Aggregator

A vulnerability has been found in PHP Heaven phpMyChat 0.14.5 and classified as problematic. This vulnerability affects unknown code of the file admin.php3. The manipulation leads to path traversal. This vulnerability was named CVE-2004-2717. The attack can be initiated remotely. Furthermore, there is an exploit available.

Researchers have identified a novel information-stealing malware dubbed ‘AppleProcessHub,’ designed to infiltrate Apple systems and exfiltrate sensitive user data. This discovery sheds light on an evolving threat landscape where macOS, often considered a secure platform, is increasingly becoming a target for sophisticated adversaries. The malware employs advanced tactics, techniques, and procedures (TTPs) to evade detection […]

The post Researchers Uncover macOS ‘AppleProcessHub’ Stealer: TTPs and C2 Server Details Revealed appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Two critical security vulnerabilities discovered in the popular GIMP image editing software have been disclosed. These vulnerabilities allow remote attackers to execute arbitrary code on affected systems.  The vulnerabilities, identified as CVE-2025-2760 and CVE-2025-2761, were publicly disclosed on April 7th, 2025, and affect GIMP installations prior to version 3.0.0.  Both flaws require user interaction, specifically […]

The post GIMP Image Editor Vulnerability Let Remote Attackers Arbitrary Code appeared first on Cyber Security News.

从「造模型」到「用好模型」，腾讯想做 AI 落地的那双手

通过正确策略，威胁情报不仅能提升认知，更能驱动响应速度、精度和弹性。

Ransomware actor exploited RMM to access multiple organizations; Sophos EDR blocked encryption on customer’s network

De laatste F-16’s die Nederland aan Oekraïne levert zijn naar dat land onderweg. In totaal doneerde Nederland 24 jachtvliegtuigen.  Verder is na een jaar de leiding over de NAVO-missie in Irak (NMI) niet meer in Nederlandse handen. Een overzicht van Defensieoperaties in de week van 21 tot en met 27 mei 2025.

A joint advisory from the US, UK, Australia and others highlights the importance of SIEM/SOAR platforms and overcoming implementation challenges

Android 应用开发如火如荼，而深入了解其底层原理和掌握强大的工具，能让你在开发、测试以及安全分析等领域如

Adidas 遭遇数据泄露事件，部分客户信息被盗，正积极应对处理。

看雪论坛作者ID：东方玻璃

A vulnerability was found in Apache HTTP Server up to 1.3.23/2.0.34-beta on Win32. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2002-0061. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Two major security vulnerabilities have been found in the widely used GIMP image editing software, potentially allowing remote attackers to execute arbitrary code on affected systems, according to security researchers. The vulnerabilities, labeled CVE-2025-2760 and CVE-2025-2761, each have a high CVSS score of 7.8 and impact users who open malicious image files or visit compromised […]

The post GIMP Image Editor Vulnerability Allows Remote Attackers to Execute Arbitrary Code appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Threat hunters have exposed a novel campaign that makes use of search engine optimization (SEO) poisoning techniques to target employee mobile devices and facilitate payroll fraud. The activity, first detected by ReliaQuest in May 2025 targeting an unnamed customer in the manufacturing sector, is characterized by the use of fake login pages to access the employee payroll portal and redirect

Компания представила обновлённый набор сервисов для проактивного противодействия киберугрозам.

Microsoft Threat Intelligence has discovered a cluster of worldwide cloud abuse activity conducted by a threat actor we track as Void Blizzard, who we assess with high confidence is Russia-affiliated and has been active since at least April 2024. Void Blizzard’s cyberespionage operations tend to be highly targeted at specific organizations of interest to Russia, including in government, defense, transportation, media, non-governmental organizations (NGOs), and healthcare sectors primarily in Europe and North America.

The post New Russia-affiliated actor Void Blizzard targets critical sectors for espionage appeared first on Microsoft Security Blog.

Microsoft Threat Intelligence has discovered a cluster of worldwide cloud abuse activity conducted by a threat actor we track as Void Blizzard, who we assess with high confidence is Russia-affiliated and has been active since at least April 2024. Void Blizzard’s cyberespionage operations tend to be highly targeted at specific organizations of interest to Russia, including in government, defense, transportation, media, non-governmental organizations (NGOs), and healthcare sectors primarily in Europe and North America.

The post New Russia-affiliated actor Void Blizzard targets critical sectors for espionage appeared first on Microsoft Security Blog.