Update Jenkins - there is a flaw in the HTTP renderer.
https://www.jenkins.io/security/advisory/2020-08-17/
https://thehackernews.com/2020/08/jenkins-server-vulnerability.html
Pretty cool article about attacking the MS Exchange web interface
https://swarm.ptsecurity.com/attacking-ms-exchange-web-interfaces/
Don't usually talk locksport here but it's a slow news week and this is pretty cool - creating a key based on the sound of the original entering the lock.
https://cacm.acm.org/news/246744-picking-locks-with-audio-technology/fulltext
That's the news!