Security News > 2020 > May > Week in review: Password psychology, SaltStack Salt vulnerabilities exploited, Patch Tuesday forecast
SaltStack Salt vulnerabilities actively exploited by attackers, patch ASAP!Two vulnerabilities in SaltStack Salt, an open-source remote task and configuration management framework, are being actively exploited by attackers, CISA warns.
The US Department of Homeland Security and the UK National Cyber Security Centre issued a joint advisory in early April, warning about this increasing activity.
GitHub Code Scanning aims to prevent vulnerabilities in open source softwareGitHub has made available two new security features for open and private repositories: code scanning and secret scanning.
Password psychology: People aren't protecting themselves even though they know betterPeople aren't protecting themselves from cybersecurity risks even though they know they should, a study on password psychology by LogMeIn reveals.
Microsoft announces limited Azure Sphere bug bounty programMicrosoft has announced a new security research / bug bounty program aimed at testing and improving the security of Azure Sphere, its comprehensive IoT security solution.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/aTY6SITRMpY/
Related news
- February 2025 Patch Tuesday forecast: New directions for AI development (source)
- Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws (source)
- February's Patch Tuesday sees Microsoft offer just 63 fixes (source)
- Microsoft’s Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation (source)
- Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws (source)
- March 2025 Patch Tuesday forecast: A return to normalcy (source)
- Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws (source)
- Choose your own Patch Tuesday adventure: Start with six zero day fixes, or six critical flaws (source)
- Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)