Explore >> Select a destination

You are here

 blog.trailofbits.com
The Trail of Bits Blog
| | www.nodejs-security.com
The XZ backdoor CVE-2024-3094: a JavaScript perspective
3.1 parsecs away

Travel
| | The XZ backdoor CVE-2024-3094 already happened in JavaScript 5 years ago but now the xz and liblzma malware bundled onto Linux distributions is bringing forth a world-wide threatening event in cybersecurity that jeopardizes the trust, sustainability and security concerns in the open-source ecosystem.
| | www.thezdi.com
Zero Day Initiative - CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin
3.4 parsecs away

Travel
| | [AI summary] A critical vulnerability in NVIDIA's Merlin Transformers4Rec library allows remote code execution via unsafe pickle deserialization, highlighting ongoing security challenges in ML/AI frameworks.
| | ortelius.io
SecureChainCon 2025 | Ortelius
4.4 parsecs away

Travel
| | SecureChainCon 2025
| | malgregator.com
InfoSec Week 2, 2019 ยท malgregator
20.0 parsecs away

Travel
| Personal information of many German politicans were published online. Since then, Police arrested 20 years old suspect.