Consulting News

News und Newsarchiv für unsere NC Consultants
Firefox Add-on

Windows: Update außer der Reihe korrigiert Login-Probleme

Erfasst 22.03.2026 10:29 | Heise Security
Microsoft hat am Freitag Probleme beim Login von Apps in Microsoft-Konten eingeräumt. Ein Windows-Notfallupdate löst das jetzt.
Quelle ansehen

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

Erfasst 21.03.2026 18:42 | BleepingComputer
The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing malware through official releas...
Quelle ansehen

Google adds ‘Advanced Flow’ for safe APK sideloading on Android

Erfasst 21.03.2026 15:27 | BleepingComputer
Google has announced a new mechanism in Android called Advanced Flow that will allow sideloading APKs from unverified developers for power users in a more secure way. [...]
Quelle ansehen

Microsoft Azure Monitor alerts abused in callback phishing campaigns

Erfasst 21.03.2026 15:12 | BleepingComputer
Microsoft Azure Monitor alerts are being abused to send callback phishing emails that impersonate warnings from the Microsoft Security Team about unauthorized charges on your ac...
Quelle ansehen

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

Erfasst 21.03.2026 14:27 | The Hackers News
Threat actors affiliated with Russian Intelligence Services are conducting phishing campaigns to compromise commercial messaging applications (CMAs) like WhatsApp and Signal to ...
Quelle ansehen

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Erfasst 21.03.2026 12:12 | The Hackers News
Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited to achieve remote code execu...
Quelle ansehen

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

Erfasst 21.03.2026 09:57 | The Hackers News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws impacting Apple, Craft CMS, and Laravel Livewire to its Known Exploited Vuln...
Quelle ansehen

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

Erfasst 21.03.2026 08:56 | The Hackers News
The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to be conducting follow-on attacks that have led to the compromise of a large ...
Quelle ansehen

FBI links Signal phishing attacks to Russian intelligence services

Erfasst 20.03.2026 21:55 | BleepingComputer
The FBI has issued a public service announcement warning that Russian intelligence-linked threat actors are actively targeting users of encrypted messaging apps such as Signal a...
Quelle ansehen

Oracle pushes emergency fix for critical Identity Manager RCE flaw

Erfasst 20.03.2026 19:55 | BleepingComputer
Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as ...
Quelle ansehen

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Erfasst 20.03.2026 19:40 | The Hackers News
Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a month to deliver malware that stole sensitive ...
Quelle ansehen

Russian Intelligence Services Target Commercial Messaging Application Accounts

Erfasst 20.03.2026 19:10 | CISA all alerts
CISA and the Federal Bureau of Investigation released a Public Service Announcement (PSA) warning about ongoing phishing campaigns cyber actors associated with the Russian Intel...
Quelle ansehen

Police take down 373,000 fake CSAM sites in Operation Alice

Erfasst 20.03.2026 18:25 | BleepingComputer
An international law enforcement action called Operation Alice has shut down over 373,000 dark web sites that offered fake CSAM packages. [...]
Quelle ansehen

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Erfasst 20.03.2026 17:25 | The Hackers News
A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed at which threat actors weaponize newl...
Quelle ansehen

Cloud-Abhängigkeit: Fast die Hälfte der Firmen hat keinen Plan B

Erfasst 20.03.2026 16:40 | Heise Security
83 Prozent der Unternehmen halten eine einseitige Abschaltung durch Cloud-Provider für realistisch. Fast die Hälfte hat keine Exit-Strategie.
Quelle ansehen

Neuer Ransomware Vorfall in der Schweiz - INP Schweiz

Erfasst 20.03.2026 16:40 | ransomware.live - Schweiz
INP Schweiz AG partners with leading companies in the energy gene ration and transmission sector, providing comprehensive engineeri ng services that include concept development,...
Quelle ansehen

CISA Adds Five Known Exploited Vulnerabilities to Catalog

Erfasst 20.03.2026 16:10 | CISA all alerts
CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-31277 Apple Multiple Products B...
Quelle ansehen

CISA orders feds to patch max-severity Cisco flaw by Sunday

Erfasst 20.03.2026 16:10 | BleepingComputer
The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity vulnerability, CVE-2026-20131, in Cisco Secure Firewall Mana...
Quelle ansehen
Hinweis: Dies ist ein News-Aggregator. Das Copyright liegt bei den jeweiligen Webseiten. Die Links wurden zum Zeitpunkt der Abfrage als virenfrei und sicher bewertet. Bitte dennoch mit der nötigen Vorsicht prüfen.