Biztonsági szemle

Infiltration of the third-party provider's systems between June 3 and 7 allowed threat actors to exfiltrate the customers' certain banking details, including full names, bank account numbers, and routing numbers leveraged for ACH fund transfers.

The campaign lured targets into downloading a fraudulent CrowdStrike Crash Reporter tool as a ZIP file with a trojanized InnoSetup installer.

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-4879 ServiceNow Improper Input Validation Vulnerability CVE-2024-5217 ServiceNow Incomplete List of Disallowed...

Security teams have to face that the attackers also have AI – here are three ways to more effectively operate in this new environment.

A large text-message phishing attack campaign attributed to the China-based Smishing Triad employs malicious iMessages.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

I found a malicious Word document with VBA code using the CrowdStrike outage for social engineering purposes. It's an .ASD file (AutoRecover file). My tool oledump.py can analyze it:

When Johannes talked about my diary entry " Protected OOXML Spreadsheets" on his StormCast podcast, he mentioned that I privately shared data on the power consumption of my desktop with a NVIDIA GeForce RTX 3080 GPU when running Hashcat.

With all the Blue Screen Of Death screenshots we saw lately, I got the idea to write about Sysinternals' tool NotMyFault.

Researchers say that a years-old security leak is putting a number of production model PCs at risk of persistent remote takeover.

Several vendors for consumer and enterprise PCs share a compromised crypto key that should never have been on the devices in the first place.

Researchers track the healthcare sector as experiencing the biggest financial losses, with banking and transportation following close behind.