Biztonsági szemle

Ivanti has released a security update addressing an OS command injection vulnerability (CVE-2024-8190) affecting Ivanti Cloud Services Appliance (CSA) 4.6 (all versions before patch 519). A cyber threat actor could exploit this vulnerability to take...

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-8190 Ivanti Cloud Services Appliance OS Command Injection Vulnerability These types of vulnerabilities are...

The quantum computing era will arrive in a few short years – now’s the time to plan for it.

A 2024. 37. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2024.09.06. és 2024.09.12. között kezelt incidensek statisztikai adatait is tartalmazza.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

A technique to abuse Microsoft's built-in source code editor has finally made it into the wild, thanks to China's Mustang Panda APT.

The stability cost of patching a bug can prevent many developers from remedying a known flaw in their own software.

Researchers bought an expired WHOIS server domain for $20 and quickly received millions of WHOIS queries.

This bulletin includes coordinated influence operation campaigns terminated on our platforms in Q3 2024. It was last updated on September 12, 2024.JulyWe terminated 89 Y…

[This is a Guest Diary by Paul Olson, an ISC intern as part of the SANS.edu BACS program]

It's safe to say that I absolutely LOVE the CCNA certification. It continues to change the lives of engineers worldwide, and I'm excited to be helping new engineers earn their CCNA certifications.

Their findings highlight the frailty of some of the mechanisms for establishing trust on the Internet.