The flaw (CVE-2020-15157) is located in the container image-pulling process. A security vulnerability can be exploited to coerce the containerd cloud platform into exposing the host’s registry or ...

A newly discovered bug in a cloud system used to manage SonicWall firewalls could have allowed hackers to break into thousands of corporate networks. Enterprise firewalls and virtual private network ...

Researchers propose fresh approaches to cloud-security bugs and mitigating exposure, impact and risk. Big gaps exist in the 22-year-old Common Vulnerability and Exposures (CVE) system that do not ...

“White hat” hackers found 54 vulnerabilities in the Air Force’s enterprisewide cloud environment during a recent bug bounty. The bug bounty took place in spring, but notice of its results was ...

The operators of the Kinsing malware are targeting cloud environments with systems vulnerable to "Looney Tunables," a Linux security issue identified as CVE-2023-4911 that allows a local attacker to ...

Three flaws discovered in the way Microsoft's Azure-based data integration service leverages an open source workflow orchestration platform could have allowed an attacker to achieve administrative ...

Google Cloud has fixed a potentially dangerous application programming interface (API) vulnerability in its platform that, had it been exploited by malicious actors, could have led to widespread data ...

Commentary Commentary Bug Bounties and Ransomware Demands: Storm Clouds Ahead for In-House Counsel In the case of data breaches, the obligation to disclose may well be clearly defined by statute. Any ...

This is an archived article and the information in the article may be outdated. Please look at the time stamp on the story to see when it was last updated. **See the midge invasion from last fall in ...

Third-party researchers discovered that Adobe's suite of design apps for Windows is vulnerable to a Time Of Check To Time Of Use (TOCTTOU) race condition, which impacts the safety checks a program ...