Security Bulletin
12 Aug 2024
Biztonsági szemle
Windows Downdate attack totally undermines Windows security; fix not yet ready
A new attack method unveiled at Black Hat abuses Windows Update to roll back Windows 11 to known exploitable versions.
12 Aug 2024
Biztonsági szemle
Harnessing the Power of AI to Improve Operations
This blog explores the paradigm shift brought about by AIOps, which combines the power of AI and automation to streamline IT operations, enhance decision-making, and drive proactive problem resolution.
12 Aug 2024
Biztonsági szemle
A Lesson From the CrowdStrike Incident
The recent outage highlights the critical importance of adhering to established processes and governance frameworks.
12 Aug 2024
Biztonsági szemle
Tennessee Man Helped DPRK Workers Get Jobs at US Orgs, Fund WMDs
US citizens play middleman between US companies and the North Korean government agents they unwittingly hire.
12 Aug 2024
Biztonsági szemle
Federal cyberinsurance policy for cataclysmic cyber events imminent
Such a policy, which is expected to be issued by year-end, seeks to address concerns surrounding actuaries, said National Cyber Director Harry Coker Jr. at this year's Black Hat USA conference.
12 Aug 2024
Biztonsági szemle
RCE likely with exploitation of several now-addressed Google Quick Share bugs
Google's Quick Share peer-to-peer file-sharing tool has been impacted by 10 now-addressed security vulnerabilities, which could have been leveraged to facilitate unauthorized wireless file writing and remote code execution in Windows systems.
12 Aug 2024
Biztonsági szemle
Cybersecurity Leadership Crisis, Is It Time to Pivot Your Strategy? - BSW #360
12 Aug 2024
Biztonsági szemle
Malicious browser extensions leveraged in widespread malware compromise
Malvertising exploiting Google search results has been leveraged to lure victims into downloading fraudulent software installers, including YouTube downloader, Roblox FPS Unlocker, and VLC video player.
12 Aug 2024
Biztonsági szemle
Active exploitation of Cisco Smart Install underway
More than 6,000 IPs with Cisco SMI were observed by the Shadowserver Foundation to have been exposed to the internet, with CISA noting that exploitation has been made easier by the prevalence of weak passwords in such devices.
12 Aug 2024
Biztonsági szemle
Over 35K impacted by CSC ServiceWorks breach
Infiltration of CSC ServiceWorks' systems resulted in the exfiltration of individuals' names, birthdates, Social Security numbers, driver's license numbers, contact details, bank account numbers, and health insurance details.
12 Aug 2024
Biztonsági szemle
Russia subjected to Chinese cyberattacks
Intrusions commenced with the delivery of phishing emails with RAR archives deploying a backdoor that facilitated the injection of the APT31-linked GrewApacha trojan, as well as a new version of the CloudSorcerer malware that bypasses detection...
12 Aug 2024
Biztonsági szemle
Reported Trump campaign hack previews election cyber threats, says ex-official
"Buckle up for October, because I think we're in for a wild ride," said former National Security Agency Director of Cybersecurity Rob Joyce at this year's DEF CON cybersecurity conference, where he noted that election interference had been conducted...