Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE
Successful exploitation could allow attackers to steal data, install malware, or take full control over…
5 Comments
Google fixes GCP flaw that could expose sensitive container images
The flaw could allow attackers to access restricted container images, potentially leading to privilege escalation,…
7 Comments
GitHub upgrades tooling to help developers stop leaking secrets
Developers get free and targeted advanced secret scanning features on GitHub to protect organizations from…
0 Comments
GitHub accounts targeted with fake security alerts
The alerts trick users into authorizing a malicious OAuth application capable of a full account…
0 Comments
Palo Alto Networks releases QRNG API framework
Quantum Random Number Generator Open API framework enables companies to begin preparing for a future…
0 Comments
Critical RCE flaws put Kubernetes clusters at risk of takeover
The vulnerabilities dubbed IngressNightmare can allow unauthenticated users to inject malicious NGINX configurations and execute…
0 Comments
Weaponizing generative AI
The security of genAI models is iffy and takes a back seat to other issues,…
0 Comments
Secure AI? Dream on, says AI red team
Microsoft’s ethical AI hackers provide some answers — as well as more questions. Credit: Who…
0 Comments