Security Bulletin

Attacks by Chinese hackers have been targeted at Canada's critical infrastructure, with intrusions against U.S. critical infrastructure remaining a significant concern due to "cross-border interoperability and interdependence."

Application security teams from Fortune 500 companies are already using Noma's life cycle platform, which offers organizations data and AI supply chain security, AI security posture management, and AI threat detection and response.

After exploiting the Safari remote code execution flaw, tracked as CVE-2020-9802, for initial access, the updated LightSpy payload triggers an exploit chain with jailbreak and loader stages prior to malware core delivery on devices running on iOS...

Knee-jerk reactions to major vendor outages could do more harm than good.

Attackers leveraged pernicious ads to lure targets into downloading ZIP packages with the malicious Electron app in the guise of legitimate software, which downloads the SYS01 infostealer that primarily compromises Facebook credentials while...

A 2024. 44. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2024.10.25. és 2024.10.31. között kezelt incidensek statisztikai adatait is tartalmazza.

In today’s digital age, access to reliable broadband is no longer a luxury but a necessity for economic opportunity, educational advancement, and overall quality of life. However, millions of A… Read more on Cisco Blogs

On the heels of a Chinese APT eavesdropping on phone calls made by Trump and Harris campaign staffers, Beijing says foreign nations have mounted an extensive seafaring espionage effort.

In the Cisco Foundation’s FY24 Impact Report, we dive deeper into our investment model, our partnership approach, how we define and measure impact, and highlights of the results we achieved over the past year.

CISA has received multiple reports of a large-scale spear-phishing campaign targeting organizations in several sectors, including government and information technology (IT). The foreign threat actor, often posing as a trusted entity, is sending spear...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: FactoryTalk ThinManager Vulnerabilities: Missing Authentication For Critical Function, Out-of-Bounds Read 2. RISK...

CISA released four Industrial Control Systems (ICS) advisories on October 31, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-305-01 Rockwell Automation...