Security Bulletin
24 Dec 2024
Biztonsági szemle
Trump 2.0 Portends Big Shift in Cybersecurity Policies
Changes at CISA and promises of more public-private partnerships and deregulation are just a few ways the incoming administration could upend the feds' role in cybersecurity.
24 Dec 2024
Biztonsági szemle
DNSSEC Denial-of-Service Attacks Show Technology's Fragility
The security extensions for the Domain Name System aimed to make the Internet more reliable, but instead the technology has exchanged one set of problems for another.
24 Dec 2024
Biztonsági szemle
Why the industry can’t afford complacency in 2025
Here’s five cyber events that shaped 2024 – and implications for the year ahead.
24 Dec 2024
Biztonsági szemle
More SSH Fun!, (Tue, Dec 24th)
A few days ago, I wrote a diary[ 1] about a link file that abused the ssh.exe tool present in modern versions of Microsoft Windows. At the end, I mentioned that I will hunt for more SSH-related files/scripts. Guess what? I already found another one....
23 Dec 2024
Biztonsági szemle
Say Easy, Do Hard, Minimum Viable Security - Part 1 - Jon Fredrickson - BSW Vault
23 Dec 2024
Biztonsági szemle
5.6 million patients affected by Ascension Health cyberattack
Attack by Black Basta sent the Ascension system reeling for several days, forcing medical staffs to reading paper charts.
23 Dec 2024
Biztonsági szemle
LinkedIn data scraping nets almost $250K fine for Kaspr
Cybernews reports that Paris-based software firm Kaspr — which provides a paid Chrome browser extension allowing the gathering of LinkedIn users' professional contact information — has been ordered by France's National Commission on Informatics and...
23 Dec 2024
Biztonsági szemle
US jails NetWalker ransomware affiliate
Alleged NetWalker ransomware affiliate Daniel Christian Hulea has been subjected to a two-decade prison sentence for leveraging the ransomware to extort $21.5 million worth of Bitcoin alongside a co-conspirator, SecurityWeek reports
23 Dec 2024
Biztonsági szemle
Non-Human Identities Gain Momentum, Requires Both Management, Security
The number of Non-Human Identities (NHIs) in many organizations has exploded. Key trends, drivers, and market landscape in this fast-developing area are explored.
23 Dec 2024
Biztonsági szemle
Hotfixes for Sophos firewall vulnerabilities released
Hotfixes have been revealed for three vulnerabilities affecting Sophos Firewall versions 21.0 GA and older, two of which were of critical severity, reports The Hacker News.
23 Dec 2024
Biztonsági szemle
Critical Rockwell PowerMonitor flaws addressed
SecurityWeek reports that Rockwell Automation has issued fixes for a trio of critical flaws impacting Allen-Bradley PowerMonitor 1000 instances, which could be leveraged to infiltrate and disrupt industrial systems.
23 Dec 2024
Biztonsági szemle
Ascension Health attack hits nearly 5.6M
Major U.S. healthcare system Ascension Health had data from more than 5.599 million patients and employees compromised in a cyberattack earlier this year, which was attributed to the Black Basta ransomware-as-a-service operation, Cybernews reports