NAME__________Jenkins Blue Ocean Plugin cross-site request forgeryPlatforms Affected:Jenkins Blue Ocean Plugin 1.27.5Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Blue Ocean Plugin is vulnerable...
NAME__________Jenkins Gogs Plugin security bypassPlatforms Affected:Jenkins Gogs Plugin 1.0.15Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins Gogs Plugin could allow a remote attacker to...
NAME__________Jenkins Favorite View Plugin cross-site request forgeryPlatforms Affected:Jenkins Favorite View Plugin 5.v77a_37f62782dRisk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Favorite View Plugin is vulnerable...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw in Citrix ShareFile storage zones controller...
Google on Tuesday announced the first quantum resilient FIDO2 security key implementation as part of its OpenSK security keys initiative....
Nearly 2,000 Citrix NetScaler instances have been compromised with a backdoor by weaponizing a recently disclosed critical security vulnerability as...
At a little overt halfway through 2023, credential theft is still a major thorn in the side of IT teams....
Active flaws in the PowerShell Gallery could be weaponized by threat actors to pull off supply chain attacks against the...
More and more organizations are choosing Google Workspace as their default employee toolset of choice. But despite the productivity advantages,...
Google on Tuesday announced the first quantum resilient FIDO2 security key implementation as part of its OpenSK security keys initiative....
Multiple critical security flaws have been reported in Ivanti Avalanche, an enterprise mobile device management solution that's used by 30,000...
Mark your calendar for mWISE™, the uniquely targeted, community-focused cybersecurity conference from Mandiant. It’s taking place September 18–20, 2023 in...
Researchers have uncovered a massive campaign that delivered proxy server apps to at least 400,000 Windows systems. The devices act...
CISA is warning that a critical Citrix ShareFile secure file transfer vulnerability tracked as CVE-2023-24489 is being targeted by unknown...
Google has announced the first open-source quantum resilient FIDO2 security key implementation, which uses a unique ECC/Dilithium hybrid signature schema...
A phishing campaign was observed predominantly targeting a notable energy company in the US, employing QR codes to slip malicious...
Anonfiles, a popular service for sharing files anonymously, has shut down after saying it can no longer deal with the...
New research from King’s College London (KCL) has revealed a major gender gap in the provision and effectiveness of online...
Security researchers have warned of a significant global account takeover campaign targeting LinkedIn users over recent weeks.Cyberint claimed this week...
Cleaning product manufacturer Clorox has confirmed significant operational disruption caused by a recent cyber-attack. According to a notice published on the company’s...
One in three students at British universities encountered fraud attempts online last year, according to a new study from NatWest.The...
A recent study by cybersecurity firm Kaspersky has revealed the techniques utilized by phishers to evade detection and exploit compromised...
A widespread cyber-attack targeting thousands of Citrix NetScalers has been unveiled by cybersecurity firm Fox-IT (part of NCC Group) in...
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 8, 2023. These...
