News

Top Linux Vulnerabilities for October 2021 1. Missing input validation in domain names in Node.js Severity: Critical         CVSS Score: 9.8 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to remote code execution, Cross-site scripting (XSS), application crashes due to missing...

Linux Vulnerabilities of the Week: October 4, 2021 1. Apache HTTP Server (2.4.48 and earlier) vulnerability Severity: Critical     CVSS Score: 9.8 ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data...

Linux Vulnerabilities of the Week: September 27, 2021 1. Missing input validation in domain names in Node.js Severity: Critical         CVSS Score: 9.8 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to remote code execution, Cross-site scripting (XSS), application crashes due...

Why IT Security Must Become More Automated The Case for IT Automation There was a time when manual security and manual IT tasks were workable. But that day passed a long time ago. Yet many in IT and security find...

Linux Vulnerabilities of the Week: September 20, 2021 1. Lack of certain index validation in GoGo Protobuf (< 1.3.2) Severity: Important    CVSS Score: 8.6 This flaw allows a remote attacker to send crafted protobuf messages, causing a denial of service....

Are IT Teams Too Busy? IT Teams Are Under Pressure Imagine a war with one side retreating to the confines of a castle. With the enemy approaching, the king issues orders that weapons to produce weapons in greater quantity, train...

Microsoft Azure Vulnerability Affects Millions Microsoft Warns of Azure Vulnerability Microsoft Azure is big business. It generates about 120,000 new subscriptions per month. Azure Active Directory currently hosts around three quarters of a million users. And 85% of Fortune 500...

Top Linux Vulnerabilities for September 2021 1. Improper Input Validation in Node.js (<16.6.0, 14.17.4, and 12.22.4) affecting Red Hat Enterprise Linux 8 Severity: Critical         CVSS Score: 9.8 Node. js is vulnerable to remote code execution, Cross-site scripting (XSS), application crashes...

Linux Vulnerabilities of the Week: September 6, 2021 1. Missing request length checks in LibX11 affecting Red Hat Enterprise Linux 8 Severity: Critical    CVSS Score: 9.8 This is a missing validation flaw in libX11 before 1.7.1. The libX11 XLookupColor request...

How to Address Security Overwhelm Security Overwhelm Is Impacting Businesses Many businesses are at the breaking point when it comes to dealing with security incursions. They are overwhelmed. Instead of spending their time expanding the business, generating sales, devising strategies,...