New Threat Actor “Grayling” Blamed For Espionage Campaign
Symantec highlights distinctive DLL sideloading technique Read More
Stories from the SOC: Quishing – Combatting embedded malicious QR codes
James Rodriguez – Senior Specialist, Cybersecurity Executive summary Over the past several months, AT&T Managed Detection and Response (MTDR) security operations center (SOC) analysts have...
tracker-miners-3.4.5-1.fc37
FEDORA-2023-40044895ce Packages in this update: tracker-miners-3.4.5-1.fc37 Update description: Seccomp jail improvements (CVE-2023-43641) Read More
tracker-miners-3.5.3-1.fc38
FEDORA-2023-e8f45c67f5 Packages in this update: tracker-miners-3.5.3-1.fc38 Update description: Seccomp jail improvements (CVE-2023-43641) Read More
Magecart Hackers Hide in 404 Error Pages
Akamai spots new digital skimming campaign Read More
USN-6424-1: kramdown vulnerability
It was discovered that kramdown did not restrict Rouge formatters to the correct namespace. An attacker could use this issue to cause kramdown to execute...
CVE-2020-18336
Cross Site Scripting (XSS) vulnerability found in Typora v.0.9.65 allows a remote attacker to obtain sensitive information via the PDF file exporting function. Read More
DSA-5521 tomcat10 – security update
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. Read More
DSA-5522 tomcat9 – security update
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. Read More
DSA-5520 mediawiki – security update
Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, denial of service or information disclosure...