Biztonsági szemle

One third of codebases analyzed by Black Duck were vulnerable to jQuery CVE-2020-11023 and CVE-2020-11022.

A group of MITRE researchers have pitched a new standard for defining security threats from AI systems

Addressing the complexities of session management in multi-IDP environments, CAEP offers a pathway to real-time security, proactive risk mitigation, and enhanced user trust.

The fake websites trick users into downloading and running malware that searches for personal information, especially anything related to crypto currency.

The threat actors are exploiting non-interactive sign-ins, an authentication feature that security teams don't typically monitor.

In the wrong hands, the popular red-teaming tool can be made to access networks, escalate privileges, conduct reconnaissance, and disguise malicious activity as a simulated exercise.

Dragos says OT has become a mainstream target – so expect more sophisticated attacks on critical infrastructure.

Cyberattackers believed to be affiliated with the state-sponsored threat group pulled off the largest crypto heist reported to date, stealing $1.5 billion from exchange Bybit. It was carried out by interfering with a routine transfer between wallets.

From running behavioral biometrics to more accurate malware detection and URL filtering, AI can make browsers more secure.

No matter the strategy, companies must approach securing unmanaged devices with sensitivity and respect for employee privacy.