Enterprise document management system (DMS) vendors, ONLYOFFICE, OpenKM, LogicalDOC, and Mayan, are yet to resolve several severe DMS vulnerabilities, according to cybersecurity firm Rapid7. It warned that stored cross-site scripting (XSS) flaws in the systems pose high risks. No patches or updates have been released, and vendors have not responded to Rapid7’s disclosures.

NSA warns that overlooked botnet technique threatens national security
The National Security Agency (NSA) has warned that fast flux, a technique used by cybercriminals and hostile nations to hide their activities, is a significant