Aggregator
Authorities Seize 1842 Devices in Africa’s Cybercrime Crackdown
macOS 漏洞或致系统密码泄露
Hackers Using Fake Semrush Ads to Steal Google Accounts Login Credentials
A sophisticated phishing campaign targeting Google account credentials through fake Semrush advertisements has emerged, posing a significant threat to digital marketers and SEO professionals. Cybercriminals have deployed numerous malicious advertisements that appear legitimate in Google search results, leveraging Semrush’s growing popularity in the SEO industry to lure unsuspecting victims. These fraudulent ads redirect users to […]
The post Hackers Using Fake Semrush Ads to Steal Google Accounts Login Credentials appeared first on Cyber Security News.
CVE-2020-24312 | mndpsingh287 WP File Manager up to 6.4 Backup fm_backups information disclosure
CVE-2021-24177 | File Manager Plugin up to 7.0 on WordPress admin.php?page=wp_file_manager_properties User-Agent cross site scripting (ID 2476829)
CVE-2018-7935 | Huawei E5573Cs-322 21.328.01.00.00 denial of service
CVE-2024-0761 | File Manager Plugin up to 7.2.1 on WordPress Backup Filename information disclosure (ID 3023403)
CVE-2024-20292 | Cisco Duo up to 2.0.0 on Windows Authentication information disclosure (cisco-sa-duo-infodisc-rLCEqm6T)
CVE-2024-20301 | Cisco Duo up to 2.0.0 on Windows improper authentication (cisco-sa-duo-win-bypass-pn42KKBm)
CVE-2024-2317 | Bdtask Hospital AutoManager up to 20240227 Prescription Page delete improper authorization
UAT-5918 利用已暴露的漏洞对 Web 和应用程序服务器展开攻击
CyberFirst Girls Competition: a proud milestone and exciting future
CVE-2021-43854 | NLTK up to 3.6.4 Regular Expression resource consumption (GHSA-f8m6-h2c7-8h9x / Nessus ID 233286)
CVE-2021-3842 | nltk incorrect regex (Nessus ID 233286)
Dropserver 漏洞可致攻击者绕过身份验证并获得完全控制权
Pocket Card Users Under Attack Via Sophisticated Phishing Campaign
A highly targeted phishing campaign is currently exploiting Pocket Card users through elaborately crafted emails that appear to originate from the legitimate financial service provider. The campaign, active since early March 2025, has already compromised an estimated 3,000 accounts, resulting in unauthorized transactions and credential theft. The malicious actors behind this attack employ convincing Pocket […]
The post Pocket Card Users Under Attack Via Sophisticated Phishing Campaign appeared first on Cyber Security News.
Keeping Secrets Out of Logs: Strategies That Work
tl;dr: There's no silver bullet for keeping secrets out of logs, but if we put several "lead bullets" in the right places, we have a good chance of success.
The post Keeping Secrets Out of Logs: Strategies That Work appeared first on Security Boulevard.
Operation Red Card – 300+ Cyber Criminals Arrested Linking to Multiple Hacking Activities
INTERPOL led a multi-national law enforcement operation dubbed “Operation Red Card,” which has resulted in the arrest of over 300 suspected cyber criminals. Operation Red Card, conducted from November 2024 to February 2025, targeted cross-border criminal syndicates responsible for mobile banking fraud, investment scams, and messaging app exploitation. The operation involved law enforcement agencies from […]
The post Operation Red Card – 300+ Cyber Criminals Arrested Linking to Multiple Hacking Activities appeared first on Cyber Security News.