Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

knowbe4

Ransomware Payments On The Decline As Cyber Attackers Focus on The Smallest, And Largest, Organizations

Jan 31, 2024 By Stu Sjouwerman In KnowBe4
New data for Q4 of 2023 reveals a sizable shift in the cyber threat landscape, with serious implications regarding ransomware and social engineering attacks targeting both the largest and smallest organizations worldwide. The good news is that ransoms continue to decline – according to the most recent Quarterly Ransomware Report from ransomware response vendor Coveware.
Read Post
Snyk

Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)

Jan 31, 2024 By Rory McNamara In Snyk
Snyk has discovered a vulnerability in all versions of Docker Buildkit <= v0.12.4, as used by the Docker engine. The exploitation of this issue can result in container escape to the underlying host OS when building an image using a malicious Dockerfile or upstream image (i.e, when using FROM). This issue has been assigned CVE-2024-23653.
Read Post
Snyk

Buildkit build-time container teardown arbitrary delete (CVE-2024-23652)

Jan 31, 2024 By Rory McNamara In Snyk
Snyk has discovered a vulnerability in all versions of Docker Buildkit <=v0.12.4, as used by the Docker engine. Exploitation of this issue can result in arbitrary file and directory deletion in the underlying host OS when building an image using a malicious Dockerfile or upstream image (i.e, when using FROM). This issue has been assigned CVE-2024-23652.
Read Post
Snyk

Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)

Jan 31, 2024 By Rory McNamara In Snyk
Snyk has discovered a vulnerability in all versions of Docker Buildkit <=v0.12.4, as used by the Docker engine. The exploitation of this issue can result in container escape to the underlying host OS when building an image using a malicious Dockerfile or upstream image (i.e. when using FROM). This issue has been assigned CVE-2024-23651.
Read Post
Snyk

Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)

Jan 31, 2024 By Rory McNamara In Snyk
Snyk has discovered a vulnerability in all versions of runc <=1.1.11, as used by the Docker engine, along with other containerization technologies such as Kubernetes. Exploitation of this issue can result in container escape to the underlying host OS, either through executing a malicious image or building an image using a malicious Dockerfile or upstream image (i.e., when using FROM). This issue has been assigned the CVE-2024-21626.
Read Post
Snyk

Leaky Vessels: Docker and runc container breakout vulnerabilities (January 2024)

Jan 31, 2024 By Jamie Smith In Snyk
Snyk security researcher Rory McNamara, with the Snyk Security Labs team, identified four vulnerabilities — dubbed "Leaky Vessels" — in core container infrastructure components that allow container escapes. An attacker could use these container escapes to gain unauthorized access to the underlying host operating system from within the container.
Read Post

Securing the Gateway - Mastering API Security in the Modern Web Landscape

Jan 31, 2024 By GitGuardian In GitGuardian
APIs are the backbone of modern web applications, yet we rarely assess security beyond the traditional WAFs and Gateways. In fact, in a recent scan of over 1.5k GraphQL endpoints revealed a staggering 46,000+ security issues and sensitive data leaks—all accessible without authentication, with 10% classified as critical. Due to API’s being widely used by developers, they have now become a favored attack vector for threat actors.
View Video

Demo Tuesday: AI Assist

Jan 31, 2024 By Forward Networks In Forward Networks
If you could ask your network one question, what would it be? Good news, you can ask it all the questions you want with Forward Enterprise's new AI Assist feature. Watch Mike Lossmann use natural language to perform Network Query Engine searches-- no matter your role or skill level, you can conduct sophisticated network queries with a minimal learning curve.
View Video
keeper

What Is One-Time Share and What Are Its Benefits?

Jan 31, 2024 By Aranza Trevino In Keeper
One-Time Share is a feature Keeper® Password Manager offers that allows users to securely share passwords and other sensitive data with anyone on a time-limited basis. When using One-Time Share, the recipient does not have to be a Keeper user themselves, making it convenient to securely share sensitive information with anyone. Continue reading to learn more about One-Time Share and the benefits of using this feature when sending sensitive logins and other data.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.