Critical Zero-Click Flaw in n8n Allows Full Server Compromise
The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited
LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data
Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell
Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub
Threat actors were exploiting vulnerable versions of Triofox after a patched version was released, said Google Cloud researchers
Red Canary observed the novel tactic in a cluster of activity targeting a legacy vulnerability to access cloud-based Linux systems
Over 29,000 Microsoft Exchange servers remain unpatched against a vulnerability that could allow attackers to seize control of entire domains in hybrid cloud environments
Microsoft Exchange customers have been urged to apply fixes set out in a hybrid deployment security update published in April
Wiz Security finds four critical RCE vulnerabilities in the Ingress NGINX Controller for Kubernetes
Surging machine identities, faster threat detection and fewer vulnerabilities are shaping cloud security according to a new report
Cloud software firm VMware has issued a critical security advisory, detailing three zero-day vulnerabilities being actively exploited in the wild
Threat actors chained Ivanti CSA vulnerabilities for RCE, credential theft & webshell deployment
The cryptographic vulnerabilities were found in Sync, pCloud, Icedrive and Seafile by ETH Zurich
The vulnerability, discovered by Wiz researchers, affects both cloud-based and on-premises AI applications using the toolkit
A new report by Check Point Software highlights a significant increase in cloud security incidents, largely due to a lack of cybersecurity expertise and employee training
VMware has disclosed critical vulnerabilities impacting its VMware vSphere and VMware Cloud Foundation products, with patches available for customers
Sysdig said the attackers gained access to these credentials from a vulnerable version of Laravel
Orca Security said the issue mirrors a previously identified vulnerability in Azure CLI
Palo Alto Networks found that over 45% of organizations’ high-risk exposures in the cloud were due to cloud providers introducing new services
But IBM warns credential compromise is number one initial access vector