MongoDB warns admins to patch severe vulnerability immediately

MongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that may be exploited by ...

IBM warns of critical API Connect auth bypass vulnerability

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could ...
Computer Weekly

Sonatype CEO on self-service: The vulnerability data gap undermining AI-driven development

Increasingly, self-service tools and internal developer platforms (IDPs) are configured to make critical decisions, but ...
Nextgov

CISA officials commit to supporting top vulnerability cataloging program

Organizations around the world rely on the Common Vulnerabilities and Exposures Program, whose contract with CISA almost expired in April. It serves as the worldwide, de facto standard for ...
Rochester Institute of Technology

Hack your first computer at Imagine RIT

One of the best defenses against a cyber attack is to know your enemy. At the Imagine RIT: Innovation and Creativity Festival on May 2, festivalgoers can begin protecting themselves by learning how a ...
EurekAlert!

Computer scientists discover vulnerabilities in a popular security protocol

The Blast-RADIUS attack flow. More than 90 vendors have been involved in a coordinated disclosure and issued security bulletins. A widely used security protocol that dates back to the days of dial-up ...
CSOonline

CVE program averts swift end after CISA executes 11-month contract extension

After DHS did not renew its funding contract for reasons unspecified, MITRE’s 25-year-old Common Vulnerabilities and Exposures (CVE) program was slated for an abrupt shutdown on April 16, which would ...