CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...
Infosecurity-magazine.com

Learning from File Transfer Software Vendors’ Vulnerability Response

The zero-day exploitation of Progress Software’s MOVEit Transfer solution has dominated news headlines since May 2023, with the vulnerability affecting organizations around the globe. Major UK ...
Security

Critical Start launches Vulnerability Management Service

Today, Critical Start announced the general availability of Critical Start Vulnerability Management Service (VMS) and Vulnerability Prioritization. These new offerings allow organizations to assess, ...
Hosted on MSN

First line of defence: Critical cyber security vulnerability assessments

Peter Chan, cyber security operations manager, BlueVision ITM. Vulnerability assessments offer a great deal more than a checklist of potential cyber risks − they inform the organisation’s broader risk ...
Nextgov

DARPA edges closer to using AI to expose cyber vulnerabilities

Get the latest federal technology news delivered to your inbox. LAS VEGAS — The Defense Advanced Research Projects Agency on Sunday selected seven teams to advance to the final stage of a ...
Cybernews

Knownsec leak unmasks secret cyberweapons and role in China’s state-linked spying

A leak from the Chinese cybersecurity firm Knownsec exposed its deep involvement in state-linked offensive cyber activity and ...