Aggregator

Proactively validate your detection rules and eliminate coverage gaps—all seamlessly within GreyMatter.

欧洲刑警组织在 Operation Cumberland 行动中逮捕 25 名分享 AI 创作儿童色情的用户。欧洲刑警组织成为最新一个认为 AI 生成的 CSAM(Child Sexual Abuse Material) 仍然是 CSAM 的组织。全世界的警方都发出警告，AI 生成的 CSAM 正充斥着互联网，而区分由真实儿童构成的 CSAM 和 AI CSAM 日益困难。虽然 AI 生成的 CSAM 刻画的可能是虚构的儿童，但已经发现有 AI 模型使用了真实的 CSAM 进行训练。欧洲刑警组织称 ，AI 生成的 CSAM 仍然会鼓动儿童的物化和性化。

For the latest discoveries in cyber research for the week of 3rd March, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Orange Group has confirmed a cyberattack on its Romanian branch, in which a hacker linked to the HellCat ransomware group stole 6.5GB of data over a month. The breach exposed 380,000 email […]

The post 3rd March – Threat Intelligence Report appeared first on Check Point Research.

Google is rolling out a new privacy-focused feature called Shielded Email, designed to prevent apps and services from accessing users’ primary email addresses during sign-ups. The feature, first discovered in a Google Play Services APK teardown by Android Authority months ago, will generate unique email aliases for each app or website, shielding users’ real addresses from potential data […]

The post Google Launches Shielded Email to Keep Your Address Hidden from Apps appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability, which was classified as problematic, was found in Sendmail up to 8.12.6. Affected is an unknown function of the component SMRSH. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2002-1165. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

The cybersecurity landscape of 2024 witnessed an unprecedented increase in mass internet exploitation, driven by attackers’ ability to automate vulnerability exploits within hours of disclosure.  GreyNoise’s 2025 Mass Internet Exploitation Report reveals a systematic industrialization of cyberattacks, with threat actors leveraging both cutting-edge and decades-old vulnerabilities to compromise systems at scale.  From ransomware campaigns to […]

The post Attackers Automating Vulnerability Exploits with Few Hours of Disclosure appeared first on Cyber Security News.

Submit #510955 / VDB-298196

Submit #510952 / VDB-298195

Submit #510951 / VDB-298194

Submit #510950 / VDB-298193

Submit #510949 / VDB-298192

The United States has paused offensive cyber operations against Russia under an order from Defense Secretary Pete Hegseth, causing debates over geopolitical strategy and domestic cybersecurity priorities.  While U.S. Cyber Command—a Unified Combatant Command overseeing military cyber operations—adheres to the directive, the Cybersecurity and Infrastructure Security Agency (CISA) insists its defensive posture remains unchanged.  The […]

The post U.S. Halts Cyber Operations Targeting Russia appeared first on Cyber Security News.

Unit 42, the threat intelligence team at Palo Alto Networks, has identified a sophisticated threat actor group named JavaGhost that has evolved from website defacement to executing persistent phishing campaigns using compromised AWS environments. The group, active since at least 2022, exploits overly permissive Amazon Identity and Access Management (IAM) permissions to leverage victims’ Simple […]

The post JavaGhost Leveraging Amazon IAM Permissions To Trigger Phishing Attack appeared first on Cyber Security News.

Bubba AI设定了一个雄心勃勃的目标：到2032年帮助10万家企业实现SOC 2、ISO 27001和GDPR等网络安全框架的合规性。

Submit #506526 / VDB-298191

Submit #506106 / VDB-298190

日本研究人员对小鼠的实验发现，芹菜、西兰花等植物中的天然成分木犀草素(Luteolin)能抑制黑发变白。最新研究为防止白发提供了一种新选择。但木犀草素的有效性和安全性还需要通过人体实验获得确认。木犀草素通过抗氧化和抗衰老机制促进皮肤健康的能力已为人所知，抑制黑发变白的有效性则是首次获得科学验证。研究团队在实验中使用了黑毛发的小鼠，在 16 周内将木犀草素抹在小鼠背部皮肤上。结果显示，使用木犀草素的小鼠毛发变白的可能性低于未使用木犀草素的小鼠。口服木犀草素也产生了类似的结果。木犀草素被发现减少了内皮素(endothelin)和内皮素受体B，改善了黑素干细胞功能。

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2023-20118 Cisco Small Business RV Series Routers Command Injection Vulnerability
• CVE-2022-43939 Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability
• CVE-2022-43769 Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability
• CVE-2018-8639 Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability
• CVE-2024-4885 Progress WhatsUp Gold Path Traversal Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

Telecoms provider Vodafone has developed the new proof of concept with IBM, as it seeks to implement post-quantum cryptography ahead of anticipated quantum-based attacks

This week, a 23-year-old Serbian activist found themselves at the crossroads of digital danger when a sneaky zero-day exploit turned their Android device into a target. Meanwhile, Microsoft pulled back the curtain on a scheme where cybercriminals used AI tools for harmful pranks, and a massive trove of live secrets was discovered, reminding us that even the tools we rely on can hide risky