Security Bulletin
![](/sites/default/files/styles/narrow_1x/public/feeds/88/NNT-Data_post_2.png.webp?itok=dr7RXDNl)
24 Apr 2024
Biztonsági szemle
Celebrating a New Era in Partnering: NTT DATA and Cisco
This month the NTT Group combined the services of NTT Ltd. and NTT DATA to form NTT DATA, Inc., marking a significant milestone in the technology services industry and offering a deeper partnership between Cisco and NTT.
![](/sites/default/files/styles/narrow_1x/public/feeds/e9/mask-Joe_Quinn-Alamy.jpg.webp?itok=krT_KNh0)
24 Apr 2024
Biztonsági szemle
Iran Dupes US Military Contractors, Gov't Agencies in Years-Long Cyber Campaign
A state-sponsored hacking team employed a clever masquerade and elaborate back-end infrastructure as part of a five-year info-stealing campaign that compromised the US State and Treasury Departments, and hundreds of thousands of accounts overall.
![Computer keyboard, close-up button of the flag of North Korea.](/sites/default/files/styles/narrow_1x/public/feeds/6b/1127_north_korea-e1704488987937.jpg.webp?itok=fXobV-Uh)
24 Apr 2024
Biztonsági szemle
Antivirus updates exploited for GuptiMiner malware deployment
Intrusions hijacking the eScan antivirus software's updating mechanism have been conducted by threat actors suspected to be linked to North Korean advanced persistent threat operation Kimsuky to facilitate the delivery of the sophisticated GuptiMiner...
![North Korea flag is depicted on the screen with the program code. The concept of modern technology and site development](/sites/default/files/styles/narrow_1x/public/feeds/e5/0607_north_korea.jpg.webp?itok=CL5HqHIn)
24 Apr 2024
Biztonsági szemle
South Korean defense firms subjected to North Korean APT attacks
North Korean state-sponsored advanced persistent threat operations Lazarus Group, Kimsuky, and Andariel were noted by South Korea's National Police Agency to have targeted several South Korean defense industry entities since late 2022 in a bid to...
![](/sites/default/files/styles/narrow_1x/public/feeds/76/OT_Nicholas_Klein_Alamy.jpg.webp?itok=2OqB4ujJ)
24 Apr 2024
Biztonsági szemle
2023: A 'Good' Year for OT Cyberattacks
Attacks increased by "only" 19% last year. But that number is expected to grow significently.
![](/sites/default/files/styles/narrow_1x/public/feeds/22/patch_Andre_Boukreev_shutterstock.jpg.webp?itok=azVYfIQu)
24 Apr 2024
Biztonsági szemle
Patch Now: CrushFTP Zero-Day Cloud Exploit Targets US Orgs
An exploit for the vulnerability allows unauthenticated attackers to escape a virtual file system sandbox to download system files and potentially achieve RCE.
![](/sites/default/files/styles/narrow_1x/public/feeds/2f/bigdata_NicoElNino_shutterstock.jpg.webp?itok=L5cOBpR9)
24 Apr 2024
Biztonsági szemle
Fortify AI Training Datasets From Malicious Poisoning
Just like you should check the quality of the ingredients before you make a meal, it's critical to ensure the integrity of AI training data.
24 Apr 2024
Biztonsági szemle
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-20353 Cisco ASA and FTD Denial of Service Vulnerability CVE-2024-20359 Cisco ASA and FTD Privilege Escalation...
24 Apr 2024
Biztonsági szemle
Cisco Releases Security Updates Addressing ArcaneDoor, Vulnerabilities in Cisco Firewall Platforms
Today, Cisco released security updates to address ArcaneDoor—exploitation of Cisco Adaptive Security Appliances (ASA) devices and Cisco Firepower Threat Defense (FTD) software. A cyber threat actor could exploit vulnerabilities ( CVE-2024-20353, CVE...
![Three imminent risks of AI – and what the industry should do about them](/sites/default/files/styles/narrow_1x/public/feeds/78/security-lock-AI.jpg.webp?itok=dl-9oSDO)
24 Apr 2024
Biztonsági szemle
Three imminent risks of AI – and what the industry should do about them
AI presents great risks, but also promises many benefits – here’s how we can walk that tightrope safely.
![](/sites/default/files/styles/narrow_1x/public/feeds/bf/large.png.webp?itok=kmaKhout)
24 Apr 2024
Biztonsági szemle
ISC Stormcast For Wednesday, April 24th, 2024 https://isc.sans.edu/podcastdetail/8952, (Wed, Apr 24th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
![](/sites/default/files/styles/narrow_1x/public/feeds/bf/large.png.webp?itok=kmaKhout)
24 Apr 2024
Biztonsági szemle
API Rug Pull - The NIST NVD Database and API (Part 4 of 3), (Wed, Apr 24th)
A while back I got an email from Perry, one of our readers who was having a problem using my cvescan script, which I covered in a 3 part story back in 2021:
Pagination
- Previous page ‹‹
- Page 203
- Next page ››