Biztonsági szemle

Aside from failing to address cybersecurity vulnerabilities in its systems that could have prevented the sweeping data breach, T-Mobile also improperly informed impacted individuals regarding the extent of the incident, according to Washington State...

Infiltration of PSA's payroll records through the exploitation of a flaw in the systems of its payroll processor Banco Nacion also enabled yet-to-be-identified attackers to conduct fraudulent salary deductions ranging from $100 to $245, local media...

Additional details regarding the compromised files were not provided by Rhysida, which only posted a collage of illegible samples including an administrative contract, email, and Canadian passport.

Maine's South Portland Public Schools had its network shut down on Sunday following a weekend intrusion against its firewall that was discovered to have been facilitated by a Bulgarian IP address.

Included in the stolen data trove were individuals' names, birthdates, gender, phone numbers, email addresses, addresses, education details, and employment information.

See Account Manager Victoria G.'s inspirational journey embracing Cisco's inclusive parental leave, overcoming societal norms, and returning to work re-energized.

CISA released two Industrial Control Systems (ICS) advisories on January 7, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-007-01 ABB ASPECT-Enterprise, NEXUS...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Nedap Librix Equipment: Ecoreader Vulnerability: Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of this...

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-41713 Mitel MiCollab Path Traversal Vulnerability CVE-2024-55550 Mitel MiCollab Path Traversal Vulnerability...

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: ABB Equipment: ASPECT-Enterprise, NEXUS, and MATRIX series Vulnerabilities: Files or Directories Accessible to External Parties, Improper...

The SANS DShield project receives a wide variety of logs submitted by participants of the DShield project. Looking at the “ First Seen” URLs page, I observed an interesting URL and dived deeper to investigate. The URL recorded is as follows: