With the constant rise in cyberattacks mixed with the near-total computerization of today’s businesses, cybersecurity has become a crucial pillar for the proper functioning and health of companies.

A critical authentication vulnerability has been discovered in JetBrains TeamCity, identified under the reference CVE-2024-27198. This flaw significantly compromises the security of servers using this continuous integration system.

A critical vulnerability identified as CVE-2024-23897 has recently been disclosed in Jenkins, an open-source automation server that is essential for Continuous Integration and Continuous Delivery (CI/CD).

During the RitSec CTF 2023, a challenge named “X-Men Lore” was focused on exploiting an XXE vulnerability to access sensitive data. Initial Analysis The site featured a user interface allowing the selection of characters from the X-Men series.

CVE-2023-23397 is a critical privilege escalation vulnerability in Microsoft Outlook that allows for the exfiltration of NTLM authentication hashes via a specially crafted email. This flaw is exploited without any user interaction and raises significant security concerns for all versions of Outlook for Windows.