Biztonsági szemle

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-25280 D-Link DIR-820 Router OS Command Injection Vulnerability CVE-2020-15415 DrayTek Multiple Vigor Routers OS...

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its Vulnerability Disclosure Policy (VDP) Platform 2023 Annual Report, highlighting the service’s remarkable success in 2023, its second full year of operation. Throughout...

Disinformation spread by deepfakes are rampant in this election cycle – and that’s why the industry needs to help foster AI literacy.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Gmail emails, Google Slides and Google Drive files could be used to manipulate the LLM.

Four vulnerabilities in the Common Unix Printing System (CUPS) could allow for RCE.

The vulnerability is the latest discovered in connected vehicles in recent years, and it points out the cyber dangers lurking in automotive APIs.

Companies that commit to risk management have a strong cybersecurity foundation that makes it easier to comply with the SEC's rules. Here is what you need to know about 8K and 10K filings.

Adversaries can exploit CVE-2024-6769 to jump from regular to admin access without triggering UAC, but Microsoft says it's not really a vulnerability.

Financially motivated group uses legit Python key and hash management tool to steal credentials.

Artificial intelligence and automation are fueling the marriage of data governance, ESG framework management and cybersecurity into overdrive.