Security Bulletin
7 Jun 2024
Biztonsági szemle
GitHub repositories compromised in ongoing Gitloker intrusions
BleepingComputer reports that dozens of GitHub repositories are having their contents erased in an ongoing attack campaign by the Gitloker threat operation.
7 Jun 2024
Biztonsági szemle
Apache RocketMQ targeted for more extensive Muhstik botnet attacks
Vulnerable Apache RocketMQ instances impacted by the critical remote code execution bug, tracked as CVE-2023-33246, are being targeted by the Muhstik botnet to facilitate more expansive distributed denial-of-service and cryptocurrency mining...
7 Jun 2024
Biztonsági szemle
Old ThinkPHP flaws leveraged by Chinese hackers
Ongoing intrusions exploiting a pair of old remote code execution flaws in the widely used open-source web app framework ThinkPHP, tracked as CVE-2018-20062 and CVE-2019-9082, have been conducted by Chinese hackers since April, following a similar...
7 Jun 2024
Biztonsági szemle
US education entities subjected to novel Fog ransomware attacks
Attacks leveraging breached VPN credentials have been deployed by the new Fog ransomware operation against organizations in the U.S. education sector since early last month, BleepingComputer reports.
7 Jun 2024
Biztonsági szemle
Developing a Plan to Respond to Critical CVEs in Open Source Software
Establishing a clear process for developers to respond to critical CVEs is essential for having a rapid and coordinated response.
7 Jun 2024
Biztonsági szemle
Four ways to mitigate insider threats
Each insider threat incident averages a $15 million loss, so teams really need to rethink their plans to mitigate these threats.
7 Jun 2024
Biztonsági szemle
7K LockBit decryptors offered as FBI seeks trust, cooperation from victims
The FBI’s assistant cyber director outlined its efforts to disrupt threat actors as its victim support strategies evolve.
6 Jun 2024
Biztonsági szemle
Google shuts down government disinformation campaigns on its platforms
Researchers with Google say they uncovered and shut down a number of government disinformation campaigns.
6 Jun 2024
Biztonsági szemle
Securing Health, Creating Phishing-Resistant Users & Rising Ransomware Stakes - Jim Broome, John Shier, Christopher Harrell - ESW #364
6 Jun 2024
Biztonsági szemle
Attacks Surge on Check Point's Recent VPN Zero-Day Flaw
One monitoring firm has detected exploitation attempts targeting CVE-2024-24919 from more than 780 unique IP addresses in the past week.
6 Jun 2024
Biztonsági szemle
'Commando Cat' Digs Its Claws into Exposed Docker Containers
Attackers are taking advantage of misconfigured containers to deploy cryptocurrency mining software.
6 Jun 2024
Biztonsági szemle
The State of AppSec in 2024: Expanded use, expanded attack surface
Application security in 2024 is challenged by the familiar, but security pros have new weapons to help even the score.
Pagination
- Previous page ‹‹
- Page 75
- Next page ››