Security Bulletin
![](/sites/default/files/styles/narrow_1x/public/feeds/f0/Cybersecurity%281800%29_Tero_Vesalainen_Alamy.jpg.webp?itok=owXhl2Yx)
11 Jul 2024
Biztonsági szemle
Centralized Cyber-Incident Reporting Can Improve Effectiveness
Companies need robust cyber-response plans and a straightforward path to transparency.
![](/sites/default/files/styles/narrow_1x/public/feeds/ec/Crystal_rain-Nick_Hanna-Alamy.jpg.webp?itok=MHEkfbdF)
11 Jul 2024
Biztonsági szemle
'Crystalray' Attacks Jump 10X, Using Only OSS to Steal Credentials
Remember when hackers used to write their own malware? Kids these days don't want to work, they just want freely available tools to do it for them.
![SMS 2FA](/sites/default/files/styles/narrow_1x/public/feeds/55/ReedCol-e1691442848226.jpg.webp?itok=nDwNiZKR)
11 Jul 2024
Biztonsági szemle
Mandatory MFA option unveiled by Snowflake
While the new policy could be adopted based on Snowflake customers' preferences, OAuth and other key-pair authentication systems are still recommended for service users.
![Microsoft logo on the website homepage.](/sites/default/files/styles/narrow_1x/public/feeds/b0/061324_microsoft.jpg.webp?itok=jjSGxOuG)
11 Jul 2024
Biztonsági szemle
Microsoft chided for spam-looking APT29 hack notifications
Organizations affected by the breach have been urged by security researcher and former Microsoft employee Kevin Beaumont to be vigilant of the emails, which were not sent in adherence to the Microsoft 365 breach process.
![binary code and magnifying glass](/sites/default/files/styles/narrow_1x/public/feeds/df/032724_software_bug.jpg.webp?itok=H3BolHTb)
11 Jul 2024
Biztonsági szemle
Unauthorized content alteration bug found in NSA platform
Attackers could exploit the flaw, which stemmed from inadequate CSRF protections primarily in SkillTree endpoints for state-changing operations, to spread misinformation and prompt training disruptions.
![](/sites/default/files/styles/narrow_1x/public/feeds/48/GettyImages-1238219471-1.jpg.webp?itok=jIQWo8Tn)
11 Jul 2024
Biztonsági szemle
Severe vulnerabilities addressed by GitLab, others
GitLab has issued a fix for the critical flaw in GitLab Community Edition and Enterprise Edition software, tracked as CVE-2024-6385, which could be leveraged for arbitrary pipeline job execution.
![Cyber law, digital justice scales](/sites/default/files/styles/narrow_1x/public/feeds/93/0526_justice_scales.jpg.webp?itok=JkexVfOE)
11 Jul 2024
Biztonsági szemle
Nearly 39M legal records leaked by misconfigured database
Further investigation of the leaked 38 TB dataset revealed links to another storage repository with 89,475 records belonging to backend technology provider Legal Connect, which shares the same parent firm as Rapid Legal.
![](/sites/default/files/styles/narrow_1x/public/feeds/87/061224_malware.jpg.webp?itok=8wy12WIo)
11 Jul 2024
Biztonsági szemle
ViperSoftX infostealer evolves with improved obfuscation
Fraudulent JPG files have also been leveraged by ViperSoftX to deploy AutoIT scripts and the AutoIT executable, along with PowerShell scripts.
![](/sites/default/files/styles/narrow_1x/public/feeds/5e/credential-microsoft-password.jpg.webp?itok=Oj5EmgJ5)
11 Jul 2024
Biztonsági szemle
Microsoft, Nokia employee data exposed
Data from 2,047 Microsoft employees has been exposed, including full names, job titles, direct and corporate phone numbers, email addresses, LinkedIn profile links, city, state, and country addresses, and company phone numbers.
![Computer keyboard, close-up button of the flag of North Korea.](/sites/default/files/styles/narrow_1x/public/feeds/6b/1127_north_korea-e1704488987937.jpg.webp?itok=fXobV-Uh)
11 Jul 2024
Biztonsági szemle
Kimsuky sets sights on Japanese organizations
Attacks by Kimsuky commenced with the distribution of Japanese security and diplomatic organization-spoofing phishing emails with a malicious ZIP file.
![041723_ransomware3x2](/sites/default/files/styles/narrow_1x/public/feeds/11/041723_ransomware3x2.png.webp?itok=eskalaBg)
11 Jul 2024
Biztonsági szemle
Attacks leveraging Veeam backup software flaw launched by novel ransomware gang
Newly emergent EstateRansomware ransomware group has deployed intrusions leveraging the already addressed high-severity Veeam Backup & Replication software flaw, tracked as CVE-2023-27532.
![Digital privacy rights](/sites/default/files/styles/narrow_1x/public/feeds/6f/071024_surveillance.jpg.webp?itok=IBz8o8-6)
11 Jul 2024
Biztonsági szemle
After some lost battles, privacy laws continue their steady march across the states
While no federal data privacy law is in sight, many more states are passing formal privacy laws, so momentum for digital rights has been growing.
Pagination
- Previous page ‹‹
- Page 25
- Next page ››