15-Year-Old Unpatched Python Vulnerability Potentially Affects Over 350,000 Projects

The Hacker News Daily Updates Developer-Focused Security from Code to Cloud and Back to Code Discover the importance of application security and cloud security teams working together to deliver more secure cloud native applications in this white paper. Download Now Sponsored LATEST NEWS Sep 22, 2022 IT Security Takeaways from the Wiseasy Hack Last month Tech Crunch reported that payment terminal manufacturer Wiseasy had been hacked. Although Wiseasy might not be well known in North America, their Android-based payment terminals are widely used in the Asia Pacific region and hackers managed to steal passwords for 140,000 payment ... Read More Researchers Disclose Critical Vulnerability in Oracle Cloud Infrastructure Researchers have disclosed a new severe Oracle Cloud Infrastructure (OCI) vulnerability that could be exploited by users to access the virtual disks of other Oracle customers. "Each virtual disk in Oracle's cloud has a unique identifier called OCID," Shir Tamari, head of research at Wiz, said in a ... Read More 15-Year-Old Unpatched Python Vulnerability Potentially Affects Over 350,000 Projects As many as 350,000 open source projects are believed to be potentially vulnerable to exploitation as a result of a security flaw in a Python module that has remained unpatched for 15 years. The open source repositories span a number of industry verticals, such as software development, artificial ... Read More Hackers Targeting Unpatched Atlassian Confluence Servers to Deploy Crypto Miners A now-patched critical security flaw affecting Atlassian Confluence Server that came to light a few months ago is being actively exploited for illicit cryptocurrency mining on unpatched installations. "If left unremedied and successfully exploited, this vulnerability could be used for multiple and ... Read More Over 39,000 Unauthenticated Redis Instances Found Exposed on the Internet An unknown attacker targeted tens of thousands of unauthenticated Redis servers exposed on the internet in an attempt to install a cryptocurrency miner. It's not immediately known if all of these hosts were successfully compromised. Nonetheless, it was made possible by means of a "lesser-known ... Read More SOC 2 Compliance: Why it matters and how to get there Real-life guidance and advice from Trustero Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India