Skip to content

Nilesh Surana

Exposing security flaw in Jenkins application

Exposing a Critical Security flaw in Jenkins Application

In the ever-evolving world of cybersecurity, vigilance and continuous improvement are paramount. Recently, I stumbled upon a significant security flaw in a Jenkins application. This vulnerability arose from leaked credentials, allowed unauthorized access to a trove of sensitive information, and could allow potential multiple account takeovers. This blog aims to… Read More »Exposing a Critical Security flaw in Jenkins Application

Unveiling Vulnerabilities: Navigating the Critical CVE Landscape of 2024

In the ever-evolving digital connectivity and technology landscape, organizations face a constant challenge to fortify their cyber defenses against an ever-expanding array of threats. The rapid advancement of information technology has brought about unparalleled convenience and efficiency. Still, it has also ushered in an era where the vulnerability of digital… Read More »Unveiling Vulnerabilities: Navigating the Critical CVE Landscape of 2024

Critical CVEs: FortiOS, Microsoft Exchange, vSphere, SolarWinds and More

Critical CVEs: FortiOS, Microsoft Exchange, vSphere, SolarWinds and More

From February 12th to 16th, the FireCompass research team identified a huge number of CVEs that are high in severity and ransomware, botnets, and threat actors creating havoc. Some of the CVEs identified are of popular commercial products used by various industries and some new & well-known malware targeting industries… Read More »Critical CVEs: FortiOS, Microsoft Exchange, vSphere, SolarWinds and More