KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
IEEE

Dynamic Content Security Policy Generation at Client-Side to Mitigate XSS Attacks

Abstract: Cross-site scripting (XSS) attacks are a major threat to web applications and have consistently ranked among the OWASP Top 10 vulnerabilities. Attackers can inject malicious scripts that ...
Tallahassee Democrat

Sydnee Client Portals expands live chat and advanced workflow controls

Sydnee adds channels, direct messages, and advanced workflow tools for service teams managing client communication, files, tasks, and requests. Over the last six months, we moved beyond foundational ...