KXAN

KomodoSec Exposes SSRF Risk in PDF Conversions: A Cybersecurity Breakthrough

KomodoSec's study reveals critical SSRF vulnerabilities in HTML to PDF exports, offering vital mitigation strategies. NEW CASTLE, DELAWARE, USA, April 10, 2024 ...
Bleeping Computer

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices. The ...
Dark Reading

Microsoft Patches 4 SSRF Flaws in Separate Azure Cloud Services

Microsoft has fixed vulnerabilities in four separate services of its Azure cloud platform, two of which could have allowed attackers to perform a server-side request forgery (SSRF) attack — and thus ...
Dark Reading

Microsoft Copilot Studio Exploit Leaks Sensitive Cloud Data

Researchers have exploited a vulnerability in Microsoft's Copilot Studio tool allowing them to make external HTTP requests that can access sensitive information regarding internal services within a ...
CSOonline

SSRF attacks explained and how to defend against them

Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. The name itself implies that a request that should have otherwise been made ...
IT News For Australia Business

More woes for Ivanti as exploit activity rises

A security vulnerability discovered by Ivanti during a separate security investigation is being widely exploited in the wild, security researchers say. At the time, it said the zero-day vulnerability ...