Threat actors are exploiting a vulnerability in Gitea’s reverse-proxy authentication mechanism to access internet-accessible instances by supplying only a valid username.
Discover how API Gateway security debt can turn your critical control point into a liability. Learn from expert Ankur ...
Chinese hackers took control of a target organization's authentication stack and maintained persistence for 10 years, with full visibility into the administrative activity. Dubbed "Operation Highland, ...
Palo Alto bought Portkey, Solo.io gave agentgateway to the Linux Foundation. Agent gateways are consolidating into a category ...
CVE-2026-20896 lets reachable Gitea Docker containers trust spoofed X-WEBAUTH-USER headers when reverse proxy auth is enabled ...
A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including administrators. The flaw does not have an identifier and is ...
Nearby attackers can crash Apple's AirDrop before users see a file transfer request, temporarily disabling AirPlay, Handoff, ...
KeepSolid CEO Vasyl Ivanov explains how hotel WiFi captive portals evolved into both a security vulnerability and a programmatic ad channel, and what VPN clients should do about it.
Adyen, Stripe, Visa, Mastercard, Google UCP, PayPal, and crypto-native challengers mapped by protocol reach and merchant ...
Hackers began exploiting vulnerability CVE-2026-8451 in Citrix NetScaler ADC and NetScaler Gateways less than 24 hours after disclosure.
Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.
A newly discovered AirDrop vulnerability lets someone nearby crash it on your iPhone, along with AirPlay, Handoff and more.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results