Duplicate Advisory: Keycloak vulnerable to untrusted certificate validation

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-5cc8-pgp5-7mpm. This link is maintained to preserve external references. Original Advisory A flaw was found in Keycloak. This flaw depends on a non-default configuration "Revalidate Client Certificate" to be...

Businesses losing fight against employee apps

From Techworld Maxwell Cooter Enterprises are struggling to control the use of consumer applications within the workplace, despite the panoply of security tools being used within corporates. According to new research paloaltonetworks.com, nearly half of all bandwidth within corporate environments...

Secunia pushes for standard to patch consumer apps

From DarkReading Kelly Jackson Higgins Danish security firm Secunia is attempting to rally other software vendors to develop an industry-standard tool that automatically updates all applications on a consumer’s PC. Secunia envisions an industry-standard app that runs when a laptop starts up, for...