Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework
The maintainers of Spring Framework have released an emergency patch to address a newly disclosed remote code execution flaw that, if successfully...
Month: March 2022
Two different “VMware Spring” bugs at large – we cut through the confusion
Whoever came up with the name "Spring4Shell" didn't help at all... we cut through the Spring Bug confusion
U.S. Cyber Command Adds APUS as Member in Newly Formed Academic Network
The Academic Engagement Network is designed to advance cybersecurity in four areas.
White House Announces Possible Rise in Cyberattacks—What You Can Do to Stay Safe
The White House recently reissued a warning to American businesses in response to the unprecedented economic sanctions the U.S. has...
CVE-2022-22963: Spring Cloud Function 0-day remote code execution vulerability alert
Spring Cloud officially released a security bulletin, disclosing that there is a SpEL expression injection vulnerability (CVE-2022-22963) in a specific......
Apple can support sideloading, while protecting the rest of us
Apple has improved on the arrangement it’s trying to reach with authorities in the Netherlands and adjusted its deal for...
Lawmakers join growing push to create a ‘digital dollar’
Lawmakers have introduced a bill that would allow the US Treasury to create a digital dollar.The electronic dollar, a virtual...
Google TAG details cyber activity with regard to the invasion of Ukraine
The Google TAG uses uncovered phishing attacks targeting Eastern European and NATO countries, including Ukraine. The Google Threat Analysis Group (TAG) provided...
PCI DSS v4.0 Resource Hub
PCI Data Security Standard (PCI DSS) is a global standard that provides a baseline of technical and operational requirements...
PCI DSS v4.0: A Conversation with the Council
The PCI Security Standards Council has published the PCI Data Security Standard v4.0. The standard was developed with feedback...
