Security Bulletin

Introduction Kea features an extension to JSON that allows one to include the contents of one file into another file: The directive. This feature can be used to simplify management of Kea configurations. This article provides practical examples of...

Megjelent a 2026. 4. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2026.01.16. és 2026.01.22. között kezelt incidensek, valamint az elosztott kormányzati IT biztonsági csapdarendszerből (GovProbe1) származó adatok statisztikai eloszlását is...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Deployed across Australia and Europe, China's electric buses are vulnerable to cybercriminals and sport a virtual kill switch the Chinese state could activate.

Automated infections of potentially fully patched FortiGate devices are allowing threat actors to steal firewall configuration files.

Concern is growing across Europe about relying on US cybersecurity companies, and Greenland takeover talk is eroding trust across the EU even further.

Cybersecurity professionals in Latin America are least likely to have faith in their countries' preparedness for cyberattacks on critical infrastructure, the World Economic Forum says.

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to avoid detection.

Hybrid Mesh Firewall introduces intent-based policy management across multi-vendor firewalls through Cisco Security Cloud Control with Mesh Policy Engine.

The title of this diary is perhaps a bit catchy but the question is important. I don&#x27t consider myself as a good developer. That&#x27s not my day job and I&#x27m writing code to improve my daily tasks. I like to say “I&#x27m writing sh*ty code...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Dark Reading Confidential Episode 14: How curious, ethical problem-solving can continue to serve as a guiding principle for an evolving cybersecurity sector.