Biztonsági szemle

Funnull CDN rents IPs from legitimate cloud service providers and uses them to host criminal websites, continuously cycling cloud resources in and out of use and acquiring new ones to stay ahead of cyber-defender detection.

Riot provides a cybersecurity training platform that simulates phishing attacks, detects data leaks, and educates employees through a chatbot named Albert.

Leading the additional protections is the default deactivation of public access to new clusters, which would only be accessible within users' Virtual Private Clouds.

Investigation into the incident completed in October revealed that only "limited" personal information had been compromised from affected individuals, who were informed and given complimentary identity protection services in December.

AEA confirmed being subjected to a cybersecurity incident that resulted in the exposure of information from 193,306 patients more than a month after the DragonForce ransomware operation took responsibility for the intrusion against the eye care...

While malicious network activity was first identified by Mizuno in early November, further investigation revealed that the Japanese sportswear company had its systems infiltrated since August, resulting in the periodic theft of individuals' names...

Attacks with the new Coyote trojan variant over the past month involved the deployment of an LNK file executing a PowerShell command facilitating next-stage PowerShell script retrieval for the eventual launching of the trojan, which not only obtained...

Organizations and development teams need to evolve from "being prepared" to "managing the risk" of security breaches.

Iran-backed groups were the most prolific adversarial users, while North Korean APTs used the LLM for likely IT worker scams.

A total of 768 CVE-listed vulnerabilities exploited in the wild, a 20% increase from 2023.