The Hacker News

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

"When a user views an e-mail message containing a malicious ICS entry, its embedded JavaScript executes via an ontoggle event ...
Dark Reading

Gallup Addresses XSS Bugs in Website

Editor's Note: Dark Reading has become aware that a portion of the original Checkmarx research on these vulnerabilities is in dispute, prompting us to retract sections of our reporting below. As ...