Dark Reading

'Damn Vulnerable' Training Apps Leave Vendors' Clouds Exposed

Security vendors have been leaving deliberately insecure training applications on the public Internet, and attackers have been taking advantage of them to breach their cloud environments. What's the ...
Bleeping Computer

Latest Web Application news

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time passcodes, harvesting cryptocurrency wallet addresses, and proxying attacker ...