Biztonsági szemle

Attackers were able to obtain Authy customers' phone numbers and other data via an unauthenticated endpoint, which has since been secured, but there has been no indication of further breaches of Twilio's systems and sensitive data.

Attacks commenced with the compromise of Windows workstations and servers via network-stored admin credentials.

A record-breaking DDoS intrusion stemmed from 5,000 source IPs, with most packets originating from U.S.-based MiktroTik Cloud Core Routers.

Aside from leveraging malvertising aimed at Microsoft Teams and OneNote, AnyDesk, Google Chrome, and other widely used software, attackers also sought to spread FakeBat via social networking-based social engineering tactics and fraudulent web browser...

Innocuous little Windows programs were carrying cheap malware for weeks, exposing customers of the India-based software vendor to data theft.

A politically motivated threat actor has launched a new malware campaign targeting Android devices.

Researchers uncover a way to hack the summer cookout — but firmware updates will stop that grilled meat (or tofu) from turning into an inedible mess.

VectraAI shares how to see and stop Copilot-based attacks dead in their tracks.

Tens of thousands of Patelco customers remain without access to their accounts, with no estimates for when systems will be restored.

SonarSource researchers released their own patch after they say Gogs’ maintainers ceased contact.