Security
Headlines
HeadlinesLatestCVEs

Source

PortSwigger

Dangerous uXSS bug in Google Chrome’s ‘New Tab’ page bypassed security features

‘Chrome’s NTP only has a really weak CSP that doesn’t mitigate XSS’

PortSwigger
Open in Source
#xss#google
NIST unveils draft criteria for ‘seal of approval’ scheme on consumer software security

Baseline standards proposed for secure development, handling vulnerabilities, and protecting sensitive data

Data breach at US healthcare provider Viverant PT impacts more than 6,500 patients

Minnesota healthcare provider hit by cyber-attack A data breach at a physical therapy center based in the US has breached the personal data of more than 6,500 patients. Viverant PT, based in Minneapol

Data breach at US physical therapy center impacts more than 6,500 patients

Minnesota healthcare provider hit by cyber-attack A US physical therapy center has announced that the personal data of more than 6,500 patients has been breached in a security incident. Viverant PT, b

Multiple flaws in telecoms stack software FreeSwitch uncovered

Authentication and denial of service risks for DIY PBX tech patched

Ransomware cybercriminals linked to Norsk Hydro attack fall prey to Europol swoop

Two-year investigation results in raids targeting ‘high-value’ suspects and seizure of cash and computers

All Day DevOps 2021: Securing the software supply chain with ephemerality and the least-privilege principle

‘The new boundary for systems engineering is how ephemeral can you make any given process with a privilege’