Content Paint
Search
Sign in
Membership

Security

 |  Software  | Oct 11, 2023
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix

A CVSS 9.8, pre-auth RCE that lets an attacker execute arbitrary code without user interaction is wormable on systems where Message Queuing is enabled.

Security  | Oct 10, 2023
Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks
Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks

"Any enterprise or individual that is serving an HTTP-based workload to the Internet may be at risk from this attack"

Security  | Oct 09, 2023
"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried
"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried

Could a pending curl vulnerability be the next Log4j?

Security  | Oct 06, 2023
The MGM hack: A $100m hit
mgm hack $100 million

"The Company currently believes that its cybersecurity insurance will be sufficient to cover the financial impact to its business as a result of the operational disruption..."

Security  | Oct 05, 2023
The State Department is running 27,000 end-of-life systems but its CIO has been hamstrung...
The State Department is running 27,000 end-of-life systems but its CIO has been hamstrung...

Two new women in charge as CIO and CISO aim to stop the rot

 |  Security  | Oct 04, 2023
Bad Behaviour and Dirty Downloads: 2.1 billion OSS packages with known vulns downloaded this year.
Bad Behaviour and Dirty Downloads: 2.1 billion OSS packages with known vulns downloaded this year.

Strikingly, only 11% of open source projects are ‘actively maintained'. Should you be worried? Well, probably, yes.

 |  Security  | Oct 03, 2023
Buffer overflow bug gives root on potentially millions of Linux boxes
Buffer overflow bug gives root on potentially millions of Linux boxes

Do you, or do you not, need to get your knickers in a twist? Well, that depends on your risk tolerance..

Security  | Oct 03, 2023
Progress Software blasts “irresponsible” POC disclosure for CVSS 10 bug amid attacks
Progress Software blasts “irresponsible” POC disclosure for CVSS 10 bug amid attacks

A fair gripe, or shooting the messenger?

 |  Security  | Oct 02, 2023
File transfer software again under attack – CVSS 10 bug exploitable with a single HTTPS POST request
Progress software file transfer WS_FTP vulnerability CVE-2023-40044 exploit

Some 2,900 exposed. It's Progress, but it's not progress...

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.