Biztonsági szemle

TechCrunch reports that U.S. consumer-grade spyware app pcTattletale claimed to be hacked by a threat actor purporting to have exposed the app's internal data, including information stolen from its victims, to its website.

U.S. prescription management firm Sav-Rx had the data of more than 2.8 million individuals exfiltrated following a cyberattack in October, Security Affairs reports.

Insights from three companies that recently reported breaches under the new disclosure regulations.

Novartis Pharmaceuticals, Bayer, GlaxoSmithKline, and eight other major pharmaceutical firms have disclosed the compromise of their patients' information following a cyberattack against large U.S. pharmaceutical services provider Cencora, formerly...

The Hacker News reports that several fake websites offering antivirus software from Avast, Malwarebytes, and Bitdefender have been leveraged by threat actors to distribute various information-stealing malware strains.

Operators of the BLOODALCHEMY malware leveraged in intrusions against Southern and Southeast Asian government entities derived the payload from the Deed RAT trojan, which descended from the ShadowPad malware, according to The Hacker News.

There's plenty of upside to this emerging technology, especially if organizations smartly plan for GenAI's rollout and long-term management.

Discover how Travis H. creates team culture with his unique background and insights as he finds his new place at Cisco as Americas Security Partner Sales Leader.

The Digital Operational Resilience Act (DORA) represents a shift toward establishing harmonized guidelines that can keep pace with the dynamic nature of cyber threats.

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-5274 Google Chromium V8 Type Confusion Vulnerability These types of vulnerabilities are frequent attack vectors...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION: Exploitable remotely/low attack complexity Vendor: Campbell Scientific Equipment: CSI Web Server Vulnerabilities: Path Traversal, Weak Encoding for Password 2. RISK EVALUATION Successful...