Blog Archiv

3 Jedi-inspired lessons to level up your JavaScript security

4. Mai 2022

Targeted npm dependency confusion attack caught red-handed

30. April 2022

Under the C: A glance at C/C++ vulnerabilities in Python land

28. April 2022

Im Schlaglicht: Schwachstellen in C++

15. April 2022

Spring4Shell extends to Glassfish and Payara: same vulnerability, new exploit

8. April 2022

Alert: LaughTilYouCry ransomware sabotages npm package (with puns)

1. April 2022

Spring4Shell: The zero-day RCE in the Spring Framework explained

1. April 2022

Spring4Shell: What we know about the Java RCE vulnerability

31. März 2022

Using the Snyk Vulnerability Database to find projects for The Big Fix

30. März 2022

Immer mehr Protestware in Open-Source-Anwendungen: 4 Varianten und ihre Auswirkungen

22. März 2022

dompdf security alert: RCE vulnerability found in popular PHP PDF library

18. März 2022

Software-BOM: Kernsäule für Sicherheit in der Open-Source-Lieferkette

14. März 2022

Visibly invisible malicious Node.js packages: When configuration niche meets invisible characters

28. Februar 2022

Join The Big Fix: a 24-hour livestream dedicated to fixing security vulnerabilities in your projects

21. Februar 2022

Using the Snyk Vulnerability database to identify projects for The Big Fix

16. Februar 2022

Kubernetes-Sicherheit für Entwickler und Laufzeit: Unsere Zusammenarbeit mit Sysdig

16. Februar 2022

Case study: Python RCE vulnerability in Celery

15. Februar 2022

SAST and SCA: Better together with Snyk

10. Februar 2022

Log4Shell remediation with Snyk by the numbers

5. Februar 2022

Stranger Danger: Live hack of how a Log4Shell exploit works

25. Januar 2022

Open source maintainer pulls the plug on npm packages colors and faker, now what?

9. Januar 2022