Biztonsági szemle
2024. Szep. 3.
Biztonsági szemle
Toronto District School Board admits breach amid LockBit claim
Attackers compromised TDSB's technology testing environment and obtained access to individuals' names, grades, email addresses, birthdates, school names, and student numbers.
2024. Szep. 3.
Biztonsági szemle
Total systems compromise likely with critical WhatsUp Gold flaw
Such a flaw, tracked as CVE-2024-4885, stems from improper user input validation of the GetFileWithoutZip method adopted by WhatsUp Gold, noted Summoning Team, which identified and disclosed the issue.
2024. Szep. 3.
Biztonsági szemle
Over 1.4M users exposed in Tracelo breach
Data leaked by the threat actor "Satanic" was divided into three CSV files, the first of which contained the full names, phone numbers, phone carriers, country, city, and timezone details, and unique record identifiers for 646,442 individuals around...
2024. Szep. 3.
Biztonsági szemle
Cryptojacking facilitated by critical Atlassian Confluence exploit
Attacks by the first threat actor involved abuse of the flaw to deploy the XMRig miner while the second threat actor leveraged a shell script to facilitate miner delivery across a targeted environment's accessible endpoints.
2024. Szep. 3.
Biztonsági szemle
Cobalt Strike deployment sought by covert China-targeted campaign
Threat actors distributed phishing emails with malicious ZIP files containing a Word-spoofing LNK file purporting to be a list of individuals who committed remote control software regulation violations, which facilitates the deployment of a Microsoft...
2024. Szep. 3.
Biztonsági szemle
New Cicada3301 RaaS operation ramps up attacks against VMware ESXi systems
Attacks by the RaaS operation commence with the infiltration of ScreenConnect via stolen or brute-forced credentials, as well as an IP address previously associated with the Brutus botnet, to facilitate the distribution of the Cicada3301 ransomware.
2024. Szep. 3.
Biztonsági szemle
Chromium zero-day leveraged by North Korean hackers
Social engineering schemes have been leveraged by Citrine Sleet to lure targets into visiting a website that triggered the exploit, which enables not only the deployment of the rootkit but also of a shellcode for the Windows kernel privilege...
2024. Szep. 3.
Biztonsági szemle
Name That Edge Toon: Bug Off
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
2024. Szep. 3.
Biztonsági szemle
Leadership Lessons from the First 100 Episodes of CISO Stories - Todd Fitzgerald - BSW Vault
2024. Szep. 2.
Biztonsági szemle
Close the Security Theater: Enter Resilience - Kelly Shortridge - ASW Vault
2024. Szep. 2.
Biztonsági szemle
Riasztás a Nemzeti Népegészségügyi és Gyógyszerészeti Központot (NNK) megszemélyesítő, káros csatolmányú e-mail kapcsán
Tisztelt Ügyfelünk! A Nemzetbiztonsági Szakszolgálat Nemzeti Kibervédelmi Intézet (NBSZ NKI) riasztást ad ki a Nemzeti Népegészségügyi és Gyógyszerészeti Központ nevében küldött, káros csatolmányt tartalmazó levéllel kapcsolatban. Intézetünkhöz több...
2024. Szep. 2.
Biztonsági szemle
Ransomware Gangs Pummel Southeast Asia
Successful ransomware attacks against organizations in Asia continue at peak levels in 2024 following a wave of high-profile data breaches last year.