Biztonsági szemle

Hackread reports that Santander Bank was claimed to be attacked by the ShinyHunters threat operation weeks after the major global financial entity confirmed having been impacted by a third-party data breach that mostly impacted customers in Chile...

U.S. enterprise risk intelligence and crisis management software provider Everbridge has confirmed having its corporate systems breached following an attack leveraging information obtained from a previous phishing campaign against its employees...

Consumer data is still a prime target for threat actors, and organizational consumption of data must be aligned to protect it. The new rights act seeks to do some of this, but it still needs tweaking.

More than 600,000 internet routers across several Midwest states have been taken offline by a widespread cyberattack against an unnamed U.S. telecommunications firm last October that involved the distribution of a malicious firmware update, Reuters...

Cybernews reports that updates have been introduced to the LightSpy surveillance tool to expand its targeting to systems running on older iterations of macOS after initially only targeting iOS devices.

Vulnerable Palo Alto Networks PAN-OS firewalls impacted by the flaw, tracked as CVE-2024-3400, have been targeted by suspected Lazarus Group-linked threat actors to distribute an updated version of the RedTail cryptocurrency mining malware since late...

Ukrainian military entities have been targeted in a now-disrupted month-long phishing attack campaign by Russia-linked threat operation FlyingYeti, also known as UAC-0149, that deployed the COOKBOX malware with cmdlet loading and execution...

U.S.-based IT software providers for the industrial and research sectors, European energy firms, and Asian pharmaceutical entities have been subjected to data exfiltration attacks by advanced persistent threat operation LilacSquid as part of a...

OSIM is a great advancement towards a more secure and resilient supply chain ecosystem.

A 2024. 22. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2024.05.24. és 2024.05.30. között kezelt incidensek statisztikai adatait is tartalmazza.

Python remains a nice language for attackers and I keep finding interesting scripts that are usually not very well detected by antivirus solutions. The one I found has a VT score of 7/65! (SHA256...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.