OpenSSH’s newly released version 9.2p1 contains a fix for a double-free vulnerability. Given the severe potential impact of the vulnerability on OpenSSH servers (DoS/RCE) and its high popularity in the industry, this security fix prompted the JFrog Security Research team to investigate the vulnerability. This blog post provides details on the vulnerability, who is affected, and a proof-of-concept to trigger it causing a Denial of Service (DoS).

Tanium’s Doug Thompson explains how the education sector can respond to a new CISA report.

LimaCharlie has multiple integrations that offer security teams greater visibility into Microsoft Windows. If you’re familiar with LimaCharlie, you probably know about some of these already. But over the past few months, we’ve added quite a bit to our catalog of capabilities. For this reason, we wanted to put together an updated guide to our most important Microsoft integrations.

The containerization of software and applications continues to escalate, and although alternatives have emerged to challenge Docker, it continues to enjoy major adoption by developers for building and sharing software and apps. In 2022, Docker estimated that 44% of developers are using some form of continuous integration and development with Docker containers.

Data breaches are on the rise and they can be both unexpected and costly. The average estimated cost of a data breach has peaked at an all-time high—an astounding $4.35 million, according to a 2022 report by IBM and the Ponemon Institute. Poor password hygiene and legacy software are two key culprits that will increase your chances of falling victim to a password breach.