Computing

Vault Fault bugs in CyberArk and HashiCorp could let hackers take over secret stores without credentials

A cybersecurity firm has revealed a set of over a dozen vulnerabilities, dubbed "Vault Fault," in enterprise secure vaults from CyberArk and HashiCorp. These flaws could allow remote attackers to take ...
Computer Weekly

Black Hat USA: Startup breaks secrets management tools

A total of 14 common vulnerabilities and exposures (CVEs) spanning CyberArk’s Conjur and HashiCorp’s Vault enterprise secrets management platforms have been addressed and disclosed this week, after ...