Blog Archive

Vulnerability Insights

Security breach leaks the personal data of all 6.5 million Israeli voters

February 12, 2020

Vulnerability Insights

How can a Content Security Policy prevent XSS and other vulnerabilities?

February 9, 2020

Vulnerability Insights

The cost of a security breach

January 22, 2020

Vulnerability Insights

Malicious packages found to be typo-squatting in Python Package Index

December 5, 2019

Vulnerability Insights

What’s so wild about exploits in the wild - and how can we prioritize accordingly?

November 21, 2019

Vulnerability Insights

Why npm lockfiles can be a security blindspot for injecting malicious modules

September 24, 2019

Vulnerability Insights

Sequelize ORM npm library found vulnerable to SQL Injection attacks

September 11, 2019

Vulnerability Insights

Code execution back door found in Ruby’s rest-client library

August 21, 2019

Vulnerability Insights

Jackson Deserialization Vulnerability

August 21, 2019

Vulnerability Insights

A year-old dormant malicious remote code execution vulnerability discovered in Webmin

August 20, 2019

Vulnerability Insights

A technical analysis of the Capital One cloud misconfiguration breach

August 1, 2019

Vulnerability Insights

Concerns of supply-chain attacks amplify as remote code execution was found in Ruby gem strong_password

July 7, 2019

Vulnerability Insights

Snyk research team discovers severe prototype pollution security vulnerabilities affecting all versions of lodash

July 5, 2019

Vulnerability Insights

Yet another malicious package found in npm, targeting cryptocurrency wallets

June 17, 2019

Vulnerability Insights

Java Top 10 Security Vulnerabilities Disclosed [2019 - List]

May 27, 2019

Vulnerability Insights

CRLF injection found in popular Python dependency, urllib3

May 15, 2019

Vulnerability Insights

A Denial of Service vulnerability discovered in the Axios JavaScript package - affecting all versions of the popular HTTP client

May 6, 2019

Vulnerability Insights

Do you know how healthy your .NET dependencies are?

May 3, 2019

Vulnerability Insights

After three years of silence, a new jQuery prototype pollution vulnerability emerges once again

April 15, 2019

Vulnerability Insights

Enriched content on Snyk’s publicly available vulnerability database

April 8, 2019

Vulnerability Insights

Malicious remote code execution backdoor discovered in the popular bootstrap-sass Ruby gem

April 4, 2019

Vulnerability Insights

Snyking in - regular expression denial of service vulnerability exploit in the ms package

March 13, 2019

Vulnerability Insights

Top ten Docker images contain over 8000 vulnerable paths

March 7, 2019

Vulnerability Insights

Snyking in - Directory traversal vulnerability exploit in the st package

February 25, 2019