Biztonsági szemle

More than 5,500 edge devices from over 50 brands around the world have been hacked and brought together into a colossal honeypot network by suspected Chinese-speaking threat actor ViciousTrap, who has been leveraging a single IP address for daily...

After years in services and business development, Christopher Weiland is applying his technology expertise to drive sustainability innovation at Cisco.

Most breaches are caused by everyday human mistakes. The 90-5-5 Concept is a framework that addresses this by shifting the conversation to proactive design.

CISA released one Industrial Control Systems (ICS) advisory on May 27, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-146-01 Johnson Controls iSTAR Configuration...

Today, CISA, in collaboration with the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other international and U.S. partners, released new guidance for organizations seeking to procure Security Information and Event...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.3 ATTENTION: Low attack complexity Vendor: Johnson Controls Inc. Equipment: iSTAR Configuration Utility (ICU) tool Vulnerability: Use of Uninitialized Variable 2. RISK EVALUATION Successful exploitation of...

New Cisco Research Reveals Overwhelming Demand for Agentic AI to Transform the Way Technology Vendors Deliver Customer Experience With agentic AI reaching a new level of maturity, we’re closer than ever to solving some of the most persistent customer...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Didier recently published several diaries related to steganography. I have to admit that steganography isn't exactly my favorite topic. It is one of those "neat" infosec toys, but its applicability is limited. Data exfiltration usually does...

A reflection of the milestones and achievements of this vibrant community

An ongoing international effort against cybercrime operators has announced a mass takedown of ransomware networks.