Biztonsági szemle
2024. Nov. 25.
Biztonsági szemle
Five steps to better cyber risk assessments via autonomous pentesting
Five critical steps to transition from outdated, static methodologies to cutting-edge autonomous pentests.
2024. Nov. 25.
Biztonsági szemle
Neighboring Wi-Fi networks exploited in APT28 attack
After unsuccessfully exploiting the targeted organization's Wi-Fi credentials obtained via password spraying attacks due to multi-factor authentication, APT28 resorted to breaching other entities in close proximity before discovering a device within...
2024. Nov. 25.
Biztonsági szemle
Asia, Europe subjected to Russian cyberespionage campaign
TAG-110 leveraged vulnerable internet-exposed web apps and phishing emails to facilitate the delivery of the HATVIBE app loader that triggers that data exfiltrating CHERRYSPY backdoor.
2024. Nov. 25.
Biztonsági szemle
Social engineering becomes lucrative business for North Korean hackers
Deployment of credential and cryptocurrency stealing malware has been conducted by Sapphire Sleet not only through the impersonation of venture capitalists luring targets to join an online meeting about a supposed investment but also via fraudulent...
2024. Nov. 25.
Biztonsági szemle
Chinese hack of US telcos prompts White House meeting
Such an intrusion, which was noted to have involved attackers being deeply ingrained into certain telco networks, was regarded by Senate Intelligence Committee Chair Mark Warner, D-Va., to be the "worst telecom hack" in the U.S.
2024. Nov. 25.
Biztonsági szemle
Closing the Cybersecurity Career Diversity Gap
Diversity isn't just an issue of fairness — it's about operational excellence and ensuring we have the best possible teams defending our national security.
2024. Nov. 25.
Biztonsági szemle
Tájékoztató Linux szervereket érintő sérülékenységekről
A Nemzetbiztonsági Szakszolgálat Nemzeti Kibervédelmi Intézet (NBSZ NKI) tájékoztatót ad ki Linux drisztribúciókat ─ köztük Ubuntu webszervereket ─ érintő magas kockázati besorolású sérülékenységekről, az érintett szoftvertermékek széles körű...
2024. Nov. 22.
Biztonsági szemle
Bevy of smart doorbell bugs earn Ekon an FCC penalty for negligence
The US Federal Communications Commission (FCC) proposed a $734,872 penalty against a smart doorbell manufacturer that was anything but
2024. Nov. 22.
Biztonsági szemle
Faux ChatGPT, Claude API Packages Deliver JarkaStealer
Attackers are betting that the hype around generative AI (GenAI) is attracting less technical, less cautious developers who might be more inclined to download an open source Python code package for free access, without vetting it or thinking twice.
2024. Nov. 22.
Biztonsági szemle
Fake ChatGPT, Claude PyPI packages spread JarkaStealer malware
The packages were installed more than 1,700 times each prior to their removal from the repository.
2024. Nov. 22.
Biztonsági szemle
Yakuza Victim Data Leaked in Japanese Agency Attack
A local government resource for helping Japanese citizens cut ties with organized crime was successfully phished in a tech support scam, and could have dangerous consequences.
2024. Nov. 22.
Biztonsági szemle
2K Palo Alto un-patched firewalls hacked despite warnings
Shadowserver reports 2,000 firewalls were hacked just two days after CISA put the two PAN-OS bugs on the KEV catalog.