Espresso

Sign in Subscribe

Docker

CISA rushes Ivanti patch, VS Code loots keys, Docker Gordon RCE, Aussie API leak

CISA rushes Ivanti patch, VS Code loots keys, Docker Gordon RCE, Aussie API leak

TL;DR * Ivanti EPMM Critical Vulnerabilities (CVE-2026-1281) Actively Exploited, 1,400+ Instances Exposed * Open VSX Supply Chain Attack Compromises 22,000+ Downloads with macOS Infostealer Malware * DockerDash Flaw Enables Prompt Injection in Ask Gordon AI Assistant, Leading to Data Exfiltration * Australian Furniture Company Data Leak Sells 48,000 Records on

Zero‑Day Exploits Hit F5, Samsung, Docker; Phishing Spikes, Zero‑Trust Models Adopted Coverage in 2025

Zero‑Day Exploits Hit F5, Samsung, Docker; Phishing Spikes, Zero‑Trust Models Adopted Coverage in 2025

TL;DR * Zero‑day vulnerabilities uncovered in F5 BIG‑IP, Samsung Galaxy, and Docker container runtimes * Phishing attacks rise as human cognitive overload lowers detection rates * Zero‑trust, SASE, and SSE models broadly adopted by enterprises in 2025 Zero‑Day Wave Threatens Core Infrastructure Docker runC: Mount‑Based Escape Reemerges