Biztonsági szemle

CISA released three Industrial Control Systems (ICS) advisories on June 3, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-153-01 Schneider Electric Wiser Home...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 4.6 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: EcoStruxure Power Build Rapsody Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this...

CISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-21479 Qualcomm Multiple Chipsets Incorrect Authorization Vulnerability CVE-2025-21480 Qualcomm Multiple...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Confusing threat actor attribution may lead to delayed response, tech firms say.

Misconfigurations expose DevOps tools to malicious deployment of XMRig.

Edge computing and stricter regulations could usher in a new era of AI privacy.

The Emergency Management and Response - Information Sharing and Analysis Center provided essential information to the emergency services sector on physical and cyber threats and its closure leaves an information vacuum for these organizations.

New details on the Cisco IOS XE vulnerability could help attackers develop a working exploit soon, researchers say.

Flaw in Cisco IOS XE exposes credentials in plain text.

An anonymous whistleblower has leaked large amounts of data tied to the alleged operator behind Trickbot and Conti ransomware.

In October 2024, Splunk was pleased to provide strategic grants to three nonprofits that are working to advance solutions for a sustainable planet: OpenAQ, Radiant Earth, and WattTime. While each has a distinctive history and approach, they share a...