Aggregator

恶意样本静态分析-下

Executives today operate in an increasingly connected world, where their digital presence is often as visible as their professional reputation. From corporate bios and media interviews to personal social media activity, an executive’s digital footprint is extensive –and, if left unprotected, a cyber and physical security risk. Recent high-profile incidents, including the tragic killing of …

The post The Digital Executive: How to Protect Your Personal and Professional Digital Footprint appeared first on Security Boulevard.

Spanish authorities have arrested a hacker believed to be responsible for cyberattacks targeting over 40 public and private organizations globally. The suspect, apprehended on Tuesday in Calpe (Alicante), allegedly compromised sensitive data and disrupted critical services, including government agencies, international institutions, and private corporations. The operation was a collaborative effort between the Policía Nacional and […]

The post Authorities Arrested Hacker Who Compromised 40+ Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

多年以后，面对超级人工智能，人类将会回想起查尔斯·巴贝奇写下第一个计算机程序的那个遥远的1837年的8月

A recent cybersecurity threat has emerged in the form of the Nova Stealer malware, a fork of the popular SnakeLogger stealer. This malware is being marketed on hacking forums under a Malware-as-a-Service (MaaS) model, making it accessible to a wide range of attackers for as little as $50 for a 30-day license. The Nova Stealer […]

The post Beware of Nova Stealer Malware Sold for $50 on Hacking Forums appeared first on Cyber Security News.

A vulnerability has been found in AppHouseKitchen AlDente Charge Limiter up to 1.29 on macOS and classified as critical. This vulnerability affects the function shouldAcceptNewConnection of the file com.apphousekitchen.aldente-pro.helper of the component XPC Service. The manipulation leads to improper authorization. This vulnerability was named CVE-2025-1078. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure and acted very professional. It is recommended to upgrade the affected component. The vendor was contacted early about this disclosure and acted very professional.

Most people know that robots no longer sound like tinny trash cans. They sound like Siri, Alexa, and Gemini. They sound like the voices in labyrinthine customer support phone trees. And even those robot voices are being made obsolete by new AI-generated voices that can mimic every vocal nuance and tic of human speech, down to specific regional accents. And with just a few seconds of audio, AI can now clone someone’s specific voice.

This technology will replace humans in many areas. Automated customer support will save money by cutting staffing at ...

The post AIs and Robots Should Sound Robotic appeared first on Security Boulevard.

CISA has added five vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2025-0411 7-Zip Mark of the Web Bypass Vulnerability
• CVE-2022-23748 Dante Discovery Process Control Vulnerability
• CVE-2024-21413 Microsoft Outlook Improper Input Validation Vulnerability
• CVE-2020-29574 CyberoamOS (CROS) SQL Injection Vulnerability
• CVE-2020-15069 Sophos XG Firewall Buffer Overflow Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

CISA released six Industrial Control Systems (ICS) advisories on February 6, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-25-037-01 Schneider Electric EcoStruxure Power Monitoring Expert (PME)
• ICSA-25-037-02 Schneider Electric EcoStruxure
• ICSA-25-037-03 ABB Drive Composer
• ICSA-25-037-04 Trimble Cityworks
• ICSMA-25-037-01 MicroDicom DICOM Viewer
• ICSMA-25-037-02 Orthanc Server

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

Даже мощная защита Apple не смогла распознать новую угрозу FlexibleFerret.

A vulnerability, which was classified as problematic, was found in Google Cloud Application Integration. This affects an unknown part of the component JavaScript Task. The manipulation leads to inclusion of functionality from untrusted control sphere. This vulnerability is uniquely identified as CVE-2025-0982. It is possible to initiate the attack remotely. There is no exploit available. This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

Submit #492529 / VDB-294844

A vulnerability, which was classified as critical, has been found in BoldGrid Post and Page Builder Plugin up to 1.27.6 on WordPress. Affected by this issue is the function template_via_url. The manipulation leads to path traversal. This vulnerability is handled as CVE-2025-0859. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

Phishing attempts, malicious redirects, and hidden malware can lurk in seemingly harmless links, putting your company’s data and systems at risk. To streamline threat detection and response, ANY.RUN has upgraded its browser extension, making the Safebrowsing feature free for all users.  How Safebrowsing Works in ANY.RUN’s Extension  Safebrowsing from ANY.RUN provides a fully functional browser, allowing users to […]

The post Instant URL Analysis: Use Safebrowsing via ANY.RUN’s Extension appeared first on ANY.RUN's Cybersecurity Blog.

Хакеры плетут сети в корпоративных серверах, чтобы заполучить все секреты.

工信部认证！360多项成果获评2024年网络安全技术应用典型案例

A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple's and Google's respective app stores to steal victims' mnemonic phrases associated with cryptocurrency wallets.  The attacks leverage an optical character recognition (OCR) model to exfiltrate select images containing wallet recovery phrases from photo libraries to a command-and-control (C2) server,

Artificial Intelligence (AI) is transforming industries by automating tasks, improving decision-making, and enhancing cybersecurity. However, AI models are increasingly being targeted by adversarial attacks, which can manipulate or compromise their integrity. The protection of sensitive data along with trust maintenance and accurate decision-making demands the establishment of AI security. This blog investigates AI security while […]

The post What is AI Security? How to Protect Your AI Models from Adversarial Attacks? first appeared on StrongBox IT.

The post What is AI Security? How to Protect Your AI Models from Adversarial Attacks? appeared first on Security Boulevard.

Задержаны лидеры опасного онлайн-культа.