Biztonsági szemle

CISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-21479 Qualcomm Multiple Chipsets Incorrect Authorization Vulnerability CVE-2025-21480 Qualcomm Multiple...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Confusing threat actor attribution may lead to delayed response, tech firms say.

Misconfigurations expose DevOps tools to malicious deployment of XMRig.

Edge computing and stricter regulations could usher in a new era of AI privacy.

The Emergency Management and Response - Information Sharing and Analysis Center provided essential information to the emergency services sector on physical and cyber threats and its closure leaves an information vacuum for these organizations.

New details on the Cisco IOS XE vulnerability could help attackers develop a working exploit soon, researchers say.

Flaw in Cisco IOS XE exposes credentials in plain text.

An anonymous whistleblower has leaked large amounts of data tied to the alleged operator behind Trickbot and Conti ransomware.

In October 2024, Splunk was pleased to provide strategic grants to three nonprofits that are working to advance solutions for a sustainable planet: OpenAQ, Radiant Earth, and WattTime. While each has a distinctive history and approach, they share a...

Download eSentire's 10 questions to ask vendors about AI when choosing an MDR provider.

The country will require certain organizations to report ransomware payments and communications within 72 hours after they're made or face potential civil penalties.