OWASP Top 10 – 2021 Vulnerabilities
What is OWASP? The OWASP (Open Web Application Security Project) was established in 2001 as an open-source security community focused on the goal of circulating application security awareness. OWASP is…
Cyber Security
What is OWASP? The OWASP (Open Web Application Security Project) was established in 2001 as an open-source security community focused on the goal of circulating application security awareness. OWASP is…
Google released an emergency security patch for the Chrome Browser which is affected by Active Zero-Day Vulnerability exploited in the wild. The urgent security update is rolled out worldwide to…
Overview: This document defines the structured methodology of Application Threat Modeling used in organizations that identify, enumerate and prioritize mitigations for the security vulnerabilities related to the application. It will…
Introduction: Secure Software Development Life Cycle (S-SDLC) methodology is the need of the hour for the organizations to adapt to ensure that their software is Secured and all the security…
Microsoft has released the patch for actively exploited Zero-Day vulnerability using Microsoft Office documents and MSHTML. Microsoft has associated this vulnerability with CVE-2021-40444. This patch is released as part of…
Apple issued an emergency critical software security update for the vulnerability in its products running iOS 14.8, iPadOS 14.8, watchOS 7.6.2 and macOS Big Sur 11.6. This flaw is related…
The Open Web Application Security Project (OWASP) released a draft edition of all-new OWASP Top 10 – 2021 Vulnerabilities list on its official website for peer review. The list contains…
Cybercriminals group “Orange” publicly leaked around 500,000 usernames and passwords of the Fortinet VPN users from as many as 74 different countries. The disclosed credentials are associated with FortiGate SSL-VPN…
Microsoft reported an actively exploited Zero-Day Vulnerability affecting their Internet Explorer that will enable attackers for remote code execution in user’s systems. The flaw is found in the MSHTML, the…
A critical high severity Authentication Bypass Vulnerability was found on the Netgear Smart Switches used on corporate networks. These vulnerable devices can be exploitable by the attacker logging into the…