Category Security GitLab vulnerability permits running pipeline tasks under another user A critical vulnerability in GitLab, CVE-2024-5655, has been disclosed, enabling attackers to run pipeline jobs under any user account. This…
Category Security Security flaw in Quick Share allows unsolicited file sending Google has warned about two security vulnerabilities in its Quick Share software, also known as Nearby Share. These vulnerabilities affect…
Category Security Major open source projects created with ‘memory unsafe’ languages The FBI, NSA, CISA, and cyber agencies from Australia, Canada, New Zealand, and the United Kingdom have investigated 172 major…
Category Security Polyfill.io gets dealt with by Cloudflare and Namecheap A widespread supply chain attack involving the Polyfill.io service has led to swift action from major internet infrastructure providers. Over…
Category Security Progress patches severe auth bypass in MOVEit Transfer Software company Progress has issued a warning about a critical vulnerability in their MOVEit Transfer product. The flaw, identified as…
Category Security Apple patches Bluetooth flaw allowing AirPods access Apple has released firmware updates for several wireless headphone models to fix security issues. The updates affect AirPods (2nd generation…
Category Security Polyfill compromise hits 100,000+ sites in a supply chain attack Update: Both Cloudflare and Namecheap have taken drastic actions to discourage the spread of malware by the Poyfill.io domain name….
Category Security Backdoor found in WordPress plugins with 35,000+ installations According to reports from security experts at Wordfence, five plugins available through the official WordPress.org repository have been compromised in…
Category Security Advance Auto Parts leaks data of 79 million customers and employees American auto parts supplier Advance Auto Parts has experienced a data breach affecting 79 million customers and employees. The compromised…
Category Security Study: security and maintenance issues in Chrome Extensions The Chrome Web Store is a platform where users can find and install extensions to enhance their browsing experience on…
Category Security Microsoft patches critical ‘Wormable’ Windows vulnerability During the June Patch Tuesday, Microsoft released updates addressing 49 vulnerabilities, including one particularly critical flaw that could be exploited…
Category Security Cloud provider Pure Storage caught in Snowflake crosswinds Cloud provider Pure Storage has been affected by the recently compromised accounts at Snowflake, potentially compromising customer data. Pure Storage,…
