Rapid7 security researchers have identified 2,000 internet-exposed Linux servers that appear to be impacted by a Redis vulnerability that has been exploited in attacks.
Many Internet-Exposed Servers Affected by Exploited Redis Vulnerability
Synology, QNAP, WD Warn Users About Vulnerabilities Exploited at Hacking Contest
Synology, QNAP and Western Digital (WD) have warned their customers about several critical Netatalk vulnerabilities that have been exploited at a recent hacking contest.
Microsoft Warns of ‘Nimbuspwn’ Security Flaws Haunting Linux
Vulnerability researchers at Microsoft are documenting the discovery of a pair of Linux privilege escalation flaws that could be chained together to plant dangerous malware or backdoors.
Synopsys to Acquire White Hat Security in $330M All-Cash Deal
Electronic design automation powerhouse Synopsys is expanding its reach into the cybersecurity business with plans to shell out $330 million to acquire White Hat security.
Cisco Patches 11 High-Severity Vulnerabilities in Security Products
Cisco this week announced the release of its April 2022 bundle of security advisories for Cisco Adaptive Security Appliance (ASA), Firepower Threat Defense (FTD), and Firepower Management Center (FMC).
Critical Vulnerabilities in Azure PostgreSQL Exposed User Databases
Cloud security company Wiz has released the details of a series of critical vulnerabilities that could have been exploited to access databases belonging to Azure customers.
National Cybersecurity Agencies List Most Exploited Vulnerabilities of 2021
Cybersecurity agencies in the United States, Canada, United Kingdom, Australia and New Zealand have shared a list of the 15 most exploited vulnerabilities of 2021.
IETF Publishes RFC 9116 for ‘security.txt’ File
The Internet Engineering Task Force (IETF) has published RFC 9116 for the security.txt file, whose goal is to make it easier for researchers to responsibly disclose the vulnerabilities they find.
Privacy Enhancing Tech Startup Enveil Bags $25 Million Investment
Enveil, an early-stage startup tackling the ‘holy grail’ of data encryption, has banked another $25 million in funding as investors continue to pour money into the privacy enhancing technology space.
Chrome 101 Patches 30 Vulnerabilities
Google this week announced that Chrome 101 was released to the stable channel with 30 security fixes inside, including 25 for vulnerabilities identified by external security researchers.
