Skip to content
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • LABS
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap
GeekWire
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • LABS
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap

Open Source

OpenSSL Releases Vulnerabilities Patches

8 February 2023

Feb 7th, 2023 – OpenSSL Vulnerability Overview: OpenSSL releases vulnerability patches for two freely supported open-source binary trains …

Tags Advisory, Blogs, Open Source, Open Source Software, OpenSSL

#SOOCon23: Global Cooperation Needed to Enhance Open Source Software Security

8 February 2023

Greater international collaboration is needed in order to strengthen open source software security while retaining its benefits, was the …

Tags Cooperation, Global, IT, Open Source, Open Source Software

OpenSSL fixes High Severity data-stealing bug – patch now!

8 February 2023

OpenSSL, probably the best-known if not the most widely-used encryption library in the world, has just release a trifecta of security …

Tags Cryptography, High, Open Source, Open Source Software, OpenSSL

Top 6 SaaS Security Threats for 2023

6 February 2023

With the New Year here and employees back from holiday vacations, it’s time for security teams to prepare for the security challenges …

Tags Data, IT, Open Source, Open Source Software, Security Threats

Cequence Security API Security Testing framework encourages early discovery of vulnerabilities

6 February 2023

Application programming interface security startup Cequence Security Inc. today announced enhanced testing capabilities within its …

Tags Azure Devops, Cyber, GitLab, Open Source, Open Source Hosting

OpenSSH Releases Patch for New Pre-Auth Double Free Vulnerability

6 February 2023

The maintainers of OpenSSH have released OpenSSH 9.2 to address a number of security bugs, including a memory safety vulnerability in the …

Tags Double, New, Open Source, Patch, Releases

HeadCrab bots pinch 1,000+ Redis servers to mine coins

4 February 2023

A sneaky botnet dubbed HeadCrab that uses bespoke malware to mine for Monero has infected at least 1,200 Redis servers in the last 18 …

Tags Databases, NoSQL, Open Source, Open Source Databases, Open Source Software

OpenSSH fixes double-free memory bug that’s pokable over the network

3 February 2023

The open source operating system distribution OpenBSD is well-known amongst sysadmins, especially those who manage servers, for its focus …

Tags IT, Open Source, Open Source Software, OpenSSH, Security Pro

Scores of Redis Servers Infested by Sophisticated Custom-Built Malware

3 February 2023

An unknown threat actor has been quietly mining Monero cryptocurrency on open source Redis servers around the world for years, using a …

Tags Cloud Computing, Databases, Malware, NoSQL, Open Source

Drupal Releases Security Update to Address a Vulnerability in Apigee Edge

2 February 2023

Drupal released a security update to address a vulnerability affecting the Apigee Edge module for Drupal 9.x. An attacker could exploit …

Tags Address, Apigee, Content-management Framework, Drupal, Open Source

4 Cloud Security Considerations for Financial Services Firms

1 February 2023

The workloads that financial services companies deploy in the cloud aren’t fundamentally different in most cases from those deployed in …

Tags Cloud Computing, Cloud Security, Compliance, Financial Services, Open Source

BEC Group Uses Open Source Tactics in Hundreds of Attacks

1 February 2023

Security researchers have warned of a highly successful new business email compromise (BEC) group that has targeted hundreds of victims in …

Tags Attacks, BEC, IT, Open Source, Tactics

Auditing Kubernetes with Open Source SIEM and XDR

1 February 2023

Container technology has gained traction among businesses due to the increased efficiency it provides. In this regard, organizations widely …

Tags Auditing, Containers, IT, Open Source, XDR

How to set up ongoing replication from your third-party secrets manager to AWS Secrets Manager

31 January 2023

Why and when to consider replicating secrets The primary use case for this post is for customers who are running applications on AWS and …

Tags AWS Lambda, HashiCorp, How, Key Management Service, Open Source
Older posts
Page1 Page2 … Page205 Next →
Cookie-Free

NVD

  • CVE-2023-25168 – Wings is Pterodactyl’s server control plane. This vulnerability can be used to delete file …9 February 2023
  • CVE-2022-40480 – Nordic Semiconductor, Microchip Technology NRF5340-DK DT100112 was discovered to contain a …8 February 2023
  • CVE-2023-0718 – The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a mis …8 February 2023
  • CVE-2023-24828 – Onedev is a self-hosted Git Server with CI/CD and Kanban. In versions prior to 7.9.12 the …8 February 2023
  • CVE-2022-45192 – An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio ran …8 February 2023
  • CVE-2022-45190 – An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio ran …8 February 2023

EXPLOITS

  • Feehi CMS 2.1.1 – Remote Code Execution (Authenticated)22 November 2022
  • SmartRG Router SR510n 2.6.13 – Remote Code Execution22 November 2022
  • CVAT 2.0 – Server Side Request Forgery18 November 2022
  • MSNSwitch Firmware MNT.2408 – Remote Code Execution18 November 2022
  • Open Web Analytics 1.7.3 – Remote Code Execution18 November 2022
  • IOTransfer V4 – Unquoted Service Path11 November 2022

SECURELIST

  • Web beacons on websites and in e-mail7 February 2023
  • Prilex modification now targeting contactless credit card transactions31 January 2023
  • Come to the dark side: hunting IT professionals on the dark web30 January 2023
  • What your SOC will be facing in 202323 January 2023
  • Roaming Mantis implements new DNS changer in its malicious mobile app in 202219 January 2023
  • What threatens corporations in 2023: media blackmail, fake leaks and cloud attacks18 January 2023
Copyright © 2023 GeekWire | Cookie-Free | Privacy Policy | We are not responsible for the content of external sites.
Next Page »