Aggregator

欢迎您加入科锐！和正能量的同学们一同前行！用汗水挥洒青春,用拼搏诠释梦想！

新来的小伙伴Denny在使用JS脚本测试NDB时遇到拦路虎，node进程打印出下面这个信息后就崩溃闪退了。

Threat actors have observed the increasingly common ClickFix technique to deliver a remote access trojan named NetSupport RAT since early January 2025. NetSupport RAT, typically propagated via bogus websites and fake browser updates, grants attackers full control over the victim's host, allowing them to monitor the device's screen in real-time, control the keyboard and mouse, upload and download

Криптовалютные схемы и анонимность не спасли преступников от правосудия.

A vulnerability was found in Wattsense Bridge up to 6.4.0. It has been classified as critical. This affects an unknown part. The manipulation leads to missing protection mechanism for alternate hardware interface. This vulnerability is uniquely identified as CVE-2025-26409. It is possible to launch the attack on the physical device. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Wattsense Bridge up to 6.4.0 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to hard-coded credentials. This vulnerability is handled as CVE-2025-26410. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Wattsense Bridge and classified as critical. Affected by this vulnerability is an unknown functionality of the component Plugin Manager. The manipulation leads to unrestricted upload. This vulnerability is known as CVE-2025-26411. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

The USB Army Knife is a versatile red-teaming tool for penetration testers that emulates a USB Ethernet adapter for traffic capture, enables custom attack interfaces, and functions as covert storage all in one compact device. This multi-functional firmware combines a variety of attack vectors into a single compact device, complete with a color LCD screen. […]

The post USB Army Knife – A Powerful Red Team Tool for Penetration Testers appeared first on Cyber Security News.

Kela researchers explain that infostealers are to blame for compromised OpenAI logins

Компьютер размером с ладонь выживает там, где другие сдаются.

A vulnerability, which was classified as critical, was found in Octopus Deploy Octopus Server up to 2024.3.13070/2024.4.7064. Affected is an unknown function of the component API Endpoints. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2025-0589. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Почему компании готовы платить тысячи за обнаружение скрытых угроз.

Currently trending CVE - hypeScore: 2 - An issue in Smartcom Bulgaria AD Smartcom Ralink CPE/WiFi router SAM-4G1G-TT-W-VC, SAM-4F1F-TT-W-A1 allows a remote attacker to obtain sensitive information via the Weak default WiFi password generation algorithm in WiFi routers.

Currently trending CVE - hypeScore: 1 - Trimble Cityworks versions prior to 15.8.9 and Cityworks with office companion versions prior to 23.10 are vulnerable to a deserialization vulnerability. This could allow an authenticated user to perform a remote code execution attack against a customer’s Microsoft Internet Infor

Исследование раскрыло, как мы попали в когнитивную ловушку из-за доверия к ИИ.

Битва миллиардеров за будущее ИИ.

DDoS攻击总量呈现出迅猛增长的态势，同比增长56%，其中最大攻击峰值更是飙升至前所未有的2Tbps。

A new cybersecurity threat has emerged, targeting customers of a prominent Indian bank through fraudulent mobile applications. Dubbed “FinStealer,” this malware campaign employs advanced techniques to steal sensitive financial and personal information, including banking credentials, credit card details, and other personally identifiable information (PII). Distributed via phishing links and unofficial app stores, the malware mimics […]

The post FinStealer Malware Targets Leading Indian Bank’s Mobile Users, Stealing Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Innovative tools are continually appearing to enhance the capabilities of professionals and enthusiasts alike. One new entrant into the world of radio frequency (RF) tools is the Evil Crow RF V2, a compact device that transforms your smartphone into a powerful tool for RF analysis and penetration testing. With its portable design, user-friendly features, and a […]

The post Evil Crow RF Tool Transforms Smartphones into Powerful RF Hacking Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.