Aggregator

Специалисты восстановили полный таймлайн взлома GitHub.

РФ вошла в топ-10 стран по инвестициям в кибербезопасность.

Как жил и о чём беспокоился отец электромагнетизма?

3月29日，西安·纽加轰趴馆高新旗舰店见！

3月29日，西安·纽加轰趴馆高新旗舰店见！

3月29日，西安·纽加轰趴馆高新旗舰店见！

Cloudflare launched the Cloudforce One threat events platform to provide real-time intelligence on cyberattacks occurring across the Internet. Based on telemetry from Cloudflare’s massive global network, Cloudforce One’s threat events platform helps security teams get more done with the same resources by spotting issues faster, responding to threats quickly and staying one step ahead of how cybercriminals operate and what systems they target. Every day, cybercriminals change tactics, finding new vulnerabilities to exploit and ways … More →

The post Cloudforce One threat events platform provides a real-time view of threat activity appeared first on Help Net Security.

Cytex launched AICenturion, a LLM Firewall with Data Loss Prevention (DLP) capabilities. GenAI’s risks intensify as LLMs prevent enterprises from directly controlling their processes and data handling. AICenturion provides the trust, risk and security management that enterprises need by enabling AI model discovery, data loss prevention, threat mitigation, and compliance framework policy enforcement. “With the explosive adoption of LLMs, we’re seeing a new frontier of risk emerge: the exfiltration of sensitive data uploaded into LLMs, … More →

The post Cytex AICenturion protects against data exfiltration appeared first on Help Net Security.

Политическая активность и криптоактивы привлекают внимание киберпреступников.

Most organizations are using AI in some way today, whether they know it or not. Some are merely beginning to experiment with it, using tools like chatbots. Others, however, have integrated agentic AI directly into their business procedures and APIs. While both types of organizations are undoubtedly realizing remarkable productivity and efficiency benefits, they may [...]

The post Data Leaks and AI Agents: Why Your APIs Could Be Exposing Sensitive Information appeared first on Wallarm.

The post Data Leaks and AI Agents: Why Your APIs Could Be Exposing Sensitive Information appeared first on Security Boulevard.

A severe vulnerability in Synology’s DiskStation Manager (DSM) allows remote attackers to execute arbitrary code with no user interaction.  The flaw, disclosed during PWN2OWN 2024, received a Critical severity rating with a CVSS score of 9.8, indicating its potential for widespread exploitation. The primary vulnerability, identified as CVE-2024-10441, stems from improper encoding or escaping of […]

The post Critical Synology Vulnerability Let Attackers Remote Execute Arbitrary Code appeared first on Cyber Security News.

A vulnerability classified as critical has been found in Apache Airflow MySQL Provider up to 6.1.x. Affected is an unknown function. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-27018. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Elfatek Elektronics ANKA JPD-00028 up to 19.03.2025. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to authentication bypass by capture-replay. The identification of this vulnerability is CVE-2024-12137. The attack can only be done within the local network. There is no exploit available.