Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Incident Response

Rapid7 says attackers are targeting a critical pre-authentication flaw in Progress Software’s WS_FTP server just days after disclosure.

Email Security

Patches are being developed for serious Exim vulnerabilities that could expose many mail servers to attacks. 

Recently Patched TeamCity Vulnerability Exploited to Hack Servers

Vulnerabilities

In-the-wild exploitation of a critical vulnerability in the TeamCity CI/CD server started shortly after a patch was released by developers.

CISA Warns of Old JBoss RichFaces Vulnerability Being Exploited in Attacks

Vulnerabilities

CISA has added CVE-2018-14667, an old critical JBoss RichFaces flaw to its known exploited vulnerabilities catalog.

Hackers Set Sights on Apache NiFi Flaw That Exposes Many Organizations to Attacks

Vulnerabilities

Hackers have set their sights on CVE-2023-34468, an RCE vulnerability in Apache NiFi that impacts thousands of organizations. 

Cloudflare Users Exposed to Attacks Launched From Within Cloudflare: Researchers

Vulnerabilities

Gaps in Cloudflare’s security controls allow users to bypass protections and target others from the platform itself.