Social profiles leaked
“Too Much Information” Millions of Social Profiles Leaked by Chinese Data-Scrapers

A cloud misconfiguration by the Chinese social media management company SocialArks exposed 318 million records from [...]

php sites
“Deframed” Zend Framework Remote Code Execution Vulnerability Revealed

An untrusted deserialization vulnerability in the Zend Framework was disclosed this week. If exploited by [...]

Critical Golang XML parser bug
The Critical Golang XML Parser Bug Can Cause SAML Authentication Bypass

How the Critical Golang XML parser bug cause SAML authentication bypass? Security researchers at Mattermost, [...]

Vulnerability Scanning and Penetration Testing – Know the Difference

There are a variety of different ways to assess the security integrity of the systems [...]

vCISO service from Risk Crew
Your Virtual CISO Service à la carte Menu | GUIDE

Microsoft teams vulnerability
“Wormhole” Wormable Zero-Click Vulnerability in Microsoft Teams

A Security Engineer at Evolution Gaming has discovered a Cross-site Scripting (XSS) vulnerability on the [...]

Oracle WebLogic vulnerability
“Dark tidings” Recent Oracle WebLogic vulnerability exploited by DarkIRC Malware

A Remote Code Execution vulnerability, in the Oracle WebLogic Server, was recently discovered. The Oracle [...]

ISO 27001 Compliance by Risk Crew
How Much Does an ISO 27001 Certification Cost?

ISO 27001 is an internationally recognised standard for information security management systems (ISMS). It provides [...]

Google services
Google Services Weaponized to Bypass Security in Phishing

There was a spike in Phishing and business email compromises due to threat actors exploiting Google [...]

social engineering attacks
Top 5 Signs of Social Engineering Attacks

What are the Signs of a Social Engineering Attack and How Can You Prevent Them? [...]

Risk Crew