Exclusive articles:
CERT/CC Issues Warning Over Critical Flaws in Workhorse Municipal Accounting Software
Two severe security flaws in Workhorse Software Services' municipal accounting platform could enable unauthorized actors to exfiltrate complete databases containing sensitive financial records and...
Copilot Vulnerability Disrupts Audit Logs, Enables Stealth Access for Attackers
A critical vulnerability in Microsoft's M365 Copilot allowed users to access sensitive files without generating proper audit log entries, creating significant compliance and security...
Microsoft Issues Emergency Patch to Fix Windows Reset and Recovery Bug
Microsoft has issued emergency out-of-band (OOB) security updates to resolve critical vulnerabilities affecting Windows device reset and recovery operations across multiple platform versions.
The...
Critical Kubernetes Capsule Vulnerability Allows Arbitrary Namespace Label Injection
A critical security vulnerability has been disclosed in Capsule v0.10.3, a popular Kubernetes multi-tenant controller, allowing authenticated tenant users to bypass security boundaries and...
Hackers Exploiting Apache ActiveMQ Flaw to Breach Cloud-Based Linux Systems
Red Canary's Threat Intelligence team has uncovered a sophisticated adversarial campaign where attackers exploit CVE-2023-46604 in Apache ActiveMQ to gain persistent access on cloud...
