CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS).
heise online

Checkmk: Highly risky cross-site scripting flaw in network monitoring software

However, deviating from Checkmk's classification, the CERT-Bund of the Federal Office for Information Security (BSI) considers the risk to be “critical.” The IT security experts arrive at their ...
Opinion

UK government's Vulnerability Monitoring System is working - fixes flow far faster

PLUS: Firefox adds XSS protection; Leadership turnover at CISA; FTC exempts some data collection Infosec In Brief DNS vulnerabilities are being addressed 84 percent faster in the UK public sector ...

Fortinet closes brute-force and command injection flaws in FortiWeb & Co.

Fortinet closes flaws in FortiWeb and FortiManager, allowing command injection, among other things. FortiGate firewalls were ...
National Geographic news

The origins of Easter—and how the holiday's traditions have evolved

Chocolate bunnies. Bouquets of lilies and daffodils. Hunting for dyed eggs. For many, Easter functions as the unofficial kickoff of spring—but for Christians around the world, the holiday is the most ...
People

Carolyn Bessette-Kennedy Was ‘Irked’ JFK Jr. Never Introduced Her to Mom Jackie; New ...

The story is recounted in a new biography of Bessette-Kennedy, ‘Once Upon a Time,’ out May 21 JOY E. SCHELLER/CAROLYN BESSETTE JOHN F KENNEDY JR ARCHIVE IMAGES; Bettmann Archive A new biography of ...