Blog Archiv

Stranger Danger: Live hack of how a Log4Shell exploit works

25. Januar 2022

URL confusion vulnerabilities in the wild: Exploring parser inconsistencies

10. Januar 2022

Open source maintainer pulls the plug on npm packages colors and faker, now what?

9. Januar 2022

FTC highlights the importance of securing Log4j and software supply chain

7. Januar 2022

CTF secrets revealed: TopLang challenge from SnykCon 2021 explained

6. Januar 2022

Log4Shell webinar: What you need to know

5. Januar 2022

New Log4j 2.17.1 fixes CVE-2021-44832 remote code execution (but it’s not as bad as it sounds)

29. Dezember 2021

Snyk makes it easier to fix Log4Shell with extended free scans

21. Dezember 2021

Log4j 2.16 High Severity Vulnerability (CVE-2021-45105) Discovered

18. Dezember 2021

Find Log4Shell vulnerabilities in your unmanaged and shaded jars with the Snyk CLI

18. Dezember 2021

Log4j 2.15 vulnerability CVE-2021-45046 upgraded to a critical severity arbitrary code execution

17. Dezember 2021

Security in context: When is a CVE not a CVE?

17. Dezember 2021

Log4Shell in a nutshell (for non-developers & non-Java developers)

15. Dezember 2021

Log4Shell remediation cheat sheet

14. Dezember 2021

The Log4j vulnerability and its impact on software supply chain security

13. Dezember 2021

Log4Shell: Schneller aufspüren und beheben mit Snyk

13. Dezember 2021

Log4j vulnerability explained: Prevent Log4Shell RCE by updating to version 2.17.1

10. Dezember 2021

Java JSON deserialization problems with the Jackson ObjectMapper

1. Dezember 2021

How to prevent Trojan Source attacks with Snyk Code

17. November 2021

How to effectively detect and mitigate Trojan Source attacks in JavaScript codebases with ESLint

10. November 2021

6 big AWS IAM vulnerabilities – and how to avoid them

5. November 2021