Ugrás a tartalomra

Biztonsági szemle

Atlassian releases security advisory for Confluence
2024. szep. 3.
Biztonsági szemle

Cryptojacking facilitated by critical Atlassian Confluence exploit

Attacks by the first threat actor involved abuse of the flaw to deploy the XMRig miner while the second threat actor leveraged a shell script to facilitate miner delivery across a targeted environment's accessible endpoints.
scmagazine.com
Tovább
Plain code with the word "cyberattack" in red.
2024. szep. 3.
Biztonsági szemle

Cobalt Strike deployment sought by covert China-targeted campaign

Threat actors distributed phishing emails with malicious ZIP files containing a Word-spoofing LNK file purporting to be a list of individuals who committed remote control software regulation violations, which facilitates the deployment of a Microsoft...
scmagazine.com
Tovább
VMware company brand logo on official website
2024. szep. 3.
Biztonsági szemle

New Cicada3301 RaaS operation ramps up attacks against VMware ESXi systems

Attacks by the RaaS operation commence with the infiltration of ScreenConnect via stolen or brute-forced credentials, as well as an IP address previously associated with the Brutus botnet, to facilitate the distribution of the Cicada3301 ransomware.
scmagazine.com
Tovább
Computer keyboard, close-up button of the flag of North Korea.
2024. szep. 3.
Biztonsági szemle

Chromium zero-day leveraged by North Korean hackers

Social engineering schemes have been leveraged by Citrine Sleet to lure targets into visiting a website that triggered the exploit, which enables not only the deployment of the rootkit but also of a shellcode for the Windows kernel privilege...
scmagazine.com
Tovább
2024. szep. 3.
Biztonsági szemle

Name That Edge Toon: Bug Off

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
darkreading.com
Tovább
2024. szep. 3.
Biztonsági szemle

LOYTEC Electronics LINX Series

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: LOYTEC electronics GmbH Equipment: LINX series Vulnerabilities: Cleartext Transmission of Sensitive Information...
cisa.gov
Tovább
2024. szep. 3.
Biztonsági szemle

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-20123 Draytek VigorConnect Path Traversal Vulnerability CVE-2021-20124 Draytek VigorConnect Path Traversal...
cisa.gov
Tovább
2024. szep. 3.
Biztonsági szemle

CISA Releases One Industrial Control Systems Advisory

CISA released one Industrial Control Systems (ICS) advisory on September 3, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-247-01 LOYTEC Electronics LINX Series...
cisa.gov
Tovább
2024. szep. 3.
Biztonsági szemle

ISC Stormcast For Tuesday, September 3rd, 2024 https://isc.sans.edu/podcastdetail/9122, (Tue, Sep 3rd)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
isc.sans.edu
Tovább
Featured image for {“vendor”:”ppworks”,”type”:”segment”,”id”:”12982″} podcast from PPWorks
2024. szep. 3.
Biztonsági szemle

Leadership Lessons from the First 100 Episodes of CISO Stories - Todd Fitzgerald - BSW Vault

scmagazine.com
Tovább
2024. szep. 2.
Biztonsági szemle

Protected OOXML Text Documents, (Mon, Sep 2nd)

Just like " Protected OOXML Spreadsheets", Word documents can also be protected:
isc.sans.edu
Tovább
Featured image for {“vendor”:”ppworks”,”type”:”segment”,”id”:”12953″} podcast from PPWorks
2024. szep. 2.
Biztonsági szemle

Close the Security Theater: Enter Resilience - Kelly Shortridge - ASW Vault

scmagazine.com
Tovább
Nyelv
Célcsoport