Aggregator

Хакеры больше не требуют выкуп — они просто берут, что хотят.

天文学家利用哈勃望远镜在多年内对银河核球微透镜事件 OGLE-2011-BLG-0462 进行了多次观测，确认它是一颗流浪黑洞。天文学家是通过类似凌日现象观测到一个物体从一颗恒星前方经过，放大了恒星发射出的光，短暂改变了其在天空的位置。黑洞通常有伴星，但该黑洞没有发现伴星，它是一个孤独的黑洞，其质量约为太阳质量的六倍或七倍。

A vulnerability classified as problematic was found in Unblu Spark up to 8.12.1/8.13.0. Affected by this vulnerability is an unknown functionality. The manipulation leads to authorization bypass. This vulnerability is known as CVE-2025-3519. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Unblu Spark up to 7.53.4/7.54.0/8.12.1/8.13.0. Affected is an unknown function. The manipulation leads to unrestricted upload. This vulnerability is traded as CVE-2025-3518. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Discover how the Morphing Meerkat phishing kit powers phishing-as-a-service (PhaaS) attacks, evades detection, and how you can detect and stop it.

The post Morphing Meerkat Phishing Kit: A Deep Dive into Its Threats & Tactics appeared first on Security Boulevard.

编者荐语当AI大模型掀起智能革命，如何守住安全底线？本文深度解析大模型面临的四大安全危机，从内容合规、数据隐

编者荐语当AI大模型掀起智能革命，如何守住安全底线？本文深度解析大模型面临的四大安全危机，从内容合规、数据隐

Defense-in-Depth, 200 детекторов и аппаратные модули безопасности. Сработало?

 The Cybersecurity and Infrastructure Security Agency (CISA) has alerted its threat hunting teams to immediately discontinue use of two widely trusted cyber threat intelligence tools, Censys and VirusTotal. The notification, sent to hundreds of CISA staffers this week, marks a significant shift in the agency’s operational approach as it contends with internal budget reductions and […]

The post CISA Issues Warning Against Using Censys, VirusTotal in Threat Hunting Ops appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Кто получит право легально работать с утечками?

Абилин остался без серверов — и в этом виноват не сбой.

Security First Framework Approach Focuses on Isolating Untrusted Inputs
Chatbots' popularity has been tempered from the start by the prospect of prompt injection attacks. Google DeepMind's CaMeL aims to address the issue by reframing the problem, and applying proven security engineering patterns to isolate and track untrusted data.

Model Context Protocol's Adopters Include OpenAI, Google
Artificial intelligence developers including OpenAI, Google and Microsoft are adopting rival Anthropic's open standard to speed up the capabilities of their chatbots by allowing them to access daily-use software. Dubbed "Model Context Protocol," the open standard aims to make chatbots more useful.

In Other Cybercrime Market Drama, BreachForums Marketplace Reboot Branded a Fake
Just three months after being disrupted by an intelligence law enforcement operation, the notorious online cybercrime marketplace called Cracked appears to have patched itself up and restarted operations. The recently disrupted BreachForums also claims to be back - although experts remain skeptical.

Top Democrat Sounds Alarm Over Whistleblower Report of DOGE's Master Database
A top Democrat on the House Oversight Committee sounded the alarm after a whistleblower provided information to Congress warning that staffers for the Department of Government Efficiency violated federal data laws while building a "master database" of sensitive information across federal agencies.