Biztonsági szemle

Operators of the spyware have immediately rebounded with new infrastructure, with more than 80 delivery servers observed in the Philippines, Botswana, and at least nine other countries by the middle of January.

NSO Group has been ordered by a California federal judge to provide WhatsApp with the code of its Pegasus spyware.

Immediate patching of the high-severity Microsoft Streaming Service flaw, tracked as CVE-2023-29360, has been urged .

Vulnerable remote desktop protocol ports targeted via phishing campaigns have been leveraged by threat actors to facilitate initial network access and the deployment of remote access tools.

U.S. defense industry were noted by the National Security Agency to have been targeted by intrusions leveraging vulnerabilities impacting Ivanti Connect Secure VPN appliances.

An ALPHV/BlackCat ransomware attack against major U.S. healthcare revenue and payment cycle management provider Change Healthcare has been dubbed the "most serious" cyber incident against any U.S. health organization.

The EO focuses too much on safeguarding data from foreign threats – and not enough on the data privacy of individual Americans on the day-in, day-out data we use here domestically.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

[This is a Guest Diary by Christopher Von Reybyton, an ISC intern as part of the SANS.edu BACS program]

Improve store monitoring with the newest Meraki smart cameras and features.

A supply chain attack was stopped before LockBit ransomware was launched, researchers say.

An eye-opening 92% of applications developed in-house were breached in the last year, survey respondents revealed in a report released Thursday.