Aggregator

Полный обзор эволюции Большого Брата в космосе.

A serious security incident has recently emerged involving Feiniu (fnOS) Network Attached Storage devices. These systems are being actively targeted and infected by the Netdragon botnet, a malware strain that first appeared in October 2024. The attackers are leveraging undisclosed security vulnerabilities within the fnOS platform to implant malicious code. This campaign represents a focused […]

The post Feiniu NAS Devices Infected in Large-Scale Netdragon Botnet Attack Exploiting Unpatched Vulnerabilities appeared first on Cyber Security News.

Digital sovereignty is now a strategic imperative for many European organizations. According to a new IDC Market Note¹, “Sovereignty is not viewed just as a contractual consideration, but as an architectural one, and one of technical feasibility.”

The post IDC Market Note: Surging Demand for EU Data Sovereignty Drives New Cybersecurity-Cloud Partnership appeared first on Security Boulevard.

Ваш смартфон пока не превратится в кирпич.

Accel-Led Funding Round Fuels AI-Native Detection and Response
Vega raised $120 million led by Accel to expand its AI-native security operations platform. The funding will boost product development and global go-to-market efforts as enterprises seek faster threat detection, broader analytics and support for complex multi-cloud and on-premises environments.

Session 12B: Malware

Authors, Creators & Presenters: Adrian Shuai Li (Purdue University), Arun Iyengar (Intelligent Data Management and Analytics, LLC), Ashish Kundu (Cisco Research), Elisa Bertino (Purdue University)

PAPER
Revisiting Concept Drift in Windows Malware Detection: Adaptation to Real Drifted Malware with Minimal Samples

In applying deep learning for malware classification, it is crucial to account for the prevalence of malware evolution, which can cause trained classifiers to fail on drifted malware. Existing solutions to address concept drift use active learning. They select new samples for analysts to label and then retrain the classifier with the new labels. Our key finding is that the current retraining techniques do not achieve optimal results. These techniques overlook that updating the model with scarce drifted samples requires learning features that remain consistent across pre-drift and post-drift data. The model should thus be able to disregard specific features that, while beneficial for the classification of pre-drift data, are absent in post-drift data, thereby preventing prediction degradation. In this paper, we propose a new technique for detecting and classifying drifted malware that learns drift-invariant features in malware control flow graphs by leveraging graph neural networks with adversarial domain adaptation. We compare it with existing model retraining methods in active learning-based malware detection systems and other domain adaptation techniques from the vision domain. Our approach significantly improves drifted malware detection on publicly available benchmarks and real-world malware databases reported daily by security companies in 2024. We also tested our approach in predicting multiple malware families drifted over time. A thorough evaluation shows that our approach outperforms the state-of-the-art approaches.

ABOUT NDSS
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies.

Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS Symposium 2025 Conference content on the Organizations' YouTube Channel.

Permalink

The post NDSS 2025 – Revisiting Concept Drift In Windows Malware Detection appeared first on Security Boulevard.

今日暂未更新资讯~
更多最新文章，请访问SecWiki

In a September 2025 incident response case, investigators found a rogue virtual machine inside a VMware vSphere environment and tied it with high confidence to Muddled Libra, also tracked as Scattered Spider and UNC3944. The VM acted like a quiet staging host, giving the intruders a place to recon the network, pull down tools, and […]

The post Rogue VM Linked to Muddled Libra in VMware vSphere Attack, Revealing Key TTPs appeared first on Cyber Security News.

Microsoft предупреждает об «отравлении» памяти ИИ-помощников.

Disney has agreed to pay a $2.75 million to the state of California over allegations that it broke the state’s landmark privacy law by making it exceedingly difficult for consumers to opt out of having their data shared and sold.

A vulnerability was found in Dolibarr ERP CRM 22.0.9. It has been declared as problematic. This issue affects some unknown processing of the file perms.php. Executing a manipulation of the argument notes can lead to cross-site request forgery. This vulnerability appears as CVE-2025-69634. The attack may be performed from remote. There is no available exploit.

National Cyber Director Sean Cairncross told attendees of the Munich Cyber Security Conference that Washington is looking to deepen cooperation with partners rather than act alone.

A vulnerability was found in Xiaomi Galaxy FDS Android SDK up to 3.0.8. It has been classified as critical. This vulnerability affects the function GalaxyFDSClientImpl.createHttpClient. Performing a manipulation results in certificate with host mismatch. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is reported as CVE-2026-26214. The attack is possible to be carried out remotely. No exploit exists.

New research reveals a 1-trillion-attribute threat landscape driven by machine speed and scale, and high-density credential consolidation. LOS ALTOS, CA — February 12, 2026 — Constella, the leader in Identity Risk Intelligence, today announced the release of its flagship 2026 Identity Breach Report. The report details a fundamental shift in the cyber threat landscape, moving from the …

The post Constella Intelligence Unveils 2026 Identity Breach Report: The Industrialization of Identity appeared first on Security Boulevard.

dyld（dynamic linker 动态链接器）是苹果操作系统（iOS、iPadOS、macOS、watc

A vulnerability was found in NTN Smart Panel and classified as critical. This affects an unknown part. Such manipulation leads to unrestricted upload. This vulnerability is documented as CVE-2025-14014. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability has been found in AMD Instinct MI210 and Instinct MI250 and classified as critical. Affected by this issue is some unknown functionality of the component PMFW. This manipulation causes unintended intermediary. This vulnerability is registered as CVE-2023-31313. The attack needs to be launched locally. No exploit is available. The affected component should be upgraded.

Microsoft запускает масштабную программу обновления.

A critical flaw in the WPvivid Backup & Migration WordPress plugin can let an unauthenticated attacker upload files and run code on the server, a path that often ends in full site takeover. The issue is tracked as CVE-2026-1357, scored 9.8 (Critical), and affects plugin versions up to and including 0.9.123, with a fix available […]

The post WordPress Backup Plugin Vulnerability Exposes 800,000 Sites to Remote Code Execution Attacks appeared first on Cyber Security News.