Enterprise document management system (DMS) vendors, ONLYOFFICE, OpenKM, LogicalDOC, and Mayan, are yet to resolve several severe DMS vulnerabilities, according to cybersecurity firm Rapid7. It warned that stored cross-site scripting (XSS) flaws in the systems pose high risks. No patches or updates have been released, and vendors have not responded to Rapid7’s disclosures.

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to