Biztonsági szemle

The malware combines a miner and data stealer, and it packs functions that make detection and mitigation a challenge.

Socket researchers say malicious package "Fabrice" has been live on PyPI since 2021.

While training and credentialing organizations continue to talk about a "gap" in skilled cybersecurity workers, demand — especially for entry-level workers — has plateaued, spurring criticism of the latest rosy stats that seem to support a hot market...

It's unclear what the threat actors have against this particular breed of cat, but it's taking down the kitty's enthusiasts with SEO-poisoned links and malware payloads.

Such an acquisition, which was reported by CTech to be valued at $300 million, comes after Adaptive Shield tapped CrowdStrike's Falcon cybersecurity platform to support its security capabilities.

Using such information to contact organizations with internet-accessible programmable logic controllers resulted in a 34% reduction in PLC exposure in just a month, according to researchers, who noted testing the algorithm on Allen Bradley, Omron...

Also known as RISK:STATION, the zero-click vulnerability could be leveraged to compromise millions of devices, according to Midnight Blue researchers, who discovered and reported the issue at Pwn2Own Ireland.

Explore Cisco's AI-Ready Infrastructure Specialization, the groundbreaking UCS C885A M8 Rack Server, and AI PODs. Empower your business with cutting-edge technology and seize the $159B GenAI opportunity.

Impacted by the flaw, which stems from improper input validation to the web-based management interface, are Catalyst IW9165E Rugged Access Points and Wireless Clients, Catalyst IW9165D Heavy Duty Access Points, and Catalyst IW9167E Heavy Duty Access...

Such a disclosure, which is part of the Microchip's financial report for the second quarter of fiscal year 2025, comes two months after the firm confirmed the exfiltration of employee contact details, password hashes, and other data from its systems...

Extensive account exposure by a misconfigured API was discovered by game developer and ethical hacker Sean Kahler through a developer testing environment privileged access token obtained following the identification of hardcoded credentials in a game...

Such malware compromise, which was only identified in late September, has impacted login information, names, phone numbers, emails, shipping and billing addresses, and payment card details with CVV codes and expiration dates belonging to individuals...