Browsing: Threats and Vulnerabilities

Qualys Finds Three Security Bypasses in Ubuntu’s Unprivileged User Namespace Restrictions

Kirsten DoyleMarch 31, 20252 Mins Read

The Qualys Threat Research Unit (TRU) has uncovered three security bypasses in Ubuntu’s unprivileged user namespace restrictions. Researchers disclosed these…

AppSOC Research Labs Delivers Damning Verdict on DeepSeek-R1

Adam ParlettMarch 28, 20254 Mins Read

Silicon Valley security provider AppSOC has branded DeepSeek-R1, one of the latest highly advanced artificial intelligence (AI) models to emerge…

Critical Flaws in Appsmith Exposed Systems to Full Takeover

Kirsten DoyleMarch 27, 20253 Mins Read

Rhino Security researchers have identified multiple critical vulnerabilities in Appsmith, an open-source developer platform commonly used for building internal applications.…

IngressNightmare: Critical Kubernetes Flaws Put 6,500+ Clusters at Risk

Kirsten DoyleMarch 27, 20255 Mins Read

Five critical security vulnerabilities have been found in the Ingress NGINX Controller for Kubernetes, potentially enabling unauthenticated remote code execution.…

Critical Use-After-Free Vulnerability Found in Chrome’s Lens Component

Kirsten DoyleMarch 26, 20253 Mins Read

Google Chrome has confirmed in a statement on 20 March that a security researcher has discovered a critical vulnerability affecting…

Windows Shortcut Zero-Day Under Active Attack

Kirsten DoyleMarch 21, 20254 Mins Read

A highly advanced zero-day vulnerability has been covertly exploited for years by multiple state-sponsored hacking groups, underscoring its severe security…

Insight Into Reliaquest’s Critical Cyber Threats to Hospitality and Recreation Report

Adam ParlettMarch 18, 20254 Mins Read

The latest threat landscape report from ReliaQuest has unearthed some concerning findings regarding the critical threats faced by the hospitality…

FCC Chairman Establishes New National Security Council to Tackle Tech Threats

Kirsten DoyleMarch 18, 20253 Mins Read

FCC Chairman Brendan Carr has announced the creation of a new Council on National Security within the agency, which he…

Tackling the threat of cyber risk during AI adoption

Andrew SmithMarch 17, 20256 Mins Read

Ever since AI’s meteoric rise to prominence following the release of ChatGPT in November 2022, the technology has been at…

CISA Flags Critical Ivanti Vulnerabilities Actively Exploited in the Wild

Kirsten DoyleMarch 17, 20253 Mins Read

The US Cybersecurity and Infrastructure Security Agency (CISA) has flagged three newly discovered Ivanti Endpoint Manager (EPM) vulnerabilities—CVE-2024-13159, CVE-2024-13160, and…