Biztonsági szemle

INC Ransom alleged that it was not only able to exfiltrate Stark's supply chain details, building plans, instructor passports, and cybersecurity tool configurations but also reconnaissance satellite and production program information, as well as...

Aside from leveraging Windows Cryptographic Application Programming Interface for encrypting data aside from critical system files, both HellCat and Morpheus had ransom notes ordering victims to access their respective .onion portals using the...

Such BC backdoor, which runs as an autonomous program, features not only old QBot samples but also IcedID's KeyHole BC and DarkVNC and was discovered within the ZLoader-distributing infrastructure, a report from Walmart's Cyber Intelligence team...

Installation of the malware in targeted routers facilitates the deployment of a cd00r variant scanning for five network signals, which when received triggers reverse shell creation on the local file system, enabling device takeover, data exfiltration...

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-23006 SonicWall SMA1000 Appliances Deserialization Vulnerability These types of vulnerabilities are frequent...

A 2025. 4. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2025.01.17. és 2025.01.23. között kezelt incidensek statisztikai adatait is tartalmazza.

At Black Hat and DEF CON, cybersecurity experts were asked to game out how Taiwan could protect its communications and power infrastructure in case of invasion by China.

[This is a Guest Diary by Joseph Flint, an ISC intern as part of the SANS.edu BACS [1] program]

Settlement stems from 2022 data breach that saw some customer Social Security numbers exposed to threat actors.

The following is an excerpt from our FY24 Purpose Report, celebrating 40 years of impact at Cisco. A lot has happened in 40 years of technology: the Internet, mobile, social media, cloud computing, AI. Securely powering that technology has only grown...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

The “uncensored” GenAI tool was advertised on cybercrime forums with a focus on BEC scams.