Communications of the ACM

Fifty Years of Open Source Software Supply-Chain Security

An open source software supply-chain vulnerability is an exploitable weakness in trusted software caused by a third-party, ...
Windows Report

Microsoft Patches A Critical Entra ID Vulnerability Discovered by Dutch Hacker

A Dutch researcher found a flaw in Microsoft Entra ID that could expose every tenant worldwide. Microsoft patched it within ...
CSO Online

Entra ID vulnerability exposes gaps in cloud identity trust models, experts warn

Though patched, the flaw underscores systemic risks in cloud identity systems where legacy APIs and invisible delegation ...
Te Pūnaha Matatini

The ecosystem of software

The software ecosystem is a complex system, and this complexity is a byproduct of evolution, collaboration and innovation.
CSO Online

WatchGuard patches ‘critical’ VPN flaw in firewalls that could lead to compromise

WatchGuard has patched a dangerous branch office and mobile VPN configuration vulnerability affecting nearly three dozen ...
American Hospital Association

H-ISAC TLP White Vulnerability Bulletins TLP White Critical Vulnerability in WatchGuard Firebox Firewalls (CVE-2025-9242)

On September 17, 2025, WatchGuard released a security advisory regarding a critical vulnerability, tracked as CVE-2025-9242.

WatchGuard warns of critical vulnerability in Firebox firewalls

WatchGuard has released security updates to address a remote code execution vulnerability impacting the company's Firebox ...