Codecov hack aftermath: hundreds breached, many more to follow
On April 1st software testing firm, Codecov became aware of a security incident. The company learned, that for over two...
Year: 2021
6 best security practices for Laravel web development
One of the most used scripting languages of the 21st century is PHP. It is used on the client-side server...
Where did these mysterious PrismJS npm versions come from?
In 2015, strange 9000.0.x versions of PrismJS appeared on npm downloads, and nobody had a clue where they came from,...
Magic mushroom website Shroomery is down and we don’t know why
The "world's oldest magic mushroom website," Shroomery has been down this week without any good reason. Shroomery is a website...
Samsung Email bug could let attackers access your attachments
This month, Samsung has fixed multiple high severity vulnerabilities across multiple Samsung apps that come pre-installed on Samsung mobile devices....
Internet Archive Wayback Machine is generating broken snapshot links
For quite some weeks now Internet Archive's Wayback Machine has been acting quirky. When archiving links using the Wayback Machine,...
Oracle Cloud went down in global outage
A few hours ago reports of Oracle Cloud services going down surfaced on the internet. The outage that appears to...
Git remote code execution vulnerability patched, upgrade now
The Git project has released patches for a severe remote code execution (RCE) vulnerability, CVE-2021-21300. The flaw can be exploited...
WooCommerce fixes critical Upload Files vulnerability
Developers have fixed a critical vulnerability in the WooCommerce Upload Files plugin. WooCommerce is an open-source e-commerce platform used by...
Grayhat pollutes npm, PyPI with thousands of fake supply chain dependencies
A gray hat hacker has published over 7,000 dependency confusion packages to npm and PyPI repositories and continues to do...
