The Future of Serverless Security in 2025: From Logs to Runtime Protection

XMLRPC npm Library Turns Malicious, Steals Data, Deploys Crypto Miner

Cybercriminals Exploit Popular Game Engine Godot to Distribute Cross-Platform Malware

U.S. Telecom Giant T-Mobile Detects Network Intrusion Attempts from Wireline Provider

Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting the Oracle WebLogic Server to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
Tracked as CVE-2017-3506 (CVSS score: 7.4), the issue concerns an operating system (OS) command injection vulnerability that could be exploited to obtain unauthorized

Headline

Oracle WebLogic Server OS Command Injection Flaw Under Active Attack

The Hacker News: Latest News