Converge Cybersecurity and Physical Security to Protect the U.S. Electrical Grid
On February 6th law enforcement officials charged a neo-Nazi leader and his associate with plotting to attack...
Menu
KEV Catalog: Apache Airflow “Example DAG” Command Injection (CVE-2020-11978)
CVE-2020-11978 is a remote code injection vulnerability related to Apache Airflow versions 1.10.10 and below.
6 Cloud Security Issues and AWS solutions in 2023
In 2023, many companies seeking to reduce IT costs are also turning to the cloud. Cloud adoption...
KEV Catalog: Debian-specific Redis Server Lua Sandbox Escape Vulnerability (CVE-2022-0543)
Reginaldo Silva discovered a Debian-specific Lua sandbox escape in Redis, a persistent key-value database.
KEV Catalog: “Spring4Shell” Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)
The “Spring4Shell” vulnerability, CVE-2022-22965, is a remote code execution vulnerability. It affects Spring Core applications running on...
Cybersecurity Teams: An Introduction to Blue Team
Blue Team provides a variety of defensives services: network vulnerability evaluations, mitigation recommendations, real time threat detection,...
Defending Against Cyber Threats in the Oil and Gas Sector
The last decade has seen a global rise in cybersecurity attacks on the oil and gas sector.
What is Zero Trust and How To Build It In Your...
When you adopt the Zero Trust model in your organization, it means that you’ve implemented a system...
Cybersecurity Teams: An Introduction to Red Team
In order to understand Red Team, it is important to be aware of the different cybersecurity roles...
KEV Catalog: “Drupalgeddon2”: Drupal Module Configuration Vulnerability CVE-2018-7600
On March 28, 2018 Drupal announced a remote code execution vulnerability on specific Drupal versions of 6,...