Biztonsági szemle

While there are smart people and good leaders in other fields, we need to cultivate and grow leaders from the existing cybersecurity workforce, too.

Palo Alto research found many open-source projects can be compromised through public artifacts.

Australia's Evolution Mining said its IT systems were infected with ransomware in an Aug. 8 cyber incident.

Microsoft Azure chatbots charged with handling personal medical data could be tricked into handing over personal data for hundreds of customers.

Attackers are already actively exploiting six of the bugs and four others are public, including one for which Microsoft has no patch yet.

In addition to Microsoft patches, Adobe also addressed 71 CVEs across its products.

The new standards are designed for two tasks: general encryption and digital signatures.

Cash may be king, but law enforcement keeps track of who spends it, especially when it's in the six-figure range.

This month we got patches for 92 vulnerabilities. Of these, 9 are critical, and 9 are zero-days (3 previously disclosed, and 6 are already being exploited). The CVEs CVE-2024-38189, CVE-2024-38178, CVE-2024-38193, CVE-2024-38106, CVE-2024-38213...

The CVSS 9.8 authentication bypass in Ivanti's traffic manager admin panel already has a proof-of-concept (PoC) exploit lurking in the wild.

Privilege escalation flaws in the healthcare chatbot platform could have allowed unauthorized cross-tenant access and management of other customers’ resources.