Atlassian has released patches for nine high-severity vulnerabilities in Bamboo, Confluence, Crowd, and Jira products.
The post Atlassian Patches Vulnerabilities in Bamboo, Confluence, Crowd, Jira appeared first on SecurityWeek.
CISA Warns of Exploited Vulnerabilities Impacting Dahua Products
CISA warns that attackers are exploiting two critical-severity authentication bypass vulnerabilities impacting multiple Dahua products.
The post CISA Warns of Exploited Vulnerabilities Impacting Dahua Products appeared first on SecurityWeek.
CrowdStrike Hits Back at Action1 Following $1 Billion Acquisition Rumors
CrowdStrike has denied having any significant acquisition talks with patch management firm Action1 following rumors of a $1 billion deal.
The post CrowdStrike Hits Back at Action1 Following $1 Billion Acquisition Rumors appeared first on SecurityWeek.
Cisco Patches High-Severity Vulnerability Reported by NSA
A high-severity vulnerability in Cisco Unified CM and Unified CM SME could allow attackers to cause a denial-of-service (DoS) condition.
The post Cisco Patches High-Severity Vulnerability Reported by NSA appeared first on SecurityWeek.
Exploitation Expected for Flaw in Caching Plugin Installed on 5M WordPress Sites
A critical vulnerability in the Litespeed Cache WordPress plugin can allow attackers to hack websites by creating an admin user.
The post Exploitation Expected for Flaw in Caching Plugin Installed on 5M WordPress Sites appeared first on SecurityWeek.
Google Patches Sixth Exploited Chrome Zero-Day of 2024
Chrome 128 was released in the stable channel with patches for 38 vulnerabilities, including a V8 JavaScript engine flaw exploited in the wild.
The post Google Patches Sixth Exploited Chrome Zero-Day of 2024 appeared first on SecurityWeek.
Critical Authentication Flaw Haunts GitHub Enterprise Server
GitHub patches a trio of security defects in the GitHub Enterprise Server product and recommends urgent patching for corporate users.
The post Critical Authentication Flaw Haunts GitHub Enterprise Server appeared first on SecurityWeek.
New Phishing Technique Bypasses Security on iOS and Android to Steal Bank Credentials
New phishing attacks target iOS and Android users with Progressive Web Applications and WebAPKs to steal banking information.
The post New Phishing Technique Bypasses Security on iOS and Android to Steal Bank Credentials appeared first on SecurityWeek.
Arden Claims Service Reports Data Breach, 139,000 Affected
Personal information for about 39,000 individuals was stolen in October 2023 from class action settlement administrator Arden Claims Service.
The post Arden Claims Service Reports Data Breach, 139,000 Affected appeared first on SecurityWeek.
Why LinkedIn Developed Its Own AI-Powered Security Platform
An inside look at how LinkedIn developed an internal AI-assisted vulnerability management system to protect its massive infrastructure and user base.
The post Why LinkedIn Developed Its Own AI-Powered Security Platform appeared first on SecurityWeek.
