1 min read
-1.jpg?width=30&name=DSC08054%20(2)-1.jpg){kind=small}
Nadav Noy : Mar 31, 2023 8:30:00 AM
On March 29th, 2023, it was published that 3CX, the international VoIP IPBX software, was under an ongoing software supply chain attack. The attackers had trojanized the 3CX communication installer software, reportedly used by over 12 million users...
Read More
Nadav Noy : Mar 30, 2023 2:53:39 PM
The Legit Security research team has found a vulnerability in Azure Pipelines (CVE-2023-21553) that allows an attacker to execute malicious code in a...
Nadav Noy : Jan 4, 2023 6:21:15 AM
Jenkins is an open-source automation and build platform that allows for automated tests, integrations, builds, and much more. However, Jenkins also...
Nadav Noy : Oct 12, 2022 11:00:10 AM
On Oct 7th, Toyota announced a possible data leakage incident stemming from a code repository in their software supply chain. The compromised data...
Nadav Noy : Oct 3, 2022 4:23:08 PM
On the 29th of September, it was revealed that the installer for the widely used Comm100 Live Chat application included malicious trojan malware. The...
Nadav Noy : Aug 22, 2022 1:53:35 PM
Application Security (AppSec) is the process of identifying, testing, and fixing security flaws in an application. Although it may be tempting to...
