Today’s VERT Alert addresses Microsoft’s November 2020 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects…
This week, the Sonatype Security Research team has identified a series of counterfeit components in the npm ecosystem. These intentionally…
A prankster registered a British company name containing a cross-site scripting (XSS) attack. Hilarity ensued.
Just months after Octopus Scanner was caught infecting 26 open-source projects on GitHub, new reports have already surfaced of another,…
Windows 7 and XP are obsolete, but that hasn’t stopped almost a quarter of Windows users using them. It’s a security…
In the last quarter of 2019, researchers at ClearSky uncovered an attack operation that they dubbed the “Fox Kitten Campaign.”…
As if the increasing attacks on the open source ecosystem and vulnerabilities making headlines weren’t scary enough events, this Halloween…
Google discovered a “threat actor” exploiting a pair of bugs—one in Chrome and one in Windows.
WordPress released version 5.5.2 yesterday, which fixed a reflected XSS vulnerability we reported earlier this year. The root cause of…
White Paper Vulnerability Management: The Keystone of Cybersecurity Infrastructure by Frost & Sullivan In the dynamic threat landscape, organizations are…