Security gap - Onlineportal von IT Management

Security gap

Wiz: DeepSeek database was openly available online for months

30. January, 2025 - 09:13

The Chinese AI start-up DeepSeek, which has just become known for its powerful language models, had exposed a critical database unprotected on the internet for months. Security researchers were apparently able to access sensitive chat histories and API keys without authentication.

Expedition" migration tool

Vulnerability with high CVSS score in Palo Alto Networks software

08. November, 2024 - 10:26

The American cyber security authority CISA sounded the alarm on Thursday: a serious security vulnerability in the software of IT security company Palo Alto Networks is already being actively exploited by attackers.

Over 50 victims according to Mandiant

Zero-day vulnerability in FortiManager

25. October, 2024 - 10:14

Mandiant has published new research on the mass exploitation of the zero-day vulnerability CVE-2024-47575 in FortiManager appliances.

"Sinkclose"

Security vulnerability affects millions of AMD processors

12. August, 2024 - 15:19

A recently discovered security vulnerability named “Sinkclose” is causing concern. Millions of systems with AMD Ryzen and EPYC processors are potentially affected.

GitHub, Gitlab and Bitbucket affected

Vulnerability in Leading Source Code Management Systems

09. July, 2024 - 11:32

Aqua Security, a provider in the field of Cloud Native Security, publishes a new study showing how secret data such as login credentials, API tokens, and passkeys from organizations can remain openly accessible for years in the Git-based infrastructure of most source code management systems (SCMs).

Highly critical weak point

regreSSHion: Biggest discovery of a security vulnerability since log4shell

01. July, 2024 - 15:24

Qualys reports one of the most significant vulnerabilities found in recent years in terms of scale and potential impact.

AI gadget

Security vulnerability in Rabbit R1: user data at risk

28. June, 2024 - 09:30

A critical security vulnerability has been discovered in the Rabbit R1 virtual assistant. According to reports, the company Rabbit has stored several important API keys directly in the source code of the device, potentially making user data accessible to hackers.

Risk rating 9.8

Ivanti Endpoint Manager affected by critical vulnerability

17. June, 2024 - 15:24

A critical vulnerability in Ivanti’s endpoint management solution has alarmed security researchers.

Wiz: DeepSeek database was openly available online for months

Vulnerability with high CVSS score in Palo Alto Networks software

Zero-day vulnerability in FortiManager

Security vulnerability affects millions of AMD processors

Vulnerability in Leading Source Code Management Systems

regreSSHion: Biggest discovery of a security vulnerability since log4shell

Security vulnerability in Rabbit R1: user data at risk

Ivanti Endpoint Manager affected by critical vulnerability

Events

Veranstaltungen

Most read articles.

DeepSeek: Why the whole tech world is talking about this AI