In a rare squid/security combined post, a new vulnerability was discovered in the Squid HTTP proxy server.

Google’s vulnerability finding team is again pushing the envelope of responsible disclosure: Google’s Project Zero team will retain its existing

One minute, your website is working perfectly. Customers are browsing, logging in, placing orders. Then out of nowhere, it all

A fundamental vulnerability within the HTTP/1.1 protocol poses a significant threat to millions of websites, potentially allowing attackers to execute

Executive Summary A critical vulnerability in WinRAR, identified as CVE-2023-38831, is being actively exploited by threat actors to execute arbitrary

The government of China has accused Nvidia of inserting a backdoor into their H20 chips: China’s cyber regulator on Thursday

In complex cloud environments, maintaining a strong security posture begins with understanding what is important. Watchlists provide a strategic approach

Trend Micro has warned that attackers target critical unauthenticated command injection vulnerabilities (CVE-2025-54948, CVE-2025-54987) in its on-premise Apex One endpoint

A significant security flaw, CVE-2025-53786, has been discovered in Microsoft Exchange Server hybrid environments. This flaw could enable attackers with

Executive Summary The Raspberry Robin malware, a sophisticated and evolving threat, actively exploits a new vulnerability in Windows systems. First