Security Bulletin

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-24989 Microsoft Power Pages Improper Access Control Vulnerability These types of vulnerabilities are frequent...

A 2025. 8. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2025.02.14. és 2025.02.20. között kezelt incidensek statisztikai adatait is tartalmazza.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Over the years, I've written a number of scripts to make my life easier. One of those tools was sigs.py (which was a rewrite of an old perl script sigs.pl) to hash files. I wanted something portable that could potentially be a drop-in...

Join Mac expert Slava Konstantinova to uncover the hidden data and security risks lurking in your macOS browsers and apps.

ThreatLocker's Daniel Madden looks at understanding the risks present in a Linux environment, discovering the ways we can take action to harden against these risks, and some pitfalls to be avoided when taking action.

Nearly two-thirds of respondents actively looking for new job; workers on West Coast best paid.

The phishing-as-a-service suite makes it easy for those without technical ability to make custom scam pages.

Excessive privileges and visibility gaps create a breeding ground for cyber threats.

China-based group took advantage of organizations that did not update software or firmware.

The China-backed threat group often acts swiftly, going from initial access to compromise in just one day, a behavior atypical of cybercriminal groups.