Security Bulletin

Institutionalizing and sustaining fundamental cybersecurity practices requires a commitment to ongoing vigilance, active management, and a comprehensive understanding of evolving threats.

Paul Davis, Field CISO at Jfrog, delves into the critical challenges facing today’s information security leaders, particularly in securing development workflows.

Conducting a federal probe on TP-Link was noted by the lawmakers to be crucial following reports that known TP-Link firmware and instance vulnerabilities were leveraged by threat actors to compromise European government officials.

Attackers could have leveraged the issue in the Setuptools Python package — which is used to facilitate Python library management and installation in AI models — to enable arbitrary code execution via specially crafted package URLs.

Most attacks continued to be aimed at U.S. and European industrial firms, particularly those involved in manufacturing, according to a Dragos report.

Ransomware attack earnings rose by $10 million to more than $459 million during the first half of this year, with proceeds poised to reach a record high by year-end amid the increasing prevalence of ransomware intrusions this year.

Included in the 47 GB data exfiltrated from the county clerk's office's systems were financial documents, customer contracts, alarm system information, budget details, ballot information, and voter records as early as 2008, claimed RansomHub.

Malicious payloads delivered following the brute-force attacks enabled XMRig deployment via "systemd-net" and the termination of other malware, as well as the execution of the Id-musl-x86 SSH scanner to facilitate malware spread.

Attacks commence with the delivery of fraudulent business- or finance-related documents, which when executed open the default app for Word documents while establishing a mutex and altering registry entries to ensure persistence.

Approval of an AnyDesk connection authorization request sent by Mad Liberator to one organization prompted the execution of a Windows update screen-emulating binary to obtain device control and access to a linked OneDrive account.

Here’s how to modernize and service customers better, but keep the enterprise secure.

A 2024. 33. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2024.08.09. és 2024.08.15. között kezelt incidensek statisztikai adatait is tartalmazza.