Biztonsági szemle

Threat actors could leverage the null pointer deference flaw in Zyxel firewall products to facilitate denial-of-service conditions in vulnerable firewalls with activated "Anti-Malware" functionality.

The U.S. Department of Energy has introduced a new $45 million cybersecurity research grant aimed at strengthening the energy industry against increasingly prevalent and sophisticated cybersecurity threats.

The Office of the National Cyber Director is urging a shift to memory-safe programming languages, such as Java, Rust, and Python.

More than 47% of those that paid ransoms were able to recover data and services without any issues, according to a report from Cybereason.

Investigation is already being conducted into the "alarming" cyberattack against the Royal Canadian Mounted Police's network on Feb. 23.

Ransomware has impacted the City of Oakley, prompting a state of emergency declaration even though no emergency services have been affected.

ThyssenKrupp had its Automotive Body Solutions business unit subjected to a cyberattack last week.

ALPHV/BlackCat ransomware operation allegedly targeted major U.S. healthcare revenue and payment cycle management provider Change Healthcare.

Cloud environments are being compromised by APT29 not only through previously breached access service account credentials but also via old employee accounts that were not disconnected by organizations.

Learn how you can ingest your cloud-specific vulnerability findings from Amazon Inspector into Cisco Vulnerability Management for effective prioritization.

Companies may file early now, but the filings are mostly generic – striking a balance between early filing and thorough incident reporting remains challenging.

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Corporation Equipment: MELSEC iQ-F Series Vulnerability: Insufficient Resource Pool 2. RISK EVALUATION Successful...