Biztonsági szemle

Last week, I wrote about scans for Teltonika Networks SMS Gateways. Attackers are always looking for cheap (free) ways to send SMS messages and gain access to not-blocklisted numbers. So, I took a closer look at similar scans we have seen.

MCP for DevOps – Series Opener and MCP Architecture Intro You have undoubtedly heard about Anthropic’s MCP (Model Context Protocol) open source project. If you haven’t, I hope your vacation on a remote island without internet access was lovely! As a...

The current offline/open source model boom is unstoppable. Its impact depends on how well the risks are managed today.

Unified security intelligence, streamlined workflows, and real-time threat monitoring. Discover the ECSS Learning Path, your fast track to leverage the full potential of Splunk on Cisco.

A spear-phishing campaign sent Trojanized versions of legitimate word-processing software to members of the World Uyghur Congress as part of China's continued cyber-espionage activity against the ethnic minority.

NVIDIA's DOCA Argus prevents attacks before they compromise AI architectures.

Discover how Cisco XDR’s Instant Attack Verification brings real-time threat validation for faster, smarter SOC response.

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Low attack complexity Vendor: Delta Electronics Equipment: ISPSoft Vulnerabilities: Stack-based Buffer Overflow, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ThinManager Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Incorrect...

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-31324 SAP NetWeaver Unrestricted File Upload Vulnerability These types of vulnerabilities are frequent attack...

CISA released three Industrial Control Systems (ICS) advisories on April 29, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-119-01 Rockwell Automation...

Agentic AI promises a chef’s kitchen of options with each tool finely-designed to excel at the task at hand.