Tag: security analysts
-
Schneier on Security: Encryption Backdoor in Military/Police Radios
Source URL: https://www.schneier.com/blog/archives/2025/08/encryption-backdoor-in-military-police-radios.html Source: Schneier on Security Title: Encryption Backdoor in Military/Police Radios Feedly Summary: I wrote about this in 2023. Here’s the story: Three Dutch security analysts discovered the vulnerabilities—five in total—in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios made by Motorola, Damm, Hytera, and others. The…
-
Embrace The Red: Hijacking Windsurf: How Prompt Injection Leaks Developer Secrets
Source URL: https://embracethered.com/blog/posts/2025/windsurf-data-exfiltration-vulnerabilities/ Source: Embrace The Red Title: Hijacking Windsurf: How Prompt Injection Leaks Developer Secrets Feedly Summary: This is the first post in a series exploring security vulnerabilities in Windsurf. If you are unfamiliar with Windsurf, it is a fork of VS Code and the coding agent is called Windsurf Cascade. The attack vectors…
-
Cloud Blog: Forrester study: Customers cite 240% ROI with Google Security Operations
Source URL: https://cloud.google.com/blog/products/identity-security/forrester-study-customers-cite-240-percent-roi-with-google-security-operations/ Source: Cloud Blog Title: Forrester study: Customers cite 240% ROI with Google Security Operations Feedly Summary: As part of Google Cloud’s fundamental belief that robust security can enable business resilience and innovation, we’re committed to empowering security operations teams with solutions that deliver measurable value and demonstrable return on investment (ROI).That’s why…
-
The Register: CitrixBleed 2 exploits are on the loose as security researchers yell and wave their hands
Source URL: https://www.theregister.com/2025/07/07/citrixbleed_2_exploits/ Source: The Register Title: CitrixBleed 2 exploits are on the loose as security researchers yell and wave their hands Feedly Summary: NetScaler vendor issued a patch but otherwise, stony silence Multiple exploits are circulating for CVE-2025-5777, a critical bug in Citrix NetScaler ADC and NetScaler Gateway dubbed CitrixBleed 2, and security analysts…
-
The Register: Socket buys Coana to tell you which security alerts you can ignore
Source URL: https://www.theregister.com/2025/05/15/socket_get_jacked_with_reachability/ Source: The Register Title: Socket buys Coana to tell you which security alerts you can ignore Feedly Summary: Sometimes, less information is more In its latest gambit to reduce the noise of unnecessary security alerts, Socket has acquired Coana, a startup founded in 2022 by researchers from Aarhus University in Denmark that…