Security Bulletin: Sensitive Key Exposure in Snowflake JDBC Driver Logging (Versions 3.0.13 – 3.23.0), affects watsonx.data

Summary Snowflake, a platform for using artificial intelligence in the context of cloud computing, has a vulnerability in the Snowflake JDBC driver "Driver" in versions 3.0.13 through 3.23.0 of the driver. When the logging level was set to DEBUG, the Driver would log locally the client-side...

Malicious code in cloud-data (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 424f85d34d816976e9e4e9674c41801256f7db680cdc2c3ce4c5363bd81c876a Any computer that has this package installed or running should be considered...

MAL-2025-48617 Malicious code in cloud-data (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 424f85d34d816976e9e4e9674c41801256f7db680cdc2c3ce4c5363bd81c876a Any computer that has this package installed or running should be considered...

Malicious code in multi-cloud-data-migrator (npm)

The package multi-cloud-data-migrator was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 96243e89d1f63fe186404148d660f9d90078e2c4e33e97a259be37284d6ba9c9 Any computer that has this package installed or running should be considered...

EUVD-2025-35033

Malicious code in multi-cloud-data-migrator npm...

EUVD-2020-26595

Malware in sbrugna...

EUVD-2023-43242

Malicious code in bioql PyPI...

EUVD-2022-3935

Malicious code in bioql PyPI...

CVE-2025-21461

Memory corruption when programming registers through virtual CDM...

DVFS: a Dynamic Verifiable Fuzzy Search Service for Encrypted Cloud Data

Cloud storage introduces critical privacy challenges for encrypted data retrieval, where fuzzy multi-keyword search enables approximate matching while preserving data confidentiality. Existing solutions face fundamental trade-offs between security and efficiency: linear-search mechanisms provide...

Emission Impossible: Privacy-Preserving Carbon Emissions Claims

Information and Communication Technologies ICT have a significant climate impact, and data centres account for a large proportion of the carbon emissions from ICT. To achieve sustainability goals, it is important that all parties involved in ICT supply chains can track and share accurate carbon...

Client-Side Zero-Shot LLM Inference for Comprehensive In-Browser URL Analysis

Malicious websites and phishing URLs pose an ever-increasing cybersecurity risk, with phishing attacks growing by 40% in a single year. Traditional detection approaches rely on machine learning classifiers or rule-based scanners operating in the cloud, but these face significant challenges in...

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.17.7 on Red Hat Enterprise Linux 9 from Red Hat Container Registry. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation...

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.18.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation...

Federal Data, Meet your New Bodyguard: DSPM joins Wiz for Government

Wiz is excited to bring Data Security Posture Management DSPM into our FedRAMP authorized offering. DSPM enables organizations requiring FedRAMP to automate classification, policy enforcement, and continuous monitoring for their sensitive cloud data...

CVE-2025-44839

TOTOLINK CA600-PoE V5.3c.6665B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the magicid parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

The vulnerability of the Cisco Nexus Dashboard, a control panel for analyzing and automating cloud-based data center operations, allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the Cisco Nexus Dashboard, a control panel for analyzing and automating cloud-based data center operations, is related to deficiencies in the error reporting mechanism. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

Important: Red Hat Security Advisory: RHODF-4.14-RHEL-9 security update

Updated images are now available for RHODF-4.14-RHEL-9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...

Important: Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update

Updated images are now available for RHODF-4.16-RHEL-9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...

Important: Red Hat Security Advisory: RHODF-4.17-RHEL-9 security update

Updated images are now available for RHODF-4.17-RHEL-9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...