Biztonsági szemle

Admins are urged to remove vSphere's vulnerable Enhanced Authentication Plug-in, which was discontinued nearly three years ago but is still widely in use.

After the kingpin RaaS gang’s spectacular takedown, security pros expect other threat groups will be quick to take LockBit’s place.

Collaboration, care, and proactive planning need to be part of CISO toolboxes as worsening threat environments become the new normal. CISOs need to adjust processes so business innovation can continue.

The feature will roll out publicly with iOS 17.4 in March and is already available in beta.

If there are too many “cooks” in the cloud security kitchen, here’s a six-step roadmap for simplifying the operation.

Iran has taken a page from the Russian playbook: Passing off military groups as civilians for the sake of PR and plausible deniability.

Librarians are being asked to defend themselves online against sophisticated and complex attacks. It's an unequal fight.

Users have already downloaded droppers for the malware from Google's official Play store more than 100,000 times since last November.

About 13,000 users received camera images and feeds that weren't theirs. This cyber incident takes place only five months after the company experienced a similar issue and failed to be transparent with users about the issues it was facing.

While furiously trying to put out one fire — fake news — the social media giant is dealing with another growing threat: spies for hire.

Improper content filtering in a core function allows multiple paths to exploitation for CVE-2024-21726.