Medium

Cross-site scripting (XSS) attacks in the browser can lead to remote code execution (RCE) attacks. Injection happens when an application cannot properly distinguish between untrusted user data and code. Security misconfigurations can compromise the security of Node applications.

Node.js Vulnerability Cheatsheet

The Hacker News

Google on Monday rolled out fixes for eight security issues in the Chrome web browser. A high-severity vulnerability that's being actively exploited in real-world attacks is the first zero-day patched by the internet giant in 2022. Google Chrome users are highly recommended to update to the latest version 98.0.4758.102 for Windows, Mac, and Linux.

New Chrome 0-Day Bug Under Active Attack – Update Your Browser ASAP!

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday published a repository of free tools and services. The "Free Cybersecurity Services and Tools" resource hub comprises a mix of services provided by CISA, open-source utilities, and other implements offered by private and public sector organizations across the cybersecurity community.

U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services

Stay informed about cybersecurity threats, trends, and best practices with resources covering cyber attacks, defense strategies, and risk management. This category offers articles, reports, and analysis from cybersecurity experts and organizations. Whether you're an IT professional, security analyst, or concerned citizen,  protect yourself and your organization from cyber threats.

Best of Cybersecurity — February 2022