Security News > 2020 > May > Week in review: Password psychology, SaltStack Salt vulnerabilities exploited, Patch Tuesday forecast
SaltStack Salt vulnerabilities actively exploited by attackers, patch ASAP!Two vulnerabilities in SaltStack Salt, an open-source remote task and configuration management framework, are being actively exploited by attackers, CISA warns.
The US Department of Homeland Security and the UK National Cyber Security Centre issued a joint advisory in early April, warning about this increasing activity.
GitHub Code Scanning aims to prevent vulnerabilities in open source softwareGitHub has made available two new security features for open and private repositories: code scanning and secret scanning.
Password psychology: People aren't protecting themselves even though they know betterPeople aren't protecting themselves from cybersecurity risks even though they know they should, a study on password psychology by LogMeIn reveals.
Microsoft announces limited Azure Sphere bug bounty programMicrosoft has announced a new security research / bug bounty program aimed at testing and improving the security of Azure Sphere, its comprehensive IoT security solution.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/aTY6SITRMpY/
Related news
- Patch Tuesday: Microsoft Fixes 134 Vulnerabilities, Including 1 Zero-Day (source)
- Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws (source)
- Choose your own Patch Tuesday adventure: Start with six zero day fixes, or six critical flaws (source)
- Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)
- April 2025 Patch Tuesday forecast: More AI security introduced by Microsoft (source)
- Week in review: Probing activity on Palo Alto Networks GlobalProtect portals, Patch Tuesday forecast (source)
- Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities (source)
- Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws (source)
- April's Patch Tuesday leaves unlucky Windows Hello users unable to login (source)