You might be interested in …

Daily NCSC-FI news followup 2021-02-25

Attackers scan for vulnerable VMware servers after PoC exploit release After security researchers have developed and published proof-of-concept (PoC) exploit code targeting a critical vCenter remote code execution (RCE) vulnerability, attackers are now actively scanning for vulnerable Internet-exposed VMware servers. Lisäksi: Health Website Leaks 8 Million COVID-19 Test Results A teenaged ethical […]

Read More

[ZDNet] PuzzleMaker attacks exploit Windows zero-day, Chrome vulnerabilities

All posts, ZDNet

Two of the zero-days used were patched by Microsoft on Tuesday. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Google Releases New Framework to Prevent Software Supply Chain Attacks

All posts, HackerNews

As software supply chain attacks emerge as a point of concern in the wake of SolarWinds and Codecov security incidents, Google is proposing a solution to ensure the integrity of software packages and prevent unauthorized modifications.  Called “Supply chain Levels for Software Artifacts” (SLSA, and pronounced “salsa”), the end-to-end framework aims to secure the software development […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.