Content Paint
Search
Sign in
Membership

cybersecurity

Security  | Jan 26, 2021
Millions affected by 10-year old bug in a Linux utility that gives root.
Millions affected by 10-year old bug in a Linux utility that gives root.

Full root privileges on Ubuntu 20.04, Debian 10, and Fedora 33 demonstrated.

Security  | Jan 26, 2021
This AWS API bug lets you check permissions without generating logs in CloudTrail: It's not getting fixed.
This AWS API bug lets you check permissions without generating logs in CloudTrail: It's not getting fixed.

Some 645 different API actions across 40 different AWS services affected.

Security  | Jan 26, 2021
A social engineering campaign is specifically - and successfully - targeting security researchers.
A social engineering campaign is specifically - and successfully - targeting security researchers.

Possible a Chrome 0day is to blame.

Security  | Jan 25, 2021
SonicWall says VPN *is* safe after 0day breach of its mobile access tool - SMA 100 requires remediation.
SonicWall says VPN *is* safe after 0day breach of its mobile access tool - SMA 100 requires remediation.

"A coordinated attack on internal systems by highly sophisticated threat actors"

Security  | Jan 22, 2021
SAP's "Active Directory-equivalent" has a CVSS 10-rated critical bug
SAP's "Active Directory-equivalent" has a CVSS 10-rated critical bug

Security experts warn that unpatched vulns remain better than 0days for attackers.

Security  | Jan 21, 2021
Pre-auth RCE vulnerabilities in Cisco's SD-WAN give attackers root privileges.
Pre-auth RCE vulnerabilities in Cisco's SD-WAN give attackers root privileges.

"Execute arbitrary code on the underlying OS with root privileges".

Security  | Jan 20, 2021
Malwarebytes the latest victim of SolarWinds attackers: Here's how the threat group is pivoting to Azure/O365 tenants - and how to secure them.
Malwarebytes the latest victim of SolarWinds attackers: Here's how the threat group is pivoting to Azure/O365 tenants - and how to secure them.

Help yourself to a third free tool to audit AD permission.

Security  | Jan 19, 2021
Dridex crimeware is back with a vengeance - and now it's dropping ransomware too.
Dridex crimeware is back with a vengeance - and now it's dropping ransomware too.

Malicious Excel docs are the most common dropper.

Security  | Jan 18, 2021
NSA: DNS-over-HTTPS "no panacea". NCSC: Handy if *we* run it, though.
NSA: DNS-over-HTTPS "no panacea". NCSC: Handy if *we* run it, though.

DoH can "bring issues to enterprises, including a false sense of security" says NSA.

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.