Biztonsági szemle
2025. Ápr. 3.
Biztonsági szemle
Addressed Google Cloud Run flaw could trigger info leaks
Sensitive data compromise could have been achieved through the exploitation of the recently patched Google Cloud Run privilege escalation flaw dubbed "ImageRunner," according to SecurityWeek.
2025. Ápr. 3.
Biztonsági szemle
Attacks exploiting critical Cisco Smart Licensing Utility bug ongoing
Immediate patching has been urged by Cisco for a critical flaw impacting its Smart Licensing Utility, tracked as CVE-2024-20439, following the discovery of its attempted exploitation last month, reports BleepingComputer.
2025. Ápr. 3.
Biztonsági szemle
Hunters International shifting tactics amid growing risks
Mounting threats to the profitability of ransomware operations amid escalating law enforcement clampdowns, even by Russia, have prompted the Hunters International ransomware-as-a-service gang to alert affiliates regarding an ongoing rebrand to the...
2025. Ápr. 3.
Biztonsági szemle
Covert compromise facilitated by new crop of malware loaders
More advanced obfuscation techniques have been adopted by a new Hijack Loader malware variant, the SHELBY malware, and the Emmenhtal Loader to facilitate clandestine compromise, according to The Hacker News.
2025. Ápr. 3.
Biztonsági szemle
Google Quick Share Bug Bypasses Allow Zero-Click File Transfer
Google addresses patch bypasses for CVE-2024-38272 and CVE-2024-38271, part of the previously announced "QuickShell" silent RCE attack chain against Windows users.
2025. Ápr. 3.
Biztonsági szemle
Israel Enters 'Stage 3' of Cyber Wars With Iran Proxies
While Israel and Iranian proxies fight it out IRL, their conflict in cyberspace has developed in parallel. These days attacks have decelerated, but advanced in sophistication.
2025. Ápr. 2.
Biztonsági szemle
CISA warns of critical flaws in industrial control systems
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is sounding the alarm over a series of high-risk vulnerabilities present in industrial control systems
2025. Ápr. 2.
Biztonsági szemle
DPRK 'IT Workers' Pivot to Europe for Employment Scams
By using fake references and building connections with recruiters, some North Korean nationals are landing six-figure jobs that replenish DPRK coffers.
2025. Ápr. 2.
Biztonsági szemle
SolarWinds Adds Incident Management Tool From Squadcast
The IT service management and observability tools company acquired Squadcast last month and is adding the automated incident response platform to the SolarWinds portfolio.
2025. Ápr. 2.
Biztonsági szemle
Microsoft touts bug finds from Security Copilot
Twenty bugs in GRUB2, U-boot and Barebox were found in an AI-assisted process.
2025. Ápr. 2.
Biztonsági szemle
In Salt Typhoon's Wake, Congress Mulls Potential Options
While the House Committee on Government Reform was looking for retaliatory options, cybersecurity experts pointed them toward building better defenses.
2025. Ápr. 2.
Biztonsági szemle
New PCI DSS Rules Say Merchants on Hook for Compliance, Not Providers
Merchants and retailers will now face penalties for not being compliant with PCI DSS 4.0.1, and the increased security standards make it clear they cannot transfer compliance responsibility to third-party service providers.