Biztonsági szemle
2024. Júl. 19.
Biztonsági szemle
US data breach victimization spikes
Such a significant increase in victimization comes amid a 14% increase in the number of data breaches, as well as a 23% growth in driver's license data exfiltration between the first half of 2023 and the first half of 2024, according to a report from...
2024. Júl. 19.
Biztonsági szemle
Most of SolarWinds hacking suit filed by SEC dismissed
However, allegations of SolarWinds' securities fraud based on its security statement were sustained by the judge.
2024. Júl. 19.
Biztonsági szemle
Over $230M exfiltrated in WazirX crypto heist
Attackers were noted by WazirX to have compromised the platform's security defenses before proceeding with the asset siphoning activities.
2024. Júl. 19.
Biztonsági szemle
CrowdStrike confirms faulty update is tied to massive global IT outage: 'Fix has been deployed'
Transport, broadcasters, and financial systems reportedly affected by Microsoft outage.
2024. Júl. 19.
Biztonsági szemle
Microsoft-signed driver leveraged by HotPage adware
Aside from performing code injections into remote processes, the distributed kernel driver also allows system data exfiltration to a remote server connected to Hubei Dunwang Network Technology Co., Ltd, according to an ESET analysis.
2024. Júl. 19.
Biztonsági szemle
Third-party postal address sharing resolved by USPS
The U.S. Postal Service has confirmed halting the sharing of its online customers' postal addresses with Meta, Snap, and LinkedIn following a TechCrunch report detailing its disclosure of customer details via tracking pixels across its website.
2024. Júl. 19.
Biztonsági szemle
Hundreds of thousands of domains registered for Revolver Rabbit infostealer campaigns
Most domains created by Revolver Rabbit contained at least one dictionary word and a five-digit number separated from each other by a dash, a report from Infoblox showed.
2024. Júl. 19.
Biztonsági szemle
Asia, Europe targeted by new APT41 attacks
APT41, also known as Wicked Panda, Barium, and Winnti, exploited Tomcat Apache Manager servers' web shells to facilitate dropper execution and backdoor distribution before leveraging the DUSTTRAP multi-stage plugin framework to conceal malicious...
2024. Júl. 19.
Biztonsági szemle
Global cyberespionage campaign launched by novel TAG-100 operation
Attacks exploiting known security flaws impacting internet-facing systems, including Microsoft Exchange Server, SonicWall, and F5 BIG-IP instances, as well as the open-source Pantegana and Spark RAT backdoors have been deployed by the new TAG-100...
2024. Júl. 19.
Biztonsági szemle
Three ways to thwart non-human identity attacks
Why having a plan for managing NHIs has become a requirement.
2024. Júl. 19.
Biztonsági szemle
Tájékoztatás Microsoft Windows rendszereken tapasztalható rendszerindítási hibáról
Tisztelt Ügyfelünk! A Nemzetbiztonsági Szakszolgálat Nemzeti Kibervédelmi Intézet (NBSZ NKI) tájékoztatót ad ki a Microsoft Windows rendszereket érintő indítási hibajelenség miatt. Jelen információk szerint a hibát a Crowdstrike kiberbiztonsági cég...
2024. Júl. 19.
Biztonsági szemle
CISA Publishes Resiliency Playbook for Critical Infrastructure
The manual provides guidance on how to improve the resiliency of critical infrastructure.