Aggregator

Неужели китайские хакеры Salt Typhoon вернулись?

At this very moment, nation-state actors and opportunistic criminals are looking for any way to target Americans and undermine our national security.  Their battlefield of choice is cyberspace. Cybersecurity is the preeminent challenge of our time, and threats to our networks impact far more than just our data––they impact the resilience of our communities, the […]

The post Government and industry must work together to secure America’s cyber future appeared first on CyberScoop.

In mid-2025, Secureworks Counter Threat Unit (CTU) researchers uncovered a sophisticated cyber campaign where Chinese state-sponsored threat actors from the BRONZE BUTLER group exploited a critical zero-day vulnerability in Motex LANSCOPE Endpoint Manager to gain unauthorized access to corporate networks and extract sensitive data. The discovery marks another chapter in a long-running pattern of exploitation […]

The post Threat Actors Exploit LANSCOPE Endpoint Manager Zero-Day Vulnerability to Steal Confidential Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A massive 4TB SQL Server backup file belonging to global accounting giant Ernst & Young (EY) was discovered publicly accessible on Microsoft Azure. Cybersecurity firm Neo Security discovered a 4TB SQL Server backup belonging to accounting giant Ernst & Young (EY) publicly accessible on Microsoft Azure during a routine scan. Neo Security’s lead researcher identified a […]

本文提出了一种基于功能性变更的版本识别方法，并在五个具有大量漏洞的知名远程软件系统上实现了原型框架VersionSeek。

Clearview AI faces a criminal complaint in Austria for allegedly ignoring EU data protection rulings

Сталь ЭП302М-Ш. Что это за материал и почему от него зависит будущее российской атомной энергетики.

黑客激进分子正在持续入侵

A new wave of cyber threats is emerging as criminals increasingly weaponize AdaptixC2, a free and open-source Command and Control framework originally designed for legitimate penetration testing and red team operations. Security researchers have uncovered a disturbing trend where advanced threat actors deploy this extensible post-exploitation tool across global ransomware campaigns, transforming a utility meant […]

The post Threat Actors Actively Using Open-Source C2 Framework to Deliver Malicious Payloads appeared first on Cyber Security News.

WhatsApp has announced a significant security upgrade that makes protecting your chat backups simpler and more secure than ever before. The messaging platform is introducing passkey-encrypted backups, a new feature that eliminates the need for complicated passwords or lengthy encryption keys. Instead, users can now protect their backups using their fingerprint, face recognition, or screen […]

The post WhatsApp Implements Passkey System to Boost Backup Privacy appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

全港第二届网络安全攻防演练落幕！360获香港特区政府致谢

“懂AI更懂安全”！360引领行业智能化变革

零基础也能学！掌握VMProtect加密原理与逆向实战技巧

文末投递简历

Chromium漏洞恐致全球浏览器崩溃，谷歌两月未回应。

看雪论坛作者ID：阿强

A vulnerability classified as critical was found in ISO 15118-2 Network and Application Protocol Requirements 8.3. Impacted is an unknown function of the component Signal Level Attenuation Characterization Protocol Handler. Such manipulation leads to improper restriction of communication channel to intended endpoints. This vulnerability is traded as CVE-2025-12357. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended that additional encryption be implemented.

A vulnerability classified as critical has been found in Therefore Corporation Therefore Online and Therefore On-Premises up to 2025. This issue affects some unknown processing. This manipulation causes authentication bypass by spoofing. This vulnerability appears as CVE-2025-11843. The attack may be initiated remotely. There is no available exploit.

Intigriti's Ed Parsons on How Regs Are Pushing Firms Toward Proactive Security
The NIS2 Directive has driven significant improvements in vulnerability management across Europe. Organizations are accelerating vulnerability discovery by engaging with crowdsourced security communities and ethical hackers, said Ed Parsons, chief operations officer at Intigriti.