Skip to content
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap
GeekWire
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap

Open Source Software

Latest OpenSSL version is affected by a remote memory corruption flaw

28 June 2022

Expert discovered a remote memory-corruption vulnerability affecting the latest version of the OpenSSL library. Security expert Guido …

Tags IT, News, Open Source, Open Source Software, OpenSSL

OpenSSL to Release Security Patch for Remote Memory Corruption Vulnerability

28 June 2022

The latest version of the OpenSSL library has been discovered as susceptible to a remote memory-corruption vulnerability on select systems. …

Tags Memory Corruption, Open Source, Open Source Software, Releases, Remote

OpenSSL 3.0.5 awaits release to fix potential worse-than-Heartbleed flaw

28 June 2022

The latest version of OpenSSL v3, a widely used open-source library for secure networking using the Transport Layer Security (TLS) …

Tags IT, News, Open Source, Open Source Software, OpenSSL

Software Supply Chain Compliance with Aqua’s Chain-Bench

27 June 2022

We can all agree today that we really need to know what’s what with your software supply chain. If you don’t know why I recommend you …

Tags Compliance, IT, Open Source, Open Source Software, Software Supply Chain

OpenSSL issues a bugfix for the previous bugfix

24 June 2022

If you’re an OpenSSL user, you’re probably aware of the most recent high-profile bugfix release, which came out back in March 2022. …

Tags Cryptography, IT, Open Source, Open Source Software, OpenSSL

Eclipse Plunges into OSS Supply Chain Security

24 June 2022

The Eclipse Foundation will be getting more hands-on in helping to secure the open source software supply chain after accepting a …

Tags Eclipse, Eclipse (IDE), IT, Open Source Software, Supply Chain Security

iPaaS: The latest enterprise cybersecurity risk?

24 June 2022

iPaaS apps are vulnerable because they transport highly sensitive data from core systems, include many different third-party apps in the …

Tags Apache Software Foundation, CISO, IT, Open Source, Open Source Software

Classifying Severity Levels for Your Organization

23 June 2022

Working with previously defined severity levels helps on-call teams to quickly triage major issues. As we have seen in this post, each …

Tags Culture, IT, Open Source, Open Source Software, Organizations

Applying Zero Trust Security to Kubernetes Via Service Mesh

22 June 2022

Earlier this year, the White House issued an Executive Order on Improving the Nation’s Cyber Security, which laid the groundwork for …

Tags IT, Open Source, Open Source Software, Service Mesh, Via

How Web Assembly Can Mitigate the Software Supply Chain Crisis

22 June 2022

The definition of insanity, according to no less than the insightful mind of Albert Einstein, is doing the same thing over and over and …

Tags Crisis, How, IT, Open Source, Open Source Software

7-Zip gets Mark of the Web feature, increases protection for users

22 June 2022

One of the most popular zip programs around, 7-Zip, now offers support for “Mark of the Web” (MOTW), which gives users better …

Tags 7-Zip, Open Source, Open Source Software, Privacy, Web

Open Source Software Security Begins to Mature

21 June 2022

Only about half of firms have an open source software security policy in place to guide developers in the use of components and frameworks, …

Tags Cloud, Cloud Computing, Mature, Open Source, Open Source Software

Zero Trust Infrastructure for Kubernetes

20 June 2022

Zero trust security is the buzzword on everyone’s lips today — and for good reason. While the security model has been gaining traction …

Tags IT, News, Open Source, Open Source Software, Zero Trust

Q&A: What Is Zero Trust?

17 June 2022

Zero trust is a security philosophy, not a set of specific best practices or a checklist for security teams to follow. As cyberattacks have …

Tags Is, IT, Open Source, Open Source Software, Q&A
Post navigation
Older posts
Page1 Page2 … Page120 Next →
Cookie-Free

NVD

  • CVE-2017-20124 – A vulnerability classified as critical has been found in Online Hotel Booking System Pro P …30 June 2022
  • CVE-2017-20125 – A vulnerability classified as critical was found in Online Hotel Booking System Pro 1.2. A …30 June 2022
  • CVE-2022-26135 – A vulnerability in Mobile Plugin for Jira Data Center and Server allows a remote, authenti …30 June 2022
  • CVE-2021-40643 – EyesOfNetwork before 07-07-2021 has a Remote Code Execution vulnerability on the mail opti …30 June 2022
  • CVE-2022-34835 – In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based b …30 June 2022
  • CVE-2017-20121 – A vulnerability was found in Teradici Management Console 2.2.0. It has been declared as cr …30 June 2022

EXPLOITS

  • Mailhog 1.0.1 – Stored Cross-Site Scripting (XSS)28 June 2022
  • WSO2 Management Console (Multiple Products) – Unauthenticated Reflected Cross-Site Scripting (XSS)28 June 2022
  • WordPress Plugin Weblizar 8.9 – Backdoor28 June 2022
  • Marval MSM v14.19.0.12476 – Cross-Site Request Forgery (CSRF)14 June 2022
  • Marval MSM v14.19.0.12476 – Remote Code Execution (RCE) (Authenticated)14 June 2022
  • Avantune Genialcloud ProJ 10 – Cross-Site Scripting (XSS)14 June 2022

SECURELIST

  • The SessionManager IIS backdoor30 June 2022
  • The SessionManager IIS backdoor: a possibly overlooked GELSEMIUM artefact30 June 2022
  • The hateful eight: Kaspersky’s guide to modern ransomware groups’ TTPs23 June 2022
  • APT ToddyCat21 June 2022
  • ‘Unpacking’ technical attribution and challenges for ensuring stability in cyb20 June 2022
  • How much does access to corporate infrastructure cost?15 June 2022

Information Cyber Network Enterprise Security News

Copyright © 2022 GeekWire | Cookie-Free | Privacy Policy | We are not responsible for the content of external sites.

GeekWire Information Cyber Network Enterprise Security News

Next Page »