Security Boulevard

ACFW firewall test prologue – still failing at the basics

The results of our soon-to-be-published Advanced Cloud Firewall (ACFW) test are hard to ignore. Some vendors are failing badly at the basics like SQL injection, command injection, Server-Side Request ...
Security Boulevard

Critical CERT-In Advisories – January 2026: SAP, Microsoft, and Atlassian Vulnerabilities

January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity ...
CSO Online

Software supply chain risks join the OWASP top 10 list, access control still on top

There were some changes to the recently updated OWASP Top 10 list, including the addition of supply chain risks. But old ...
TechCircle

How can CISOs debunk common cloud security misconceptions

The cloud has revolutionised how businesses operate, offering unprecedented scalability, flexibility, and agility. However, ...
SecurityWeek

Cyber Insights 2026: API Security – Harder to Secure, Impossible to Ignore

Cybersecurity experts share insights on securing Application Programming Interfaces (APIs), essential to a connected tech world.
EDUCAUSE Review

When AI Meets Data: The Promise and the Pressure of Bringing AI into Higher Education Systems

The implications of AI for data governance and security don’t often grab the headlines, but the work of incorporating this ...
Infosecurity Magazine

SQL Injection Flaw Affects 40,000 WordPress Sites

More than 40,000 WordPress sites using the Quiz and Survey Master plugin have been affected by a SQL injection vulnerability that allowed authenticated users to interfere with database queries.

F5: Security Incident Impact And Outlook

Read here for F5 (FFIV) stock's AI and hybrid multi-cloud growth outlook, NVIDIA partnership, breach impact, and cloud-native ...
GIGAZINE

Anthropic's 'Cowork' vulnerable to indirect prompt injection file exfiltration attack

Cowork, an AI agent released by Anthropic to assist with daily tasks, has been found to have a vulnerability that allows it to read and execute malicious prompts from files uploaded by users.
Hosted on MSN

This Microsoft Copilot AI attack took a single click to compromise users

Varonis discovers new prompt-injection method via malicious URL parameters, dubbed “Reprompt.” Attackers could trick GenAI tools into leaking sensitive data with a single click Microsoft patched the ...