Ugrás a tartalomra

Biztonsági szemle

2024. november 26.
Biztonsági szemle

Hitachi Energy MicroSCADA Pro/X SYS600

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.9 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MicroSCADA Pro/X SYS600 Vulnerabilities: Improper Neutralization of Special Elements in Data Query Logic, Improper...
cisa.gov
Tovább
2024. november 26.
Biztonsági szemle

CISA Releases Six Industrial Control Systems Advisories

CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-331-01 Schneider Electric PowerLogic...
cisa.gov
Tovább
2024. november 26.
Biztonsági szemle

Hitachi Energy RTU500 Scripting Interface

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: Hitachi Energy Equipment: RTU500 Scripting Interface Vulnerability: Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of this vulnerability...
cisa.gov
Tovább
2024. november 26.
Biztonsági szemle

Schneider Electric PowerLogic P5

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: PowerLogic P5 Vulnerability: Use of a Broken or Risky Cryptographic Algorithm 2. RISK EVALUATION If an attacker has physical access to...
cisa.gov
Tovább
2024. november 26.
Biztonsági szemle

Schneider Electric EcoStruxure Control Expert, EcoStruxure Process Expert, and Modicon M340, M580 and M580 Safety PLCs

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: Schneider Electric Equipment: EcoStruxure Control Expert, EcoStruxure Process Expert and Modicon M340, M580 and M580 Safety PLCs Vulnerabilities: Improper Enforcement...
cisa.gov
Tovább
2024. november 26.
Biztonsági szemle

ISC Stormcast For Tuesday, November 26th, 2024 https://isc.sans.edu/podcastdetail/9232, (Tue, Nov 26th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
isc.sans.edu
Tovább
email_AdobeStock_561426473
2024. november 26.
Biztonsági szemle

Phishing attacks via ‘URL rewriting’ to evade detection escalate

Attackers have used multiple layers of URL rewriting services and other tactics to evade email security.
scmagazine.com
Tovább
Featured image for {“vendor”:”ppworks”,”type”:”segment”,”id”:”13351″} podcast from PPWorks
2024. november 25.
Biztonsági szemle

2nd Edition: How to Measure Anything in Cybersecurity Risk - Doug Hubbard - BSW Vault

scmagazine.com
Tovább
2024. november 25.
Biztonsági szemle

Ransomware Attack on Blue Yonder Hits Starbucks, Supermarkets

The incident is typical of the heightened threats organizations face during the holidays, when most companies reduce their security operations staff by around 50%.
darkreading.com
Tovább
2024. november 25.
Biztonsági szemle

Phishing Prevention Framework Reduces Incidents by Half

The anti-fraud plan calls for companies to create a pipeline for compiling attack information, along with formal processes to disseminate that intelligence across business groups.
darkreading.com
Tovább
2024. november 25.
Biztonsági szemle

BlackBasta Ransomware Brand Picks Up Where Conti Left Off

New analysis says law enforcement efforts against Russian-language ransomware-as-a-service (RaaS) infrastructure helped consolidate influence behind BlackBasta, but some experts aren't so sure the brand means that much.
darkreading.com
Tovább
System hacking with info message. Background with a code on a blue background and a virus warning. Cyber security and cybercrime
2024. november 25.
Biztonsági szemle

Avast anti-rootkit driver used to seize control of infected systems

Malware leverages a legitimate – but outdated – Avast kernel driver, which lets it evade defenses and wreak havoc on systems.
scmagazine.com
Tovább
Nyelv
Célcsoport