Biztonsági szemle

Google has agreed to pay $350 million to resolve a shareholders lawsuit from 2018 concerning a vulnerability in its discontinued Google Plus platform, which resulted in third-party exposure of data belonging to millions of users, reports The Record...

Cyberattacks on critical infrastructure targeting IoT and OS networks are increasing in sophistication, while ICS vulnerabilities surge, new data shows.

Conti-linked Akira and Phobos-related 8Base were the most prolific ransomware groups among the 25 new operations that emerged last year, according to The Register.

Today, Cisco announced that it joined more than 200 of the nation’s leading artificial intelligence (AI) stakeholders to participate in a U.S. Department of Commerce initiative to support the development and deployment of trustworthy and safe AI...

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low attack complexity Vendor: Qolsys, Inc. Equipment: IQ Panel 4, IQ4 Hub Vulnerability: Exposure of Sensitive Information to an Unauthorized Actor 2. RISK EVALUATION Successful exploitation of...

CISA released two Industrial Control Systems (ICS) advisories on February 8, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-039-01 Qolsys IQ Panel 4, IQ4 HUB...

Cisco released a security advisory to address vulnerabilities affecting Cisco Expressway Series. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review...

Today, CISA partnered with the Open Source Security Foundation (OpenSSF) Securing Software Repositories Working Group to publish the Principles for Package Repository Security framework. Recognizing the critical role package repositories play in...

External cybersecurity solutions provider ZeroFox has agreed to a nearly $350 million all-cash acquisition deal from tech-oriented private equity firm Haveli Investments, which is poised to be finalized by the first six months of the year...

Hybrid cloud connectivity and network object sharing from Cisco provides teams with a more simplified, unified security experience across their hybrid cloud.

I don't know if there is a trend but I recently found some malicious Python scripts (targeting Windows hosts) that include a GUI. They don't try to hide from the victim but, on the opposite, they try to make them confident. One...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.