Security Bulletin

29 Jul 2024
Biztonsági szemle
Joint France, Europol operation seeks to purge PlugX malware infections
France and Europol's joint operation to dismantle the PlugX worm botnet, which has impacted millions of devices worldwide, involved the usage of a disinfection solution from Sekoia.io.

29 Jul 2024
Biztonsági szemle
Nearly 14K hit by BMW Hong Kong breach
Included in the impacted data were names, mobile numbers, and SMS opt-out preferences, said BMW Concessionaires in a statement to Hong Kong's Office of the Privacy Commissioner for Personal Data.

29 Jul 2024
Biztonsági szemle
Suspected ALPHV/BlackCat successor sets sights on South Carolina town police
While Summerville noted that operations of its municipal departments have not been impacted by the incident, which was immediately contained, the Embargo group admitted to having stolen 1.71 TB of data from the town's Police Department.

29 Jul 2024
Biztonsági szemle
Google Cloud credentials in macOS targeted by malicious PyPI package
Such a package, which has been taken down after accumulating 59 downloads, initially verifies targeted systems to be macOS before checking the machines' Universally Unique Identifier and infiltrating files that have Google Cloud authentication...

29 Jul 2024
Biztonsági szemle
Third-party breach impacts Gemini
Infiltration of the third-party provider's systems between June 3 and 7 allowed threat actors to exfiltrate the customers' certain banking details, including full names, bank account numbers, and routing numbers leveraged for ACH fund transfers.

29 Jul 2024
Biztonsági szemle
CrowdStrike outage exploited in new spear-phishing campaign
The campaign lured targets into downloading a fraudulent CrowdStrike Crash Reporter tool as a ZIP file with a trojanized InnoSetup installer.

29 Jul 2024
Biztonsági szemle
Three ways to mitigate AI-based supply chain attacks
Security teams have to face that the attackers also have AI – here are three ways to more effectively operate in this new environment.

29 Jul 2024
Biztonsági szemle
China-Backed Phishing Attack Targets India Postal System Users
A large text-message phishing attack campaign attributed to the China-based Smishing Triad employs malicious iMessages.

26 Jul 2024
Biztonsági szemle
PKFail bug puts firmware security at risk
Researchers say that a years-old security leak is putting a number of production model PCs at risk of persistent remote takeover.

26 Jul 2024
Biztonsági szemle
Millions of Devices Vulnerable to 'PKFail' Secure Boot Bypass Issue
Several vendors for consumer and enterprise PCs share a compromised crypto key that should never have been on the devices in the first place.

26 Jul 2024
Biztonsági szemle
CrowdStrike Outage Losses Estimated at a Staggering $5.4B
Researchers track the healthcare sector as experiencing the biggest financial losses, with banking and transportation following close behind.

26 Jul 2024
Biztonsági szemle
Targeted PyPi Package Steals Google Cloud Credentials from macOS Devs
The campaign is laser-targeted, bucking the trend of "spray-and-pray" malicious open source packages turning up in code repositories seemingly every other day.
Pagination
- Previous page ‹‹
- Page 451
- Next page ››