Security News

Denim Group integrates Jenkins Plugin with ThreadFix vulnerability management platform
2019-08-13 23:00

Denim Group, the leading independent application security firm, announced the latest version of their Jenkins Plugin to integrate with their flagship vulnerability management product, ThreadFix....

GE Aviation Passwords, Source Code Exposed in Open Jenkins Server
2019-07-08 20:39

A DNS misconfiguration resulted in an open Jenkins server being available to all.

Jenkins Vulnerability Exploited to Deliver 'Kerberods' Malware
2019-05-08 14:40

A vulnerability disclosed late last year has been exploited by malicious actors to deliver a piece of malware that deploys a Monero cryptocurrency miner and looks for new victims on the internet...

Vulnerabilities Found in Over 100 Jenkins Plugins
2019-05-03 13:36

A researcher has discovered vulnerabilities in more than 100 plugins designed for the Jenkins open source software development automation server and many of them have yet to be patched. read more

XebiaLabs extends Jenkins for all DevOps teams and tools
2018-09-19 02:15

Adding to XebiaLabs’ enterprise DevOps platform for Release Orchestration, Deployment Automation, and DevOps Intelligence, the XebiaLabs DevOps Pack for Jenkins provides everything enterprise...

Misconfigured Jenkins Servers Leak Sensitive Data
2018-01-19 16:20

A researcher has conducted an analysis of Jenkins servers and found that many of them leak sensitive information, including ones belonging to high-profile companies. London-based researcher Mikail...

Snapchat Pays $20,000 for Vulnerable Jenkins Instances (Security Week)
2017-08-24 12:22

Snapchat has awarded researchers a total of $20,000 for finding exposed Jenkins instances that allowed arbitrary code execution and provided access to sensitive data. read more