'Spring4Shell' bug in framework for Java programming draws widespread warnings

Written by Joe Warminsky Apr 1, 2022 | CYBERSCOOP Security researchers are urging users of Spring — a popular framework for creating create web applications in the widely used Java…

White House hosts open-source software security summit in light of expansive Log4j flaw

Written by Tim Starks Jan 13, 2022 | CYBERSCOOP Tech giants and federal agencies will meet at the White House on Thursday to discuss open-source software security, a response to…

Hackers Are Scanning for the Vulnerability Found in Vmware

The malicious actors are going after the CVE-2021-22005 that is unpatched against a critical arbitrary file upload vulnerability. This vulnerability that was recently patched could lead to remote code execution, as…