Wiz Research discovered and responsibly disclosed a critical vulnerability in AWS CodeBuild that could have led to a massive platform-wide compromise.

A production-ready MCP server that enables Claude Code to interact with the Exceptionless API for error tracking, monitoring, and project management. This server ...

Wiz researchers investigated and found the core of the flaw, a threat actor ID bypass due to unanchored regexes, and notified ...

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories ...

This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old ...

As generative AI reshapes browser usage, the acquisition will bring in-session browser security to the Falcon platform.

CrowdStrike plans to integrate Seraphic’s technology with its flagship Falcon cybersecurity platform. The development effort ...

Learn how refresh tokens work in enterprise SSO. This guide covers implementation, rotation, and security best practices for CIAM systems.

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. In this episode, Thomas Betts chats with ...

HARRIS COUNTY, Texas - Officials are assessing the damage caused by a sulfuric acid leak. This after a catwalk collapse at the BWC Terminals facility in Channelview released approximately one million ...

The cybersecurity world is facing a “Heartbleed” moment for the NoSQL era. A critical vulnerability in MongoDB, the world’s most popular non-relational database, is being actively exploited in the ...

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the ...