Security Bulletin

A 2025. 27. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2025.06.27. és 2025.07.03. között kezelt incidensek statisztikai adatait is tartalmazza.

"Wireless Account Lock" allows customers to prevent the registration of new devices.

An SQL injection exploit exposed the users and owner of CatWatchful stalkerware.

Attackers aren’t breaching firewalls — they’re slipping instructions into prompts. Here’s why OWASP named prompt injection the top GenAI risk, and what it means for security teams.

A successful exploit could let an attacker log-in as the root user.

You can’t patch prompt injection, but you can outsmart it. OWASP’s latest guidance lays out a layered defense strategy for building safer, more resilient GenAI applications.

The UK Government’s newly unveiled NHS 10-Year Plan is a bold and timely vision for the future of healthcare. Centred around three major “shifts”—from sickness to prevention, from hospital-centric to … Read more on Cisco Blogs

Deloitte's new blueprint looks to bridge the gap between the massive push for AI adoption and a lack of preparedness among leaders and employees.

As attacks on software supply chains and third parties increase, more data on critical software and infrastructure services is being advertised and sold on the Dark Web.

The Anti-Phishing Working Group observed how attackers are increasingly abusing QR codes to conduct phishing attacks or to trick users into downloading malware.

Malicious extensions can be engineered to bypass verification checks for popular integrated development environments, according to research from OX Security.