TechNewsWorld

PCI’s False Dilemma: Code Review or Application Firewall?

Web application vulnerabilities put critical business applications and back-end databases at risk from attack, theft, and fraud. The Payment Card Industry Data Security Standard (PCI DSS, or PCI), ...
Ars Technica

Sophos Firewall 0day allowing remote code-execution comes under attack

And just last week they were spamming me with a lightweight "whitepaper" about how I totally needed Sophos XG to sniff out next generation malware in all that sinister SSL... More competent work there ...
Bleeping Computer

Critical Sophos Firewall vulnerability allows remote code execution

Sophos has fixed a critical vulnerability in its Sophos Firewall product that allows remote code execution (RCE). Tracked as CVE-2022-1040, the authentication bypass vulnerability exists in the User ...