Deepfence Open Sources Vulnerability Mapping Tool ‘ThreatMapper’
Cloud and container security company Deepfence this week announced the open source availability of ThreatMapper, a tool designed to help organizations scan for, map,...
Tagged: vulnerability
Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability
Apple on Monday released a security update for iOS and iPad to address a critical vulnerability that it says is being exploited in the...
GitKraken Vulnerability Prompts Action From GitHub, GitLab, Bitbucket
Developers of Git GUI client GitKraken have addressed a vulnerability resulting in the generation of weak SSH keys, and they are prompting users to...
23andMe and JFrog partner to solve code injection vulnerability
Security researchers at JFrog worked with biotechnology company 23andMe to address a vulnerability with Yamale, a tool written by the company and used by...
Researcher finds vulnerability in popular parental control app Canopy
A researcher with cybersecurity firm Tripwire has discovered a vulnerability in parental control app Canopy that allows attackers to plant JavaScript into the parent...
Elastic Stack API Security Vulnerability Exposes Customer and System Data – E Hacking News
The mis-implementation of Elastic Stack, a collection of open-source products that employ APIs for crucial data aggregation, search, and analytics capabilities, has resulted...
Google Patches Vulnerability in Cloud Endpoints Proxy
A researcher has disclosed the details of a privilege escalation vulnerability he discovered in a Google Cloud component. The flaw was patched by Google...
Hackers Can Exploit Apple AirTag Vulnerability to Lure Users to Malicious Sites
Apple’s AirTag product is affected by a vulnerability that could be exploited by hackers to lure unsuspecting users to phishing or other types of...
Exploit released for VMware vulnerability after CISA warning
A working exploit for CVE-2021-22005 — a vulnerability with VMware vCenter — has been released and is reportedly being used by threat actors, according...
Chrome 94 Update Patches Actively Exploited Zero-Day Vulnerability
Google has shipped an urgent Chrome update to address yet another zero-day vulnerability that has been actively exploited in attacks. Tracked as CVE-2021-37973, the...