Biztonsági szemle

Noor Zafar is a Cybersecurity Cadet Risk Advisory Analyst at Deloitte and a speaker on Cisco Networking Academy’s Women Rock-IT broadcast.

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Delta Electronics Equipment: CNCSoft-B DOPSoft Vulnerability: Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could...

CISA released one Industrial Control Systems (ICS) advisory on February 22, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-053-01 Delta Electronics CNCSoft-B...

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-1709 ConnectWise ScreenConnect Authentication Bypass Vulnerability These types of vulnerabilities are frequent...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

[This is a Guest Diary by Rachel Downs, an ISC intern as part of the SANS.edu Bachelor's Degree in Applied Cybersecurity (BACS) program [1].

The U.S. National Security announced the retirement of its active Cybersecurity Director following 34-year career at the agency.

BleepingComputer reports that Knight ransomware was observed by KELA threat analysts to have the third iteration of its source code posted for sale by the operation's representative, Cyclops, on RAMP forums.

Over 1.5 million malicious emails have evaded secure email gateways in 2023, representing a 37% and 310% growth over 2022 and 2021, respectively, reports SiliconAngle.

CyberScoop reports that ransomware attacks against the industrial sector have reached 905 in 2023, representing a 50% increase over the previous year.

The UK's Stratford-on-Avon District Council reported that almost 79,000 email addresses have been stolen as part of an insider data breach in November, according to The Register.