Aggregator

介绍一部分信息收集的方法

A sophisticated phishing campaign is leveraging virtual hard disk (.vhd) files to distribute the dangerous VenomRAT malware. The attack begins with purchase order-themed emails containing archive attachments that, when extracted, reveal hard disk image files designed to evade traditional security measures. Upon opening, the .vhd file mounts itself as a disk drive containing a heavily […]

The post Hacker Weaponizing Hard Disk Image Files To Deliver VenomRAT appeared first on Cyber Security News.

Outseer announced its platform-native Behavioral Biometrics capability. The addition of platformized Behavioral Biometrics introduces another layer of defense that continuously analyzes user interactions to detect anomalies in real time. Building on its rich RSA heritage (formerly RSA Fraud & Risk Intelligence), Outseer has enhanced its platform to counter modern cyber threats. As fraud evolves, spurred by the digitization of payments, the spread of personal data across the dark web, the growing threat of scams and … More →

The post Outseer introduces Behavioral Biometrics capability appeared first on Help Net Security.

Беспроводные сети скоро обретут разум?

The Cybersecurity and Infrastructure Security Agency (CISA) has sounded the alarm over a critical supply-chain attack affecting a widely used third-party GitHub Action: tj-actions/changed-files. This action, exploited under CVE-2025-30066, is designed to identify changes in files during pull requests or commits. However, its compromise poses a significant risk to users by allowing unauthorized access to […]

The post CISA Warns of Supply-Chain Attack Exploiting GitHub Action Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

马德里卡洛斯三世大学与西班牙高等科学研究理事会合作开展了一项研究，以评估西班牙政客对女性和男性诉求的回应是否平等。研究结果表明，在对公民的要求做出政治回应方面存在性别不平等，这可能会对未来公共政策的设计和关于性别平等的辩论产生影响。“我们知道，不同社会阶层和收入水平的人对公民诉求的政治反应存在差异，但对性别因素的研究却较少，"研究作者之一的 Berta Caihuelas Navajas 解释说。“因此，我们的目标是确定政治家是否倾向于男性而非女性的偏好。结果表明，情况确实如此，尤其是在意见分歧较大的问题上，例如在与性别平等有关的问题上，男女之间的差异每增加一个有利于男性的百分点，公共政策获得通过的几率就会增加 1.5%。反之，我们每增加一个有利于妇女的性别差距百分点，公共政策获得批准的概率就会平均降低 1.1%。研究还显示，妇女的要求，尤其是那些社会经济地位更脆弱和社会阶层更低的妇女的要求，得到的政治精英的关注最少，这强化了基于性别和社会经济地位的双重歧视。

In a significant development, the China-aligned advanced persistent threat (APT) group known as MirrorFace has been observed employing sophisticated tactics to enhance the stealthiness of its attacks. Recently, MirrorFace modified the execution of AsyncRAT, a publicly available remote access trojan (RAT), to run it inside Windows Sandbox, thereby evading detection by security controls. This approach […]

The post MirrorFace Hackers Modify AsyncRAT Execution for Stealthy Deployment in Windows Sandbox appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

近日，绿盟科技CERT监测到微软发布安全公告，修复了Windows文件资源管理器欺骗漏洞(CVE-2025-24071)，CVSS评分7.5。目前漏洞细节与PoC已公开，且发现在野利用，请相关用户尽快采取措施进行防护。

近日，绿盟科技CERT监测到微软发布安全公告，修复了Windows文件资源管理器欺骗漏洞(CVE-2025-24071)，CVSS评分7.5。目前漏洞细节与PoC已公开，且发现在野利用，请相关用户尽快采取措施进行防护。

近日，绿盟科技CERT监测到微软发布安全公告，修复了Windows文件资源管理器欺骗漏洞(CVE-2025-24071)，CVSS评分7.5。目前漏洞细节与PoC已公开，且发现在野利用，请相关用户尽快采取措施进行防护。

A vulnerability was found in VikRentCar Car Rental Management System Plugin up to 1.3.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2024-1845. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Ultimate Blocks Plugin up to 3.1.8 on WordPress. Affected is an unknown function of the component Block Option Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-4655. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Quiz and Survey Master Plugin up to 9.0.4 on WordPress. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-6025. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Secure Copy Content Protection and Content Locking Plugin up to 4.0.8 on WordPress. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-6138. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in NAVER Whale Browser 1.10.6.2/3.0.1.2 and classified as critical. This issue affects some unknown processing of the component Built-in Extension. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-40618. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in 10Web Slider Plugin up to 1.2.55 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-6026. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Cybersecurity researchers have discovered that multiple state-sponsored threat actors have been exploiting an eight-year-old vulnerability in Windows shortcut files. This security flaw, identified as ZDI-CAN-25373, allows malicious actors to embed hidden commands within .lnk files, which can execute when opened, potentially compromising sensitive data and systems. The vulnerability in question exploits how Windows displays shortcut […]

The post 11 State-Sponsored Threat Actors Exploit 8-Year-Old Windows Shortcut Flaw appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Аудиоанклавы изменят общественные пространства навсегда.

A vulnerability, which was classified as problematic, was found in Apple Safari. Affected is an unknown function. The manipulation of the argument JavaScript leads to information disclosure. This vulnerability is traded as CVE-2007-2580. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to add further authentication.

SystemRescue live Linux 系统释出 12.00 版。SystemRescue 是一款基于 Arch Linux 的可启动工具包，用于在系统崩溃时修复系统。SystemRescue 12.00 的主要变化包括：内核更新到 Linux 6.12.19、支持 bcachefs、以及大量常用工具和磁盘工具的更新。