Jun 15, 2021 5:00:00 AM |
By Robert Punnett, Auner Moncada, Daniel Fulford
ADVISORY SUMMARY The text-to-speech engine in libretro RetroArch for Windows 1.9.0 - 1.9.4 passes unsanitized input to PowerShell through ... continue reading
In my last blog I wrote about the advantages and disadvantages of modern AppSec tooling and how penetration testing fits into a DevSecOps... continue reading
We recently hosted a conversation with Alex Stamos (former CSO at Facebook, co-founder of the Krebs Stamos Group, and advisor to SolarWinds),... continue reading
The US Supreme Court just handed down a 6-3 ruling narrowing the scope of the Computer Fraud and Abuse Act (CFAA). It sets a precedent that... continue reading
ADVISORY SUMMARY The following describes an identified vulnerability in the Froala application in version 3.2.6. Froala is in use on thousands of... continue reading
ADVISORY SUMMARY F5 Networks released a series of security advisories today for seven vulnerabilities affecting their BIG-IP and BIG-IQ products.... continue reading
TL;DR The same JSON document can be parsed with different values across microservices, leading to a variety of potential security risks. If you... continue reading
What are the risks associated with overly permissive pod creation in Kubernetes? The answer varies based on which of the host’s namespaces and... continue reading
I'm excited to announce some new features that have been added to RMIScout. RMIScout is a tool to perform wordlist and brute-force attacks against... continue reading
eWeek
DARK Reading
HELPNET Security