Critical Fluent Bit flaw impacts all major cloud providers

May 20, 2024 at 05:16PM A critical Fluent Bit vulnerability, tracked as CVE-2024-4323 and dubbed Linguistic Lumberjack, impacts major cloud providers, tech giants, and cybersecurity firms. This memory corruption vulnerability, introduced with version 2.0.7, can be exploited for denial-of-service and remote code execution. Fixes are expected to ship with Fluent Bit 3.0.4, and mitigation steps … Read more

OCP Launches SAFE to Standardize Firmware Audits

October 18, 2023 at 03:56PM The Open Compute Project has introduced the Security Appraisal Framework and Enablement (SAFE) program, aimed at improving data center hardware and firmware security. It provides an open-source audit checklist and criteria for selecting third-party auditors to review device firmware. The program aims to reduce costs and redundancy in device security … Read more