Biztonsági szemle

More than 1,800 stores on major e-commerce platform Shopify using Saara's EcoReturns and WyseMe plugins had 25 GB of data exposed due to the developer's misconfigured MongoDB database, according to Cybernews.

Major UK street newspaper and social enterprise The Big Issue had its systems confirmed to be impacted by a cyberattack days after the intrusion was admitted by the Qilin ransomware operation, which claimed the exfiltration of 550 GB of confidential...

CVE: CVE-2024-28872 Title: Incorrect TLS certificate validation can lead to escalated privileges Document version: 1.0 Posting date: 27 March 2024 Program impacted: Stork Versions affected: Stork 0.15.0 -> 1.15.0 Severity: High Exploitable: Remotely...

Industrial cyberespionage could potentially be facilitated by the new suspicious SqzrFramework480 NuGet package seemingly targeted to developers using tools by Chinese industrial firm Bozhon Precision Industry Technology Co., according to The Hacker...

Today, Google released its report “We’re All in this Together: A Year in Review of Zero-Days Exploited In-the-Wild in 2023.”

Today, Google released its report “We’re All in this Together: A Year in Review of Zero-Days Exploited In-the-Wild in 2023.”

Today, I noticed in our "first seen URL" list, two URLs I didn't immediately recognize:

Security Cloud is the future for Cisco Security and our customers that requires the utmost in engineering agility from us

Apple released security updates to address a vulnerability (CVE-2024-1580) in Safari and macOS. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

A PoC exploit is available for the critical flaw, which was added to CISA’s KEV catalog Monday.