Name That Edge Toon: Greetings and Salutations
Who are you? Who is the person behind the machine? Security involves asking people who they are all the time. Send us a cybersecurity-related caption to describe the above scene. Our favorite entry will win its wordsmith a $25 gift card.
Here are four convenient ways to submit your ideas before the Jan. 28, 2025 deadline:
Email [email protected] with the subject line "Edge January Toon."
Via social media: X, Facebook, and LinkedIn. (New! Bluesky, too!) (If you win, we'll respond to you on the same platform, requesting your email address.)
Last Month's Winner
Shout out — and a $25 Amazon gift card — to Marcello Delcaro, winner of the July contest "Cyber Cloudburst," for sending us the winning caption for December's "Shackled!" cartoon. Some noteworthy contenders included "Corporate says we're free to innovate — just not free to leave," "Now I know why they are called control systems," and "Phase 3 of the Cyber Kill Chain-Exploitation." A big thank you to all who participated.
Malicious Browser Extensions are the Next Frontier for Identity Attacks
Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
CVE-2025-22224 VMware ESXi and Workstation TOCTOU Race Condition Vulnerability
CVE-2020-29574 CyberoamOS (CROS) SQL Injection Vulnerability
CVE-2025-2783 Google Chromium Mojo Sandbox Escape Vulnerability
CVE-2022-43939 Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability
CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability
CVE-2022-43769 Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability
CVE-2024-40890 Zyxel DSL CPE OS Command Injection Vulnerability
CVE-2025-24983 Microsoft Windows Win32k Use-After-Free Vulnerability
CVE-2017-0148 Microsoft SMBv1 Server Remote Code Execution Vulnerability
CVE-2024-20953 Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability
InformationalSec-Fetch-User Header Has an Invalid Value
InformationalStrict-Transport-Security Header on Plain HTTP Response
MediumJWT Scan Rule
InformationalGET for POST
CWE-13 ASP.NET Misconfiguration: Password in Configuration File
CWE-45 Path Equivalence: 'file...name' (Multiple Internal Dot)
CWE-211 Externally-Generated Error Message Containing Sensitive Information
CWE-1044 Architecture with Number of Horizontal Layers Outside of Expected Range
CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer
Free online web security scanner
