Two security vulnerabilities have been found in F5 Next Central Manager, which could allow threat actors to take control of devices and set up hidden rogue administrator accounts. The flaws have been addressed in the latest version. Security firm Eclypsium advises users to update their assets as prompt mitigation can prevent any potential damage.
Google calls for halting use of WHOIS for TLS domain verifications
Browser makers and certificate authorities are looking to stop using WHOIS data for domain ownership verification after researchers exposed how fraudsters could manipulate the process