SecurityWeek

Two New Web Application Risk Categories Added to OWASP Top 10

OWASP has released a revised version of its Top 10 list of critical risks to web applications, adding two new categories.
SecurityWeek

QNAP Patches Vulnerabilities Exploited at Pwn2Own Ireland

QNAP patched two dozen vulnerabilities across its product portfolio, including 7 flaws demonstrated at Pwn2Own Ireland 2025.
SecurityWeek

Australia Sanctions Hackers Supporting North Korea’s Weapons Program

Australian sanctions four entities and an individual involved in cybercriminal activities supporting North Korea’s weapons ...
SecurityWeek

Runc Vulnerabilities Can Be Exploited to Escape Containers

Vulnerabilities discovered recently in the Runc container runtime can be exploited to escape containers and gain root access to the host.
SecurityWeek

Many Forbes AI 50 Companies Leak Secrets on GitHub

Wiz has analyzed GitHub repositories pertaining to the world’s largest AI companies and found that many had leaked verified secrets.
SecurityWeek

Nearly 30 Alleged Victims of Oracle EBS Hack Named on Cl0p Ransomware Site

Cybercriminals have named nearly 30 organizations allegedly impacted by the recent campaign targeting Oracle EBS customers.
SecurityWeek

GlassWorm Malware Returns to Open VSX, Emerges on GitHub

The GlassWorm malware has reared its ugly head again in the Open VSX registry, roughly two weeks after being removed.