Security Bulletin
25 Jan 2024
Biztonsági szemle
Google Kubernetes Clusters Suffer Widespread Exposure to External Attackers
Misunderstanding the permissions of an authentication group in Google Kubernetes Engine (GKE) opens millions of containers to anyone with a Google account.
25 Jan 2024
Biztonsági szemle
Hackers Blast Violent Gaza Message at a Popular Israeli Movie Theater
A psyop targeting ordinary moviegoers is the latest in a string of similar attacks in the country since Oct. 7.
25 Jan 2024
Biztonsági szemle
APT lurked in HPE’s systems for over 6 months
For the second time in a week, a leading tech firm revealed it was compromised by APT29.
25 Jan 2024
Biztonsági szemle
The CISO Role Undergoes a Major Evolution
Post-SolarWinds, it's no longer enough for chief information security officers to remain compliant and call it a day.
25 Jan 2024
Biztonsági szemle
Why cyber fraud fusion centers can offer security teams the context they need
By combining the strengths of the fraud and security teams, companies can get the visibility – and context – they need to keep their users, customers, and business partners safe.
25 Jan 2024
Biztonsági szemle
What Smart CISOs and Mature Orgs Get That Others Don’t About Cyber Compliance - Matt Coose - PSW #814
25 Jan 2024
Biztonsági szemle
Hook Younger Users With Cybersecurity Education Designed for Them
Security should not be treated as one-size-fits all, and that is doubly true when it comes to security awareness education. Training should be customized by age, learning styles, and preferred media if it is to be effective.
25 Jan 2024
Biztonsági szemle
Ransomware attack hits Veolia North America
Ransomware attack hits Veolia North America Major global water and wastewater system operator Veolia had some of its internal back-end systems at its North America Municipal Water division impacted by a ransomware attack last week, resulting in the...
25 Jan 2024
Biztonsági szemle
Onslaught of attacks aimed at Ivanti zero-days continues
Global attacks targeting Ivanti Connect Secure VPN appliances vulnerable to both CVE-2023-46805 and CVE-2024-21887, have been underway, with 492 of 26,000 internet-exposed devices being compromised with backdoors, reports Ars Technica. The U.S...
25 Jan 2024
Biztonsági szemle
Massive cybercrime affiliate program operated by VexTrio
More than 60 different threat operations, including SocGholish and ClearFake actors, have become affiliates of the massive VexTrio malware brokerage program, making the group the most substantial broker of malicious traffic, The Hacker News reports.
25 Jan 2024
Biztonsági szemle
Evolving BianLian ransomware attack strategies detailed
Intrusions by the BianLian ransomware operation during the past year have been refocused on specific targets and involved new attack techniques, according to SiliconAngle.
25 Jan 2024
Biztonsági szemle
BYOVD attacks deployed by novel Kasseika ransomware
BleepingComputer reports that antivirus systems have been targeted for deactivation by the newly emergent Kasseika ransomware operation in new Bring Your Own Vulnerable Driver attacks exploiting the TG Soft VirtIT Agent System's Martini driver.