Researchers have detected an alarming surge in malicious scanning activity targeting Palo Alto Networks’ GlobalProtect VPN portals. Over a 30-day…
Author: sysops
A critical vulnerability (CVE-2025-2825) in CrushFTP, a widely used enterprise file transfer solution, allows attackers to bypass authentication and gain…
Security researchers have published a detailed technical analysis of a critical remote code execution (RCE) vulnerability (CVE-2023-38408) in OpenSSH’s agent…
Today we’re excited to announce the launch of GitLab’s Open Source Security Hub — a central repository of security-focused projects…
In early 2024, we started a journey to implement better metrics for our internal Red Team. Our first iteration focused…
Amazon Web Services (AWS) is pleased to announce that the Winter 2024 System and Organization Controls (SOC) 1 report is now…
Google has released an urgent security update for its Chrome browser after cybersecurity researchers at Kaspersky discovered a zero-day vulnerability…
Rewrite this news article”: As AI and machine learning (AI/ML) become increasingly accessible through cloud service providers (CSPs) such as…
Development and security teams are often overwhelmed by the number of vulnerabilities they need to remediate. Many organizations remediate less…
A critical vulnerability in GLPI, a widely-used open-source IT Service Management (ITSM) platform tracked as CVE-2025-24799, enables unauthenticated attackers to…