Security Bulletin
8 Apr 2025
Biztonsági szemle
Dangerous, Windows-Hijacking Neptune RAT Scurries Into Telegram, YouTube
The malware's creators insist a new open source version of Neptune is for educational use by pen testers, but a raft of sophisticated backdoor and evasion capabilities says otherwise.
8 Apr 2025
Biztonsági szemle
How Democratized Development Creates a Security Nightmare
No-code and low-code platforms offer undeniable benefits. But when security is an afterthought, organizations risk deploying vulnerable applications that expose sensitive data and critical systems.
8 Apr 2025
Biztonsági szemle
Native cloud firewalls failed security tests, report finds
CyberRatings.org has released its Q1 2025 Comparative Test Report on Cloud Network Firewalls.
8 Apr 2025
Biztonsági szemle
ProwlerPro secures $12.5M to advance open-source cloud security solutions
Founded in 2023, ProwlerPro builds on the success of the Prowler open-source project.
8 Apr 2025
Biztonsági szemle
LoftLabs unveils vNode for secure node-level isolation in shared Kubernetes environments
The launch builds on LoftLabs’ existing vCluster product, which virtualizes Kubernetes control planes.
8 Apr 2025
Biztonsági szemle
New Google Sec-Gemini v1 AI model shows promise in combating cyber threats
Google is seeking to bolster incident response and threat analysis with its new experimental artificial intelligence model Sec-Gemini v1, reports SecurityWeek.
8 Apr 2025
Biztonsági szemle
UK-Apple backdoor hearing should be public, tribunal rules
CNBC reports that Apple's appeal against the UK government's order to create a "backdoor" allowing access to encrypted iPhone user data will be heard in public after the country's Investigatory Powers Tribunal dismissed the government's attempt to...
8 Apr 2025
Biztonsági szemle
Zero-days among dozens of Android bugs addressed by Google
Google has addressed 62 Android security vulnerabilities, including two actively exploited zero-day flaws, as part of this month's security update, reports BleepingComputer.
8 Apr 2025
Biztonsági szemle
Report: EncryptHub moonlighting in vulnerability research
Newly emergent threat actor EncryptHub, also known as SkorikARI, was discovered to be engaging in vulnerability research, having been credited by Microsoft for the discovery of a pair of Windows security issues patched as part of last month's Patch...
8 Apr 2025
Biztonsági szemle
Third-party ransomware attack jeopardizes DBS Group, Bank of China Singapore data
Major Singaporean consumer bank DBS Group and Bank of China's Singapore branch may have had data from over 11,000 individuals cumulatively compromised following a ransomware intrusion against data vendor Toppan Next Tech, according to Reuters.
8 Apr 2025
Biztonsági szemle
WK Kellogg confirms Cleo attack-related breach
BleepingComputer reports that major U.S. food manufacturer WK Kellogg has disclosed having its data compromised in a December ransomware attack by the Clop ransomware operation that involved a pair of Cleo managed file transfer software zero-day...
8 Apr 2025
Biztonsági szemle
Toll payment service-targeted schemes by Smishing Triad escalates
Chinese threat operation Smishing Triad has been ramping up smishing campaigns involving the spoofing of U.S. and UK toll service providers during the first three months of the year, according to Infosecurity Magazine.