Die BSI-Präsidentin Claudia Plattner fordert einen besseren IT-Schutz für die Energieversorgung in Deutschland. elxeneize – shutterstock.com Die Energieversorgung in Deutschland braucht aus Sicht der Präsidentin des Bundesamtes für Sicherheit in der Informationstechnik (BSI), Claudia Plattner, einen besseren Schutz. Die Behörde… Read More "BSI warnt vor Cyberattacken auf Energieversorgung"
2. Social Engineering Der einfachste Weg für Hacker, in ein Smartphone einzudringen, ist, den Nutzer zu täuschen – das Ziel von Social-Engineering-Angriffen. Zwar sind mobile Betriebssysteme besser geschützt als PCs oder Server und der Code von Anwendungen wird in einem… Read More "Sieben gängige Wege, ein Smartphone zu hacken"
May 25, 2025Ravie LakshmananThreat Intelligence / Software Security Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools like LetsVPN and QQ Browser to deliver the Winos 4.0 framework. The campaign, first detected by… Read More "Hackers Use Fake VPN and Browser NSIS Installers to Deliver Winos 4.0 Malware"
When we get the call, it’s our legal responsibility to attend jury service. But sometimes that call won’t come from the courts – it will be a scammer. 07 May 2025 • , 4 min. read Jury duty is one… Read More "Beware of phone scams demanding money for ‘missed jury duty’"
ESET Research has been tracking Danabot’s activity since 2018 as part of a global effort that resulted in a major disruption of the malware’s infrastructure 23 May 2025 As US authorities, along with Europol and Eurojust, have announced a global… Read More "Danabot under the microscope"
This week, WIRED launched our Rogues issue—which included going a bit rough ourselves. WIRED senior correspondent Andy Greenberg flew to Louisiana to see how easy it would be to recreate the 3D-printed gun authorities say they found on Luigi Mangione… Read More "The US Is Building a One-Stop Shop for Buying Your Data"
The issue raises concerns about the trustworthiness of encrypted communications relying on the library. “In order to spoof a message, the attacker needs a single valid message signature (inline or detached) as well as the plaintext data that was legitimately… Read More "Critical flaw in OpenPGP.js raises alarms for encrypted email services"
Die BlackBasta-Bande scheint ihr Repertoire um eine neue, modulare Malware erweitert zu haben. In einem LinkedIn-Post gaben Forscher des Cybersicherheitsunternehmens Prodaft an, dass die berüchtigte Gruppe die Schadsoftware Skitnet in Phishing-Angriffen auf Microsoft Teams eingesetzt hat. Die Experten veröffentlichten Indikatoren… Read More "Ransomware-Bande BlackBasta hat neuen Malware-Favoriten"
Wir haben die besten Lösungen in Sachen Customer Identity & Access Management für Sie zusammengestellt. Jackie Niam | shutterstock.com Customer Identity & Access Management (CIAM) bildet eine Unterkategorie von Identity & Access Management (IAM). CIAM wird dazu eingesetzt, die Authentifizierungs-… Read More "Customer Identity & Access Management: Die besten CIAM-Tools"
Cybersecurity researchers have discovered an indirect prompt injection flaw in GitLab’s artificial intelligence (AI) assistant Duo that could have allowed attackers to steal source code and inject untrusted HTML into its responses, which could then be used to direct victims… Read More "GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts"
