Security News

A critical GitLab vulnerability, which could be leveraged by a remote attacker to execute code, recently netted a researcher a $20,000 bug-bounty award. The flaw was reported to GitLab by software developer William Bowling via the HackerOne bug bounty platform on March 23.

A researcher has earned $20,000 from GitLab after reporting a critical vulnerability that could have been exploited to obtain sensitive information from a server and to execute arbitrary code. The vulnerability was discovered in March by William Bowling, who noticed that an attacker could obtain arbitrary files from a server when moving an issue from one GitLab project to another.

Adobe has pushed out security updates fixing critical flaws in Magento Commerce, Open Source Enterprise and Community editions, Adobe Illustrator 2020 for Windows, and Adobe Bridge for Windows. The Adobe Illustrator vector graphics editor has been updated to close five critical memory corruption vulnerabilities that could be exploited for arbitrary code execution.

Updates released by Adobe on Tuesday for the Magento Commerce and Open Source editions address multiple critical severity vulnerabilities that could lead to arbitrary code execution. A total of six critical vulnerabilities were patched in the popular e-commerce platform, none of which requires authentication for a successful exploitation.

Red Hat has long championed technology evolutions and wants to enable customers to build any application and deploy everywhere with the consistency and flexibility an open hybrid cloud foundation provides. Building on this vision, Red Hat's new offerings are designed to improve the delivery, accessibility and stability of critical services and applications on a worldwide scale on the backbone of the hybrid cloud.

Adobe is warning of critical flaws in Adobe Bridge, Adobe Illustrator and the Magento e-commerce platform. The majority of these flaws affect Adobe Bridge, the company's digital asset management software.

It's not 'Patch Tuesday,' but software giant Adobe today released emergency updates for three of its widely used products that patch dozens of newly discovered critical vulnerabilities. The list of affected software includes Adobe Illustrator, Adobe Bridge, and Magento e-commerce platform, containing a total of 35 vulnerabilities where each one of them is affected with multiple critical arbitrary code execution flaws.

It's not 'Patch Tuesday,' but software giant Adobe today released emergency updates for three of its widely used products that patch dozens of newly discovered critical vulnerabilities. The list of affected software includes Adobe Illustrator, Adobe Bridge, and Magento e-commerce platform, containing a total of 35 vulnerabilities where each one of them is affected with multiple critical arbitrary code execution flaws.

Cygilant, provider of Cybersecurity-as-a-Service to mid-sized organizations, launched Cygilant Endpoint Security, a new solution that will give companies greater visibility into suspicious activity taking place on network endpoints. Cygilant Endpoint Security is an agent-based solution that collects real-time security data from a company's critical assets, detects suspicious files, services and other activity - and then streams alerts to the 24×7 Cygilant Security Operations Center for further investigation and action.

Virtustream, an enterprise-class cloud company and Dell Technologies business, announced new Managed Availability Services designed to deliver 99.95% availability for mission-critical SAP applications, giving peace of mind to enterprise customers who require the highest level of up-time for their applications. The new Managed Availability Services complement Virtustream's extensive xStreamCare services portfolio, extending its end-to-end support - from migration to management - for customers' SAP applications on the Virtustream cloud.