Security Bulletin

In SANS FOR577[1], we talk about timelines on day 5, both filesystem and super-timelines. but sometimes, I want something quick and dirty and rather than fire up plaso, just to create a timeline of .bash_history data, it...

Three international vehicle manufacturers have fallen to supply chain cyberattacks in the past month alone.

See how Model Context Protocol (MCP) servers turn queries into real actions. This post and video reveal patterns for quicker, safer operations—giving you practical tips to streamline your workflow.

Security researchers say multiple threat groups, including Iran's Charming Kitten APT offshoot Subtle Snail, are deploying malware with code-signing certificates from the Houston-based company.

The world's most-popular sports contest starts in June 2026 across 16 venues in three countries: Securing the event infrastructure from cyber threats will require massive collaboration.

Megjelent a 2025. 39. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2025.09.19. és 2025.09.25. között kezelt incidensek, valamint az elosztott kormányzati IT biztonsági csapdarendszerből (GovProbe1) származó adatok statisztikai eloszlását is...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Patch now: Cisco recently disclosed four actively exploited zero-days affecting millions of devices, including three targeted by a nation-state actor previously discovered to be behind the "ArcaneDoor" campaign.

The China-linked cyber-espionage group UNC5221 is compromising network appliances that cannot run traditional EDR agents to deploy new versions of the "Brickstorm" backdoor.

We've reached a milestone that underscores this legacy: Cisco has been granted its 25,000th U.S. patent. This is not just a number; it is proof of the scale, consistency, and depth of the ideas born inside Cisco.

How one university transformed its infrastructure—and its future—through a strategic partnership and visionary leadership.

Yet again researchers have uncovered an opportunity (dubbed "ForcedLeak" for indirect prompt injection against autonomous agents lacking sufficient security controls — but this time the risk involves PII, corporate secrets, physical location data...