Biztonsági szemle

Vulnerable remote desktop protocol ports targeted via phishing campaigns have been leveraged by threat actors to facilitate initial network access and the deployment of remote access tools.

U.S. defense industry were noted by the National Security Agency to have been targeted by intrusions leveraging vulnerabilities impacting Ivanti Connect Secure VPN appliances.

An ALPHV/BlackCat ransomware attack against major U.S. healthcare revenue and payment cycle management provider Change Healthcare has been dubbed the "most serious" cyber incident against any U.S. health organization.

The EO focuses too much on safeguarding data from foreign threats – and not enough on the data privacy of individual Americans on the day-in, day-out data we use here domestically.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

[This is a Guest Diary by Christopher Von Reybyton, an ISC intern as part of the SANS.edu BACS program]

Improve store monitoring with the newest Meraki smart cameras and features.

A supply chain attack was stopped before LockBit ransomware was launched, researchers say.

An eye-opening 92% of applications developed in-house were breached in the last year, survey respondents revealed in a report released Thursday.

Dark Reading's roundup of strategic cyber-operations insights for chief information security officers and security leaders. Also this week: SEC enforcement actions, biometrics regulation, and painful encryption changes in the pike.

Lack of AI model visibility and security puts the software supply chain security problem on steroids.

Stolen data from Chunghwa Telecom — including government-related details — are up for sale on the Dark Web, the Taiwanese defense ministry confirms.