Ars Technica

Deserialize single/multiple JSON objects into C# - Issues with single objects

So I'm whipping up something quick and dirty for a work project. I've got a C# class that is all string types, nothing fancy, and once the item is created it gets serialized with the new ...
Bleeping Computer

Severe Deserialization Issues Also Affect .NET, Not Just Java

The .NET ecosystem is affected by a similar flaw that has wreaked havoc among Java apps and developers in 2016. The flaw is in how .NET coding libraries handle deserialization operations, leading to ...
CSOonline

APT group hits IIS web servers with deserialization flaws and memory-resident malware

A sophisticated, likely government-sponsored threat actor has been compromising major public and private organizations over the past year by exploiting deserialization flaws in public-facing ASP.NET ...