Biztonsági szemle
2024. november 7.
Biztonsági szemle
Better online ICS discovery sought by new PLCHound algorithm
Using such information to contact organizations with internet-accessible programmable logic controllers resulted in a 34% reduction in PLC exposure in just a month, according to researchers, who noted testing the algorithm on Allen Bradley, Omron...
2024. november 7.
Biztonsági szemle
Patches issued for critical Synology DiskStation, BeeStation bug
Also known as RISK:STATION, the zero-click vulnerability could be leveraged to compromise millions of devices, according to Midnight Blue researchers, who discovered and reported the issue at Pwn2Own Ireland.
2024. november 7.
Biztonsági szemle
Maximum severity Cisco URWB vulnerability addressed
Impacted by the flaw, which stems from improper input validation to the web-based management interface, are Catalyst IW9165E Rugged Access Points and Wireless Clients, Catalyst IW9165D Heavy Duty Access Points, and Catalyst IW9167E Heavy Duty Access...
2024. november 7.
Biztonsági szemle
Ransomware attack costs Microchip Technology over $21M
Such a disclosure, which is part of the Microchip's financial report for the second quarter of fiscal year 2025, comes two months after the firm confirmed the exfiltration of employee contact details, password hashes, and other data from its systems...
2024. november 7.
Biztonsági szemle
Over 700M EA user accounts exposed by critical account system flaw
Extensive account exposure by a misconfigured API was discovered by game developer and ethical hacker Sean Kahler through a developer testing environment privileged access token obtained following the identification of hardcoded credentials in a game...
2024. november 7.
Biztonsági szemle
Malware attack compromises over 200K SelectBlinds customers
Such malware compromise, which was only identified in late September, has impacted login information, names, phone numbers, emails, shipping and billing addresses, and payment card details with CVV codes and expiration dates belonging to individuals...
2024. november 7.
Biztonsági szemle
Microlise staff data breached in cyberattack
"Investigations into the incident are continuing, however, the Company is confident that no customer systems data has been compromised," said Microlise in an incident update, which has noted "substantial progress" in thwarting the network threat.
2024. november 7.
Biztonsági szemle
The Power of Process in Creating a Successful Security Posture
Establishing realistic, practitioner-driven processes prevents employee burnout, standardizes experiences, and closes many of the gaps exposed by repeated one-offs.
2024. november 7.
Biztonsági szemle
Clicker Beware: Understanding and preventing open redirect attacks
Four ways security teams can mitigate open redirect attacks.
2024. november 7.
Biztonsági szemle
Symbiotic Security Launches Scanning Tool to Help Fix Flaws in Code
The company comes out of stealth with a tool that integrates directly into the developer's IDE to find flaws, offer remediation advice, and training materials to write secure code.
2024. november 6.
Biztonsági szemle
Fake Copyright Infringement Emails Spread Rhadamanthys
Attackers are triggering victims' deep-seated fear of getting in trouble in order to spread the sophisticated stealer across continents.
2024. november 6.
Biztonsági szemle
Chinese Gamers Targeted in Winos4.0 Framework Scam
Campaigns like Silver Fox and Void Arachne are deploying the framework, using social media and messaging platforms to lure in victims.