Biztonsági szemle

North Korean threat operation Stressed Pungsan, which is associated with state-backed hacking collective Moonstone Sleet, has sought to compromise Windows systems with a pair of malicious npm packages "harthat-api" and "harthat-hash."

Increasingly prevalent cybersecurity threats and varied security goals among organizations have prompted the addition of a new Investigations Management tool in Flashpoint Ignite, which would enable not only data gathering, asset mapping, and threat...

Attackers using an email address similar to one of the organization's suppliers were able to lure the firm to pay $42.3 million to a Timor Leste-based account, which was only realized to be fraudulent after complaints from the real supplier, reported...

Most of the funds passing through the service, amounting to $80 million, were from high-risk exchanges, while $54 million were from addresses linked to cyberattacks and cryptocurrency exfiltration activities.

Aside from executing PowerShell scripts enabling in-memory operation of ShadowPad and Cobalt Strike retrieval, APT41 also leveraged Mimikatz to facilitate password collection and further information-gathering activities before proceeding with the...

Attacks on ESXi servers are coming fast and furious – here’s how to stop them.

You're only as strong as your weakest security link.

Announced at Cisco Live US 2024 and available now, Cisco Identity Services Engine’s newest version: Cisco ISE 3.4, is bound to more bring more security to the network. In Cisco ISE 3.4, there are more than a dozen new features but the most catalyst...

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-36971 Android Kernel Remote Code Execution Vulnerability CVE-2024-32113 Apache OFBiz Path Traversal...

Today, CISA—in partnership with the Federal Bureau of Investigation (FBI)—released an update to joint Cybersecurity Advisory #StopRansomware: Royal Ransomware, #StopRansomware: BlackSuit (Royal) Ransomware. The updated advisory provides network...