsciiDoc files. According to the report, this vulnerability allows remote codeRead More →
Cybersecurity specialists from the firm Website Planet report the detection of a completely unprotected database that guarded a total of 12,976,279 records belonging to FOX News, including usernames, employee identifiersRead More →
As part of cyberattacks in protest against the Russian invasion of Ukraine, the hacktivist group Anonymous exposed the personal data of some 120,000 Russian soldiers who have actively participated inRead More →
A severe vulnerability in a PHP function would allow threat actors to evade security measures implemented for the protection of web applications. The affected feature is filter_var(), which allows developersRead More →
Dealing with airlines can be a headache, although there are certainly those who are willing to take extreme measures to get what they want. Such is the case of NandanRead More →
A hacking group managed to obtain confidential information from some users after contacting the Apple and Meta support areas posing as police officers, accessing records such as full names, phoneRead More →
It has been confirmed that the cyberattack targeting the US-based firm Sitel has resulted in a data breach affecting Okta, an identity and access management company that subcontracted Sitel forRead More →
JFrog cybersecurity specialists are investigating a wave of malicious Node Package Manager (npm) packages deployed by an unidentified threat actor. This threat was first detected on March 21, with 200Read More →
Open source interactive HTTPS proxy service Mitmproxy announced the fix of a dangerous vulnerability that would have allowed threat actors to deploy HTTP request smuggling attacks against backend servers. TheseRead More →