Biztonsági szemle

The RaaS newcomer uses Rust-coded tools to disable security software and execute its payload.

Vulnhuntr is a Python static code analyzer that uses Claude AI to find and explain complex, multistep vulnerabilities.

Amazon's open source Cloud Development Kit generates dangerously predictable naming patterns that could lead to an account takeover.

The White House has put on its white hat and tossed its weight behind the cybersecurity research community.

Even after the ransom is paid, such attacks lead to spikes in strokes and heart attacks and increased wait times for patients.

An attacker compromised one of Fortinet's most sensitive products and mopped up all kinds of reconnaissance data helpful for future mass device attacks.

A government report's criticism of the 100x metric often used to justify fixing software earlier in development fuels a growing debate over pushing responsibility for secure code onto developers.

Third-party vendors responsible for 90% of multiple breaches in sector.

We do keep seeing attackers "poking around" looking for enabled development features. Developers often use these features and plugins to aid in debugging web applications. But if left behind, they may provide an attacker with inside to the...