Blog Archiv

Schwachstellen-Insights

Ghostcat breach affects all Tomcat versions

26. Februar 2020

Schwachstellen-Insights

Security breach leaks the personal data of all 6.5 million Israeli voters

12. Februar 2020

Schwachstellen-Insights

How can a Content Security Policy prevent XSS and other vulnerabilities?

9. Februar 2020

Schwachstellen-Insights

The cost of a security breach

22. Januar 2020

Schwachstellen-Insights

Malicious packages found to be typo-squatting in Python Package Index

5. Dezember 2019

Schwachstellen-Insights

What’s so wild about exploits in the wild - and how can we prioritize accordingly?

21. November 2019

Schwachstellen-Insights

Why npm lockfiles can be a security blindspot for injecting malicious modules

24. September 2019

Schwachstellen-Insights

Sequelize ORM npm library found vulnerable to SQL Injection attacks

11. September 2019

Schwachstellen-Insights

Code execution back door found in Ruby’s rest-client library

21. August 2019

Schwachstellen-Insights

Jackson Deserialization Vulnerability

21. August 2019

Schwachstellen-Insights

A year-old dormant malicious remote code execution vulnerability discovered in Webmin

20. August 2019

Schwachstellen-Insights

A technical analysis of the Capital One cloud misconfiguration breach

1. August 2019

Schwachstellen-Insights

Concerns of supply-chain attacks amplify as remote code execution was found in Ruby gem strong_password

7. Juli 2019

Schwachstellen-Insights

Snyk research team discovers severe prototype pollution security vulnerabilities affecting all versions of lodash

5. Juli 2019

Schwachstellen-Insights

Yet another malicious package found in npm, targeting cryptocurrency wallets

17. Juni 2019

Schwachstellen-Insights

Java Top 10 Security Vulnerabilities Disclosed [2019 - List]

27. Mai 2019

Schwachstellen-Insights

CRLF injection found in popular Python dependency, urllib3

15. Mai 2019

Schwachstellen-Insights

A Denial of Service vulnerability discovered in the Axios JavaScript package - affecting all versions of the popular HTTP client

6. Mai 2019

Schwachstellen-Insights

Do you know how healthy your .NET dependencies are?

3. Mai 2019

Schwachstellen-Insights

After three years of silence, a new jQuery prototype pollution vulnerability emerges once again

15. April 2019

Schwachstellen-Insights

Enriched content on Snyk’s publicly available vulnerability database

8. April 2019

Schwachstellen-Insights

Malicious remote code execution backdoor discovered in the popular bootstrap-sass Ruby gem

4. April 2019

Schwachstellen-Insights

Snyking in - regular expression denial of service vulnerability exploit in the ms package

13. März 2019

Schwachstellen-Insights

Top ten Docker images contain over 8000 vulnerable paths

7. März 2019