Ugrás a tartalomra

Biztonsági szemle

2023. december 19.
Biztonsági szemle

Open Design Alliance Drawing SDK

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Open Design Alliance (ODA) Equipment: Drawing SDK Vulnerabilities: Use after Free, Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this...
cisa.gov
Tovább
2023. december 19.
Biztonsági szemle

EFACEC BCU 500

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: EFACEC Equipment: BCU 500 Vulnerabilities: Uncontrolled Resource Consumption, Cross-site Request Forgery 2. RISK EVALUATION Successful...
cisa.gov
Tovább
2023. december 19.
Biztonsági szemle

EuroTel ETL3100 Radio Transmitter

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: EuroTel Equipment: ETL3100 Vulnerabilities: Improper Restriction of Excessive Authentication Attempts...
cisa.gov
Tovább
2023. december 19.
Biztonsági szemle

Israel Blames Iran for Hospital Data Breach

Israeli intelligence said a cyber unit of Hezbollah also was involved in the cyberattack.
darkreading.com
Tovább
2023. december 19.
Biztonsági szemle

#StopRansomware: ALPHV Blackcat

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories...
cisa.gov
Tovább
2023. december 19.
Biztonsági szemle

CISA and FBI Release Advisory on ALPHV Blackcat Affiliates

Today, CISA and the Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory (CSA), #StopRansomware: ALPHV Blackcat, to disseminate known ALPHV Blackcat affiliates’ tactics, techniques, and procedures (TTPs) and indicators of...
cisa.gov
Tovább
2023. december 19.
Biztonsági szemle

Context-sensitive defense: What it is, how it works

Older defensive security technologies often fail to protect endpoints because of their limited ability to change as attacks change. What’s needed is a way for endpoint security defenses to adapt to evolving attack techniques. That’s where context...
scmagazine.com
Tovább
2023. december 19.
Biztonsági szemle

Azure Serial Console Attack and Defense - Part 2

This is the second installment of the Azure Serial Console blog, which provides insights to improve defenders’ preparedness when investigating Azure Serial Console activity on Azure Linux virtual machines. While the first blog post discussed various...
msrc.microsoft.com
Tovább
US vs. Chinese and LiDAR industry
2023. december 19.
Biztonsági szemle

Why the US government needs to focus-in on the Chinese LiDAR industry

Concerns are real that the Chinese could infiltrate U.S. LiDAR technology to spy on American citizens and companies – the government needs to act now.
scmagazine.com
Tovább
Featured image for {“vendor”:”ppworks”,”type”:”segment”,”id”:”12300″} podcast from PPWorks
2023. december 19.
Biztonsági szemle

Four Pieces of Transitional Advice: Incoming CISOs - Sean Zadig - CSP #153

scmagazine.com
Tovább
2023. december 19.
Biztonsági szemle

Celebrating 10 Years of DevNet at Cisco Live APJC

Cisco Live is a fantastic event for developers to participate in hands-on labs. It gives them a chance to learn about and experiment with new Cisco technologies and solutions along side fellow developers and product experts.
blogs.cisco.com
Tovább
2023. december 19.
Biztonsági szemle

ISC Stormcast For Tuesday, December 19th, 2023 https://isc.sans.edu/podcastdetail/8784, (Tue, Dec 19th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
isc.sans.edu
Tovább
Nyelv
Célcsoport