Aggregator

A sophisticated cyber campaign orchestrated by the Russian state-backed group Storm-2372 has emerged, exploiting device code phishing tactics to circumvent Multi-Factor Authentication (MFA) security measures. This targeted approach represents a significant escalation in threat actors’ capabilities to defeat advanced security systems through social engineering, allowing attackers to gain unauthorized access to high-value targets without triggering […]

The post Russian APT Hackers Using Device Code Phishing Technique to Bypass MFA appeared first on Cyber Security News.

ИИ теперь работает лучше копирайтеров — и атакует 420000 сайтов.

在druid+Hsql依赖下，禁用了一堆类，能否利用springAOP链子来攻击成功呢？

APP资源提取思路分享

Oracle confirmed a hacker stole credentials from two obsolete servers but said no Oracle Cloud systems or customer data were affected. Oracle confirmed a hacker stole and leaked credentials from two obsolete servers, but said no Oracle Cloud systems or customer data were affected. The threat actor accessed usernames from two outdated, non-Oracle Cloud Infrastructure […]

基于强化学习训练得到的DQN智能体，亮点在于打破传统的漏洞扫描工具的大量攻击payload爆破，本项目利用奖励机制，采用 大量waf绕过方法来训练自动生成xss样本的智能体，使其能产生传统黑客意想不到的攻击手法

sleep obfuscation

A sophisticated fraud scheme known as SMS pumping is quietly draining millions from businesses worldwide by exploiting SMS verification systems. This cybercrime tactic, similar to a modern-day toll scam, involves artificially inflating SMS traffic through automated means, generating fraudulent revenue while leaving legitimate businesses to absorb unexpected costs. The scheme has become increasingly prevalent as […]

The post Threat Actors Turning Messaging Service into a Cash Making Machine appeared first on Cyber Security News.

分析内核提权中uaf和rop用法

在一次闲来无事时，发现一款开源的java项目，于是打开idea进行一波漏洞挖掘。

Apache Mina 是一款基于 Java 的高性能网络应用框架，其核心功能在于简化复杂网络通信的开发流程，同时确保具备可扩展性与高效性。

VxWorks的固件分析 由于binwalk无法直接解包出 需要手动提取 并且包括符号表修复过程

A vulnerability, which was classified as critical, was found in Juniper Junos OS and Junos OS Evolved. Affected is an unknown function of the component Layer 2 Control Protocol Daemon. The manipulation leads to signed to unsigned conversion error. This vulnerability is traded as CVE-2025-30646. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Juniper Junos OS up to 24.2R1 on MX and classified as critical. Affected by this vulnerability is an unknown functionality of the component Packet Forwarding Engine. The manipulation leads to memory leak. This vulnerability is known as CVE-2025-30647. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Xen. It has been classified as critical. Affected is an unknown function of the component Grant Table handler. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2022-23041. The attack can only be initiated within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Linux Kernel up to 5.13.3. It has been rated as critical. Affected by this issue is the function posix_acl_create of the component nfs. The manipulation leads to memory leak. This vulnerability is handled as CVE-2021-47320. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.12.12. It has been declared as critical. This vulnerability affects the function free_netdev of the component Ethernet. The manipulation leads to use after free. This vulnerability was named CVE-2021-47235. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 4.19.221/5.4.167/5.10.87/5.15.10. This vulnerability affects unknown code of the component mac80211. The manipulation leads to uninitialized pointer. This vulnerability was named CVE-2021-47602. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Juniper Junos OS and Junos OS Evolved. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Routing Protocol Daemon. The manipulation leads to improper check for unusual conditions. This vulnerability is known as CVE-2025-21597. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

在网上没搜到相关的解题过程，所以就尝试自己做了