One PUT Request to Own Tomcat: CVE-2025-24813 RCE is in the Wild
A devastating new remote code execution (RCE) vulnerability, CVE-2025-24813, is now actively exploited in the wild. Attackers need just one…
Security
RIP Mark Klein
2006 AT&T whistleblower Mark Klein has died.
What is a Software Publisher Certificate & How It Protects Your Code?
As more users recognize the risks of tampered and malicious software, maintaining software integrity and security is more critical than…
Advancing Cloud Security in Healthcare for Resilient Data Protection
Sensitive patient data is highly valuable on the black market, subjecting the healthcare sector to frequent cyberattacks. That’s why bolstering…
World Backup Day: Pledge to protect your digital life
Our digital lives are filled with essential personal information, and it’s easy to forget how vulnerable all that data can…
China, Russia, Iran, and North Korea Intelligence Sharing
Former CISA Director Jen Easterly writes about a new international intelligence sharing co-op: Historically, China, Russia, Iran & North Korea…
Microsoft Patches 57 Flaws, 7 Zero Days in March 2025 Patch Tuesday
Microsoft’s March 2025 Patch Tuesday has arrived, delivering new security updates and enhancements. This month’s release addresses 57 vulnerabilities, including…
Soft-Launching and Open Sourcing the Have I Been Pwned Rebrand
Presently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. Designing the first logo…
Silk Typhoon Hackers Indicted
Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese…
Thousands of WordPress Websites Infected with Malware
The malware includes four separate backdoors: Creating four backdoors facilitates the attackers having multiple points of re-entry should one be…