Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

2 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 2 most recent headlines Filtered view

Last week, we wrote about a bunch of memory management bugs that were fixed in the latest security update for the popular OpenSSL encryption library. Along with those memory bugs, we also reported on a bug dubbed CVE-2022-4304: Timing Oracle in RSA Decryption. In this bug, firing the same encrypted message over and over again […]

More from Naked Security 14 Feb 2023, 6:59 a.m. CVE-2022-4304 CVE Encryption Fixed Library OpenSSL Oracle RSA Security Update

Amazon Web Services (AWS) has fixed four security issues in its hot patch from December that addressed the critical Log4Shell vulnerability (CVE-2021-44228) affecting cloud or on-premise environments running Java applications with a vulnerable version of the Log4j logging library or containers. [...]

More from Bleeping Computer 20 Apr 2022, 8:45 p.m. Actively exploited CVE-2021-44228 Amazon Amazon Web Services CVE Cloud Critical Fixed Java Library Log4Shell Log4j Patch Vulnerability