SEARCH
Serious Flaws Fixed in ExpressionEngine CMS
Packet Tide has fixed a group of XSS vulnerabilities and an open HTTP redirection bug in its ExpressionEngine content management system, some of which could give an attacker admin access.
Espionage Threat Actor Hits Multiple Government Entities
Cisco Talos researchers have linked known Gh0stRAT campaigns targeting public and private sector entities to a Chinese-speaking threat actor called SneakyChef.
UNC3886 Leverages Zero Days, Novel Backdoor Variants
A new deep-dive investigation into the known UNC3886 gives insight into how the China-linked threat actor “operates in a sophisticated, cautious, and evasive nature.”
VMware Warns of Critical vCenter Server Flaws
Two critical vulnerabilities in VMware's vCenter Server centralized management utility could allow remote code execution.
Latest EU Proposal ‘Fundamentally Undermines Encryption’
A recent proposal in discussion in the European Union Council would mandate "upload moderation" of encrypted content, something that would break encryption for everyone, Singal's president said.