Security Bulletin
22 Aug 2024
Biztonsági szemle
Infostealers Waltz Through macOS to Grab Crypto Wallets, Browser Creds
Ironically, Macs' lower risk profile may make them more susceptible to any given threat than the average Windows or Linux system.
22 Aug 2024
Biztonsági szemle
Google Chrome Update Fixes Flaw Exploited in the Wild
New Chrome release set to roll out over the next few days addresses 38 security issues in the browser.
22 Aug 2024
Biztonsági szemle
Google patches ninth Chrome zero-day of 2024
Microsoft told Google about the Chrome bug on a Monday and Google released the patch two days later.
22 Aug 2024
Biztonsági szemle
OpenAI Scans for Honeypots. Artificially Malicious? Action Abuse?, (Thu, Aug 22nd)
For a whille now, I have seen scans that contain the pattern "%%target%%" in the URL. For example, today this particular URL is popular:
22 Aug 2024
Biztonsági szemle
Slack Patches AI Bug That Let Attackers Steal Data From Private Channels
A prompt injection flaw in the AI feature of the workforce collaboration suite makes malicious queries of data sources appear legitimate.
22 Aug 2024
Biztonsági szemle
How to avoid common mistakes when adopting AI
Adopting AI requires a measured approach. Gartner outlines 5 phases to avoid major pitfalls and maximize chances of successful AI implementation.
22 Aug 2024
Biztonsági szemle
Why End of Life for Applications Is the Beginning of Life for Hackers
In the next year, more than 35,000 applications will move to end-of-life status. To manage risk effectively, we need to plan ahead.
22 Aug 2024
Biztonsági szemle
Updated QNAP QTS for NAS devices gains ransomware defenses
Security Center would enable customers to opt for read-only volumes, volume snapshot creation, and volume snapshot cessation in the event of atypical NAS device activity, according to QNAP.
22 Aug 2024
Biztonsági szemle
Google Play bug bounty program shutdown imminent
While additional submissions would no longer be accepted by Aug. 31, Google noted that triaging of reports provided before then will be completed by Sept. 15, with rewards to be decided upon before the end of September.
22 Aug 2024
Biztonsági szemle
New airplane cyber rules advanced by FAA
Aside from mandating the identification and evaluation of cybersecurity gaps in networks involved in the operations of airplanes, engines, and propellers, organizations in the aviation sector would also be required to establish cyberattack response...
22 Aug 2024
Biztonsági szemle
SEC fines Equiniti Trust $850K for cybersecurity failings
Nearly $4.78 million had been stolen by threat actors that compromised Equiniti via email chain hijacking in 2022, nearly $1 million of which has been recovered, while another intrusion in April 2023 that involved the exfiltration of certain Equiniti...
22 Aug 2024
Biztonsági szemle
Nearly 139K impacted by Arden Claims Service breach
Attackers who infiltrated Arden Claims Service's systems around Oct. 3, 2023, were able to exfiltrate individuals' names and other personally identifiable information, according to the notification letter provided to Vermont and Maine regulators.