Threatpost The First Stop For Security News
- Closing the Gap Between Application Security and Observabilityby Threatpost on May 20, 2022 at 12:42 pm
Daniel Kaar, global director application security engineering at Dynatrace, highlights the newfound respect for AppSec-enabled observability in the wake of Log4Shell.
- 380K Kubernetes API Servers Exposed to Public Internetby Elizabeth Montalbano on May 20, 2022 at 11:11 am
More than 380,000 of the 450,000-plus servers hosting the open-source container-orchestration engine for managing cloud deployments allow some form of access.
- Critical Vulnerability in Premium WordPress Themes Allows for Site Takeoverby Elizabeth Montalbano on May 19, 2022 at 1:03 pm
Privilege escalation flaw discovered in the Jupiter and JupiterX Core Plugin affects more than 90,000 sites.
- DOJ Says Doctor is Malware Mastermindby Nate Nelson on May 18, 2022 at 2:36 pm
The U.S. Department of Justice indicts middle-aged doctor, accusing him of being a malware mastermind.
- APTs Overwhelmingly Share Known Vulnerabilities Rather Than Attack O-Daysby Elizabeth Montalbano on May 18, 2022 at 2:01 pm
Research indicates that organizations should make patching existing flaws a priority to mitigate risk of compromise.