Biztonsági szemle

Hackread reports that Facebook was claimed by threat actor "ByteBreaker" to have had 1.2 billion account details scraped following the exploitation of its API, with the actor sharing a sample data exposing 100,000 users' full names, usernames...

World-renowned Japanese entertainment company Toho was purportedly breached by the BlackLock ransomware gang, according to Cybernews.

Major U.S. student housing developer Landmark Properties had 1.2 TB of data claimed to have been stolen from its systems by the Morpheus ransomware operation, Cybernews reports.

DeepSeek's risks must be carefully considered, and ultimately mitigated, in order to enjoy the many benefits of generative AI in a manner that is safe and secure for all organizations and users.

Organizations across Russia have been subjected to four times more phishing intrusions with the PureRAT information-stealing malware during the first four months of 2025, compared with the same period last year, reports The Hacker News.

Security Affairs reports that leading U.S. cryptocurrency exchange Coinbase had data from 69,461 individuals confirmed to be compromised following a cyberattack, which was previously disclosed to have involved bribes to its overseas customer service...

Despite adding alignment training, guardrails, and filters, large language models continue to give up secrets, make unfiltered statements, and provide dangerous information.

Get ready to explore the future of innovation and collaboration at Cisco Live 2025! From June 8-12 in San Diego—or virtually from anywhere—this premier event brings together thought leaders and for… Read more on Cisco Blogs

More than 100 Chrome browser extensions masquerading as legitimate tools, including YouTube, Fortinet VPN, Calendly, and DeepSeek AI, have been utilized to enable browser data compromise and remote script execution as part of a new attack campaign...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION: Low attack complexity Vendor: Lantronix Equipment: Device Installer Vulnerability: Improper Restriction of XML External Entity Reference 2. RISK EVALUATION Successful exploitation of this...

CISA released two Industrial Control Systems (ICS) advisories on May 22, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-142-01 Lantronix Device Installer ICSA-25...

CISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-4632 Samsung MagicINFO 9 Server Path Traversal Vulnerability These types of vulnerabilities are frequent attack...