Episode 116: Packagist Patch Shows How Supply Chain Threats Could Impact WordPress
A vulnerability discovered in Packagist, which is used by Composer to manage PHP package requests, could have allowed attackers to trick Composer into downloading backdoored source code, potentially affecting all…
Critical Flaws Hit Cisco SD-WAN vManage and HyperFlex Software
Networking equipment major Cisco has rolled out software updates to address multiple critical vulnerabilities impacting HyperFlex HX and SD-WAN vManage Software that could allow an attacker to perform command injection…
Data leak implicates over 200,000 people in Amazon fake product review scam
Names, email addresses, and PayPal details were exposed and left online. Read more from the Source
Making the Internet more secure one signed container at a time
Posted by Priya Wadhwa, Jake Sanders, Google Open Source Security Team With over 16 million pulls per month, Google’s `distroless` base images are widely used and depended on by large…