Biztonsági szemle

CISA added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2021-32030 ASUS Routers Improper Authentication Vulnerability CVE-2023-39780 ASUS RT-AX55 Routers OS Command...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

For most system and network administrators, the free SSH client Putty has been their best friend for years! This tool was also (ab)used by attackers that deployed a trojanized version[ 1]. Microsoft had the good idea to include OpenSSH (beta version)...

YARA 4.5.3 was released with 5 bugfixes.

While hunting, I found an interesting picture. It's a PNG file that was concatenated with two interesting payloads. There are file formats that are good candidates to have data added at the end of the file. PNG is the case because the file...

As a tech professional in today’s rapidly evolving digital landscape, you know the challenge: staying ahead of the curve while managing your daily responsibilities. The pace of innovation in AI,… Read more on Cisco Blogs

The identity security community is set to descend onto Las Vegas for the annual Identiverse security conference.

EDDIESTEALER uses obfuscated Rust code and dynamic C2 tasking to evade and adapt.

A "highly active" Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal data from organizations in sensitive sectors.

The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of dollars annually.