libraries
-
New ‘ParseThru’ Parameter Smuggling Vulnerability Affects Golang-based Applications
Security researchers have discovered a new vulnerability called ParseThru affecting Golang-based applications that could be abused to gain unauthorized access…
Read More » -
Avoiding Death by a Thousand Scripts: Using Automated Content Security Policies
Businesses know they need to secure their client-side scripts. Content security policies (CSPs) are a great way to do that.…
Read More » -
Why Developers Hate Changing Language Versions
Progress powers technology forward. But progress also has a cost: by adding new capabilities and features, the developer community is…
Read More » -
Researchers Warn of New OrBit Linux Malware That Hijacks Execution Flow
Cybersecurity researchers have taken the wraps off a new and entirely undetected Linux threat dubbed OrBit, signally a growing trend…
Read More » -
New Hertzbleed Side-Channel Attack Affects All Modern AMD and Intel CPUs
A newly discovered security vulnerability in modern Intel and AMD processors could let remote attackers steal encryption keys via a…
Read More » -
Yes, Containers Are Terrific, But Watch the Security Risks
Containers revolutionized the development process, acting as a cornerstone for DevOps initiatives, but containers bring complex security risks that are…
Read More » -
Malicious NPM Packages Target German Companies in Supply Chain Attack
Cybersecurity researchers have discovered a number of malicious packages in the NPM registry specifically targeting a number of prominent companies…
Read More » -
Critical Gems Takeover Bug Reported in RubyGems Package Manager
The maintainers of the RubyGems package manager have addressed a critical security flaw that could have been abused to remove…
Read More » -
5 Benefits of Detection-as-Code
TL;DR: Adopt a modern, test-driven methodology for securing your organization with Detection-as-Code. Over the past decade, threat detection has become…
Read More »