Скачать или смотреть RadioCSIRT – Your Cybersecurity Update for Saturday, 29 November 2025 (Ep.35)

RadioCSIRT – Your Cybersecurity Update for Saturday, 29 November 2025 (Ep.35)

Скачать RadioCSIRT – Your Cybersecurity Update for Saturday, 29 November 2025 (Ep.35) бесплатно в качестве 4к (2к / 1080p)

У нас вы можете скачать бесплатно RadioCSIRT – Your Cybersecurity Update for Saturday, 29 November 2025 (Ep.35) или посмотреть видео с ютуба в максимальном доступном качестве.

Для скачивания выберите вариант из формы ниже:

Информация по загрузке:

Cкачать музыку RadioCSIRT – Your Cybersecurity Update for Saturday, 29 November 2025 (Ep.35) бесплатно в формате MP3:

Если иконки загрузки не отобразились, ПОЖАЛУЙСТА, НАЖМИТЕ ЗДЕСЬ или обновите страницу
Если у вас возникли трудности с загрузкой, пожалуйста, свяжитесь с нами по контактам, указанным в нижней части страницы.
Спасибо за использование сервиса video2dn.com

Описание к видео RadioCSIRT – Your Cybersecurity Update for Saturday, 29 November 2025 (Ep.35)

Welcome to your daily cybersecurity briefing.

CVSS v4.0 – Understanding the New Vulnerability Scoring Model
A new analysis from Malwarebytes provides a clear breakdown of CVSS v4.0, detailing how the updated framework shifts focus toward exploitability, environmental modifiers, and attacker utility. The article highlights changes in severity interpretation, granularity in attack requirements, and the impact of supplemental metrics—key for vulnerability prioritization across CERT, SOC, and risk teams.

Tomiris Deploys New Malware Tools
Kaspersky researchers have identified new components in the Tomiris malware ecosystem, including updated loaders and covert communications modules. These additions reinforce Tomiris’ operational overlap with Turla-linked activity while demonstrating improvements in stealth, modularity, and long-term persistence tactics used across Central Asian and Middle Eastern networks.

CISA Adds New KEV Entry
CISA has added one vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog. The advisory stresses active exploitation in the wild and mandates federal agencies to apply mitigation measures before the deadline. The alert underscores CISA’s continued emphasis on exploitation-based risk scoring and operational directives for rapid patching.

Legacy Python Bootstrap Scripts Create Supply Chain Exposure
A report from The Hacker News warns that outdated Python bootstrap scripts used in legacy automation pipelines can introduce severe supply chain weaknesses. The issue stems from insecure dependency retrieval mechanisms, outdated hashing practices, and implicit trust in remote package sources—raising the risk of tampering and malicious code injection in CI/CD environments.

Don’t Think – Patch Now.

Sources:

• Malwarebytes – CVSS v4.0 - https://www.malwarebytes.com/blog/new...
• Securelist – Tomiris - https://securelist.com/tomiris-new-to...
• CISA – KEV Catalog Update - https://www.cisa.gov/news-events/aler...
• The Hacker News – Python Bootstrap Risk - https://thehackernews.com/2025/11/leg...

Your feedback is welcome.
Email: [email protected]
Website: https://www.radiocsirt.com
Weekly Newsletter: https://radiocsirtintl.substack.com

Комментарии

Информация по комментариям в разработке