New Data Security Requirements and the Proceduralization of Mass Surveillance Law after the European Data Retention Case

This paper discusses the regulation of mass metadata surveillance in Europe through the lens of the landmark judgment in which the Court of Justice of the European Union struck down the Data Retention Directive. The controversial directive obliged telecom and Internet access providers in Europe t...

Siemens RUGGEDCOM ROS Devices Observable Timing Discrepancy (CVE-2021-42016)

A timing attack, in a third-party component, could make the retrieval of the private key possible, used for encryption of sensitive data. If a threat actor were to exploit this, the data integrity and security could be compromised. This plugin only works with Tenable.ot. Please visit...

Robustness of LLM-Enabled Vehicle Trajectory Prediction under Data Security Threats

The integration of large language models LLMs into automated driving systems has opened new possibilities for reasoning and decision-making by transforming complex driving contexts into language-understandable representations. Recent studies demonstrate that fine-tuned LLMs can accurately predict...

EUVD-2025-143390

Malicious code in anidata-hadits-ripa npm...

From Data Loss Prevention (DLP) to Modern Data Security

It’s time to rethink your approach...

USN-7861-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

Why Data Security Is the Key to Transparency in Private Markets

Private markets used to operate behind closed doors, exclusive, informal, and built on personal connections more than structure.…...

EUVD-2025-34933

The Restaurant Brands International RBI assistant platform through 2025-09-06 transmits passwords of user accounts in cleartext e-mail messages...

CVE-2025-62371

CVE-2025-62371 relates to OpenSearch Data Prepper plugins (sink/source) defaulting to a trust-all SSL configuration when no cert path is provided. This weakens certificate validation and enables MITM interception of data in transit to OpenSearch clusters. Affected versions precede 2.12.2; the iss...

Elasticsearch Insertion of sensitive information in log file

...

Securing agentic AI: Your guide to the Microsoft Ignite sessions catalog

Security is a core focus at Microsoft Ignite 2025, reflected in dedicated sessions and hands-on experiences designed for security professionals and leaders. Whether you’re shaping strategy or working on the front lines, Microsoft Ignite offers direct access to the latest advancements and practica...

EUVD-2021-0905

Malware in sbrugna...

EUVD-2016-7700

Malware in sbrugna...

EUVD-2011-0827

Malware in sbrugna...

EUVD-2015-5291

Malware in sbrugna...

EUVD-2016-4602

Malware in sbrugna...

EUVD-2017-12491

Malware in sbrugna...

EUVD-2017-1678

Malware in sbrugna...

EUVD-2017-1706

Malware in sbrugna...

EUVD-2017-1865

Malware in sbrugna...