Biztonsági szemle

Aside from impacting printed publication distribution, such an intrusion — which was not acknowledged as a ransomware attack — also interrupted billing, collections, and vendor payments, while temporarily limiting online operations, according to Lee...

TA2727's attack campaign, which were discovered in late January, entailed the insertion of malicious "Update" buttons on legitimate websites, which when clicked trigger automated DMG file downloads and the evasion of macOS Gatekeeper to eventually...

Despite featuring the same keystroke logging, screenshot capturing, and clipboard data gathering capabilities as earlier versions, such novel Snake Keylogger variant leverages an AutoIT-compiled binary as an executable file, which allows more...

Attacks conducted by BlackLock, which could be this year's most active ransomware group, involve the distribution of proprietary malware against Windows, VMware ESXi, and Linux systems for double extortion, an analysis from Reliaquest revealed.

By taking several proactive steps, boards can improve their organization's resilience against cyberattacks and protect their critical OT assets.

The campaign heavily uses Dropbox folders and PowerShell scripts to evade detection and quickly scrapped infrastructure components after researchers began poking around.

Acquisition strengthens Deepwatch Platform capabilities with actionable insights and risk-based prioritization.

Security consultancy Quarkslab said that the flaw could allow threat actors to bypass USB lockouts.

Attackers are using patched bugs to potentially gain unfettered access to an organization's Windows environment under certain conditions.

Winnti once used a variety of malware but is now focused on SQL vulnerabilities and obfuscation, updated encryption, and new evasion methods to gain access.

If the VerifyHostKeyDNS option is activated, an attacker could impersonate a server to hijack SSH sessions.