Biztonsági szemle

BleepingComputer reports that more than 12 million Android devices have collectively downloaded 18 malicious loan apps dubbed "SpyLoan," which could exfiltrate not only call logs, local Wi-Fi network information, and image metadata but also text...

Numerous Web3 smart contracts, including DropERC20, AirDrop20, ERC721, and ERC1155, were discovered by Thirdweb to be exposed to a vulnerability in a widely used open-source nonfungible token library, reports SiliconAngle.

Details regarding 10 security vulnerabilities impacting Loytec building automation products that remained unaddressed more than two years after their discovery were uncovered by TXOne Networks researchers, according to SecurityWeek.

Black Hat researchers show top password managers on Android mobiles are prone to leak passwords when using WebView autofill function.

BleepingComputer reports that accounting software provider Tipalti has confirmed launching an investigation into an alleged ALPHV/BlackCat ransomware attack against its network, which was claimed to result in the compromise of over 265 GB of...

The former Citibank CISO was well-known as an industry pioneer and for mentoring cybersecurity talent in a most generous way.

Various devices remain vulnerable to the bug, which has existed without notice for years and allows an attacker to control devices as if from a Bluetooth keyboard.

Worries over crypto's defenselessness against quantum computing has inspired a project that automates the discovery of insecure cryptographic algorithms in open source software.

Hackers gained initial access to the civilian agency two months after a mandatory deadline to patch the vulnerability had expired.

Despite a focus on the future, there's no indication of how well the cybersecurity basics needed to stay safe are being applied.

The NCSC's Ollie Whitehouse criticizes security vendors for actively working against organizations in their fight against breaches and ransomware.

Trusted relationships and global collaboration are essential to improve collective knowledge, drive resilience, and mitigate international security risks.