SecurityWeek

SAP Patches Critical NetWeaver Vulnerabilities

SAP announced 21 new and four updated security notes, including four notes that address critical-severity vulnerabilities in ...

Hunan Majie Linghang Education Technology Co., Ltd.: Python Connects Everything, the Future is Here

Python's multi-language integration capability is not only evident in its collaboration with C/C++ and Java but also ...
ZDNet

Will standards ease Web services security?

The latest version of the Web Services Security (WS-Security) specification is being submitted to international standards body Organization for the Advancement of Structured Information Standards ...

SAP fixes maximum severity NetWeaver command execution flaw

SAP has addressed 21 new vulnerabilities affecting its products, including three critical severity issues impacting the ...
Bleeping Computer

Apache fixes remote code execution bypass in Tomcat web server

Apache has released a security update to address an important vulnerability in Tomcat web server that could lead to an attacker achieving remote code execution. Apache Tomcat is an open-source web ...
ZDNet

NetContinuum rolls Web app, Web services security

NetContinuum on Monday released the Web Services edition (WSE) of its NC-1000 Application Security Gateway, which combines Web services and Web application security into a single gateway appliance.
Krebs on Security

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The ...
CSOonline

Why REST Security Doesn’t Exist (and what to do about it)

Clearly, REST (Representational State Transfer) is winning the web service protocol debate. What was once a grass-roots movement has proliferated inside the enterprise and out. As of January 2010, ...