Security Bulletin
16 Apr 2024
Biztonsági szemle
Over 100 Juniper Networks flaws addressed
SecurityWeek reports that more than 100 security vulnerabilities affecting several Juniper Networks products have been patched as part of dozens of advisories issued by the firm last week.
16 Apr 2024
Biztonsági szemle
Attempted XZ Utils backdoor-like hijacking thwarted
Attempted hijacking attacks similar to the recent compromise of the XZ Utils data compression project have been averted by OpenJS Foundation researchers, according to The Record, a news site by cybersecurity firm Recorded Future.
16 Apr 2024
Biztonsági szemle
Russian infrastructure disrupted by Ukrainian hackers
Operations of Russia's industrial sensor and monitoring infrastructure were claimed to have been disrupted by Ukrainian hacking operation Blackjack following a Fuxnet malware attack against Moscow-based underground infrastructure firm Moscollector...
16 Apr 2024
Biztonsági szemle
Attack against Space-Eyes claimed by IntelBroker
Hackread reports that Miami-based geospatial intelligence company Space-Eyes was claimed to have been compromised by IntelBroker, which purportedly resulted in the exfiltration of the firm's sensitive data, including confidential U.S. national...
16 Apr 2024
Biztonsági szemle
New Muddled Libra attacks set sights on cloud
Attacks by the Muddled Libra threat operation — also known as UNC3944, Scattered Spider, Scatter Swine, and Starfraud — have been redirected at cloud service providers and software-as-a-service apps as part of efforts to bolster its data extortion...
16 Apr 2024
Biztonsági szemle
Steganography leveraged in new global TA558 attack campaign
More than 320 organizations in various sectors around the world, most of which are in Latin America, have been subjected to the new SteganoAmor attack campaign by the TA558 hacking operation that involved the use of steganography to enable the...
16 Apr 2024
Biztonsági szemle
The Sisense Breach: A wake-up call to move beyond SBOMs
Five ways companies can move from SBOMs to SaaSBOMs to more effectively secure SaaS applications.
15 Apr 2024
Biztonsági szemle
Microsoft’s ‘AI Watchdog’ defends against new LLM jailbreak method
The “Crescendo” attack uses a chain of seemingly benign prompts to achieve an adverse output.
15 Apr 2024
Biztonsági szemle
Delinea patches API vulnerability in Secret Server Cloud
If left unpatched, the API flaw could let attackers bypass authentication, gain admin access, and steal company secrets.
15 Apr 2024
Biztonsági szemle
From Idea to Success: How to Operationalize a Startup from Zero to Exit - Seth Spergel - BSW #346
15 Apr 2024
Biztonsági szemle
Roku activates 2FA for 80M users after breach of 576K accounts
The streaming service enables 2FA on all accounts following its second credential-stuffing attack this year.
15 Apr 2024
Biztonsági szemle
Key cybersecurity concerns among CISOs examined
Mounting zero-day vulnerabilities, more sophisticated living-off-the-land attack techniques, and escalating extortion levels were noted by Mandiant executives to be among the most pressing cybersecurity concerns faced by chief information security...