security

security

In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking

von SecurityWeek • 22.05.2026

Other noteworthy stories that might have slipped under the radar: CISA contractor exposes credentials, Mythos testing and new features, Huawei router flaw triggered telecom blackout. The post In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking appeared first on SecurityWeek.

Mehr lesen →

security

Früherkennung als Schlüsselfaktor im Finanzsektor

von Security Insider • 22.05.2026

Armis fordert im Finanzsektor konsequente Früherkennung, um Cyberangriffe vor ihrer Entfaltung zu stoppen. Nur so könnten sich schnelle, kaskadierende Bedrohungen und professionelle Angreifer wirksam abwehren.

Mehr lesen →

security

Trend Micro warns of Apex One zero-day exploited in the wild

von BleepingComputer • 22.05.2026

Japanese cybersecurity software company Trend Micro has addressed an Apex One zero-day vulnerability exploited in attacks targeting Windows systems. […]

Mehr lesen →

security

Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks

von Darkreading • 22.05.2026

Ransomware and vendor breaches persist, but the 2026 Data Breach Investigations Report (DBIR) highlights how evolving social engineering tactics make the sector more vulnerable.

Mehr lesen →

security

Drupal: Critical SQL injection flaw now targeted in attacks

von BleepingComputer • 22.05.2026

Drupal is warning that hackers are attempting to exploit a „highly critical“ SQL injection vulnerability announced earlier this week. […]

Mehr lesen →

soc

CVE-2026-9082: Highly Critical Drupal Core SQL Injection Flaw Threatens PostgreSQL Sites

von SOC Prime • 22.05.2026

Drupal has released security updates for a “highly critical” security vulnerability in Drupal Core that can be exploited by anonymous attackers against sites using PostgreSQL databases. Tracked as the CVE-2026-9082 vulnerability, the issue resides in Drupal’s database abstraction API, which is supposed to sanitize queries before they reach the backend database. Drupal rates the flaw […]

Mehr lesen →

security

Why Chargebacks are Just One Piece of the Fraud Puzzle

von BleepingComputer • 22.05.2026

Fraud losses don’t stop at chargebacks. False declines, account takeovers, and abuse also damage revenue and trust. IPQS breaks down why fraud teams need broader visibility into risk and customer impact. […]

Mehr lesen →

soc

CVE-2026-45585: YellowKey BitLocker Bypass Exposes Encrypted Data on Windows Devices

von SOC Prime • 22.05.2026

BitLocker is designed to protect data at rest even when a device is lost, stolen, or powered off, which is why a bypass against that trust model draws immediate attention. The CVE-2026-45585 vulnerability, publicly referred to as YellowKey, is a Windows security feature bypass flaw that Microsoft says can let an attacker with physical access […]

Mehr lesen →

security

Won’t fix! – Teil 1: Warum Softwareschätzungen so zuverlässig falsch sind

von Heise Online • 22.05.2026

Softwareprojekte sprengen regelmäßig Zeit und Budget. Das liegt nicht an Inkompetenz, sondern an der Natur von Software und menschlichem Denken.

Mehr lesen →

security

iX-Workshop: Sicherer Betrieb von Windows 11 im Unternehmenheise-AngebotiX Magazin

von Heise Security Ticker • 22.05.2026

iX-Workshop: Sicherer Betrieb von Windows 11 im Unternehmenheise-AngebotiX Magazin Quelle: Heise Security Ticker

Mehr lesen →

📅 Kalender