Squid proxy vulnerability dubbed Squidbleed discovered
Squidbleed allows an attacker to read beyond the boundary of a memory buffer within Squid's FTP parser.
20 articles
Squidbleed allows an attacker to read beyond the boundary of a memory buffer within Squid's FTP parser.
Attackers are bypassing MFA by targeting enrollment and trust workflows.
Veeam's Shiva Pillay discusses ensuring data trust and contextualization for AI security.
Nearly two-thirds of scam victims globally, or 64.5%, believe AI tools played a role in the fraud attempts.
Per TechCrunch, Signal President Meredith Whittaker has voiced significant concerns regarding the privacy implications of widely used AI chatbots, emphasizin...
The Prinz Eugen threat actor employs a hands-on-keyboard approach, leveraging legitimate remote monitoring and management (RMM) software and living-off-the-l...
The vulnerability resides in an exposed REST API endpoint within the Gravity SMTP plugin.
The Federal Data Center Enhancement Act of 2023, which currently governs federal facilities nationwide, mandates protections for uptime, power reliability, p...
The big lesson: too many organizations still don’t understand how identity works inside their applications.
The clipboard hijacker campaign also uses “ghost networks” on social media to boost engagement.
The Agentjacking attack bypasses the need for stolen credentials or direct network access.
The majority of attacks against these organizations were DDoS floods, with a notable difference in duration compared to attacks on Cloudflare's broader custo...
The attack involved the theft of OAuth credentials from Klue's Battlecards integration, which threat actors then used to access and exfiltrate data from cust...
Authorities from the Netherlands, Canada, the United States, and Germany removed the SocGholish malware and backdoors from 14,971 compromised WordPress websi...
The vulnerability, identified as CVE-2025-20701, was discovered by researchers Dennis Heinze and Frieder Steinmetz of ERNW GmbH.
The Shadowbyt3$ threat group claimed responsibility for the incident, alleging the exfiltration of sensitive employee data, including bank statements and W-9...
The new ADX Vision for macOS targets the increasing use of unsanctioned generative AI tools within organizations.
The Texas Parks & Wildlife department disclosed that hackers gained access to its license system vendor, which processes hunting and fishing license sales.