Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
Heise Sicherheits NewsMicrosoft hat den Webbrowser Edge in Version 121 herausgegeben. Sie stopft eine kritische Sicherheitslücke und liefert Support für AV1-Videos....
Zugriffe: 58

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
Heise Sicherheits NewsEntwickler von Juniper haben in Junos OS mehrere Sicherheitslücken geschlossen. Noch sind aber nicht alle Updates verfügbar....
Zugriffe: 64

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
Heise Sicherheits NewsWeil Bluetooth Sicherheitsprobleme hat, sucht die US-Kriegsmarine nach einem neuen drahtlosen Übertragungsverfahren. Verschlüsselt und energiesparsam, bitte.​...
Zugriffe: 54

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comCritical infrastructure attacks were analyzed in a recent report. The report found more than 420 million attacks between January and December 2023....
Zugriffe: 57

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comBrowser security was analyzed in a recent report. The report uncovered a 198% increase in browser-based phishing attacks in the second half of 2023....
Zugriffe: 54

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comAccording to a threat report by Expel, identity-based incidents accounted for 64% of all investigated, a volume increase of 144% from 2022 to 2023....
Zugriffe: 52

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comAccording to a recent password report by Specops Software, passwords remain the primary authentication method for 88% of organizations....
Zugriffe: 50

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comExplore the importance of secure access in architectural design, from safety and future-proofing to smart technology integration and cost efficiency....
Zugriffe: 53

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comFremont County suffered a cyberattack in 2022 that took pieces of the county's law enforcement's systems offline, including communications....
Zugriffe: 51

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsApple on Monday released security updates for iOS, iPadOS, macOS, tvOS, and Safari web browser to address a zero-day flaw that has come under active exploitation in the wild. The issue, tracked as CVE-2024-23222, is a type confusion bug in the WebKit browser engine that could be exploited by a threat actor to achieve arbitrary code execution when processing maliciously crafted web content. The...
Zugriffe: 36

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comAccording to a recent cybersecurity report by Armis, geopolitical issues are affecting the cybersecurity landscape, including increased cyberattacks....
Zugriffe: 40

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsMedia organizations and high-profile experts in North Korean affairs have been at the receiving end of a new campaign orchestrated by a threat actor known as ScarCruft in December 2023. "ScarCruft has been experimenting with new infection chains, including the use of a technical threat research report as a decoy, likely targeting consumers of threat intelligence like cybersecurity...
Zugriffe: 31

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsSeveral public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a new software supply chain attack method called MavenGate. "Access to projects can be hijacked through domain name purchases and since most default build configurations are vulnerable, it would be difficult or even impossible to know whether an attack was being performed...
Zugriffe: 34

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
securitymagazine.comSecurity magazine brings you a list of the top physical security conferences to attend globally in 2024, including government and private events....
Zugriffe: 32

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsWe analyzed 2,5 million vulnerabilities we discovered in our customer’s assets. This is what we found. Digging into the data The dataset we analyze here is representative of a subset of clients that subscribe to our vulnerability scanning services. Assets scanned include those reachable across the Internet, as well as those present on internal networks. The data includes findings for network...
Zugriffe: 28

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsCybersecurity researchers have discovered a new Java-based "sophisticated" information stealer that uses a Discord bot to exfiltrate sensitive data from compromised hosts. The malware, named NS-STEALER, is propagated via ZIP archives masquerading as cracked software, Trellix security researcher Gurumoorthi Ramanathan said in an analysis published last week. The ZIP file contains...
Zugriffe: 31

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsThe U.S. Federal Trade Commission (FTC) is continuing to clamp down on data brokers by prohibiting InMarket Media from selling or licensing precise location data. The settlement is part of allegations that the Texas-based company did not inform or seek consent from consumers before using their location information for advertising and marketing purposes. "InMarket will also be prohibited from...
Zugriffe: 27

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsCybersecurity researchers are warning of a "notable increase" in threat actor activity actively exploiting a now-patched flaw in Apache ActiveMQ to deliver the Godzilla web shell on compromised hosts. "The web shells are concealed within an unknown binary format and are designed to evade security and signature-based scanners," Trustwave said. "Notably, despite the binary's unknown file...
Zugriffe: 33

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsAn advanced China-nexus cyber espionage group previously linked to the exploitation of security flaws in VMware and Fortinet appliances has been attributed to the abuse of a critical vulnerability in VMware vCenter Server as a zero-day since late 2021. "UNC3886 has a track record of utilizing zero-day vulnerabilities to complete their mission without being detected, and this latest example...
Zugriffe: 30

Details
Hauptkategorie: IT News aus aller Welt
Kategorie: Sicherheitsinfos
TheHackersNewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday issued an emergency directive urging Federal Civilian Executive Branch (FCEB) agencies to implement mitigations against two actively exploited zero-day flaws in Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS) products. The development arrives as the vulnerabilities – an authentication bypass...
Zugriffe: 32

Weiter