Security

Security | Sep 26, 2025

Cisco 0day exploitation: Scans suggested it’s coming

CISA: "Permanently disconnect these devices on or before September 30, 2025"

| Security | Sep 25, 2025

Bitnami's 'rug pull', Helm's future, and questions of community

On September 29, Bitnami goes much more premium, and the software community needs to consider its approach to deployment.

| Security | Sep 25, 2025

Co-op's £206m ransomware lesson: be rich, don't sell tobacco

One section of the group even made an (operating) profit due to the cyber attack, its interim numbers show.

| Security | Sep 23, 2025

SolarWinds warns over pre-auth RCE help desk bug

Expect this to get exploited - like the bug before it...

| Security | Sep 22, 2025

Optus's deadly failed firewall update keeps getting worse

"Significant consequences" promised, regulators scramble, process reviews – all due to a single failed update.

Security | Sep 22, 2025

When "irresponsible disclosure' becomes the only responsible option

"By submitting the vulnerability, I had implicitly agreed to a set of legal terms that prohibited any form of public disclosure, indefinitely. It was now locked in a box. No advisory. No community alert..."

| Security | Sep 20, 2025

Flights cancelled after cyber incident at Collins Aerospace

Brussels, Berlin, Heathrow all impacted.

Security | Sep 18, 2025

Critical Azure bug gave anyone Global Admin

A jaw-dropping critical Azure vulnerability tracked as CVE-2025-55241

"I could authenticate as any user, including Global Admins, in any other tenant"

| Security | Sep 18, 2025

MITRE ATT&CK exodus continues - CTO "disappointed"

Was the test getting too hard for security vendors?

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();