Codecov hack aftermath: hundreds breached, many more to follow
Attackers who breached Codecov for over 2 months also reportedly hacked into hundreds of networks. The full extent of this…
6 best security practices for Laravel web development
One of the most used scripting languages of the 21st century is PHP. It is used on the client-side server…
Where did these mysterious PrismJS npm versions come from?
Shedding light on mysterious 9000.0.x versions of PrismJS that had left everyone puzzled in 2015, and weren't removed until 2019.
Magic mushroom website Shroomery is down and we don’t know why
The "world's oldest magic mushroom website," Shroomery has been down this week without any good reason.
Samsung Email bug could let attackers access your attachments
This month, Samsung has fixed multiple high severity vulnerabilities across multiple Samsung apps including Samsung Email. By exploiting this vulnerability…
Internet Archive Wayback Machine is generating broken snapshot links
For quite some weeks now Internet Archive's Wayback Machine has been acting buggy. Here's what you can do.
Oracle Cloud went down in global outage
A few hours ago reports of Oracle Cloud services going down surfaced on the internet. The outage that appears to…
Git remote code execution vulnerability patched, upgrade now
The Git project has released patches for a severe remote code execution (RCE) vulnerability, CVE-2021-21300 that can be exploited by…
WooCommerce fixes critical Upload Files vulnerability
A critical vulnerability CVE-2021-24171 in WooCommerce Upload Files plugin can be exploited through multiple routes like double extension and path…
Grayhat pollutes npm, PyPI with thousands of fake supply chain dependencies
A gray hat hacker has published over 7,000 dependency confusion packages to npm and PyPI repositories, and continues to post…