Aggregator

Анонимные звонки уходят в прошлое.

A team of researchers from Frondeur Labs, DistributedApps.ai, and OWASP has developed a new machine learning framework designed to help defenders anticipate attacker behavior across the stages of the Cyber Kill Chain. The work explores how machine learning models can forecast adversary techniques and generate structured attack paths. Combining ATT&CK with the kill chain The Cyber Kill Chain, introduced by Lockheed Martin, breaks down attacks into seven stages: reconnaissance, weaponization, delivery, exploitation, installation, command and … More →

The post KillChainGraph: Researchers test machine learning framework for mapping attacker behavior appeared first on Help Net Security.

快速浏览！2025.8.25—8.31安全动态周回顾。

不过，此次扫描活动的激增也可能意味着新的漏洞已被发现。

Explore key considerations for implementing risk-based authentication (RBA) to enhance security. Learn about adaptive authentication, risk assessment, integration strategies, and maintaining user experience.

The post Key Considerations for Implementing Risk-Based Authentication appeared first on Security Boulevard.

根据发表在《自然》期刊上的一项研究，建造在砂质土壤之上、缺乏排水系统的非洲城市正在裂开，形成了很多会吞噬房屋和商铺的巨大沟壑。研究人员利用 2021-2023 年拍摄的卫星图像，在非洲 47 个城市中的 26 个城市识别出 2922 条城市沟壑，累计近 740 公里长。研究团队还使用比利时中非皇家博物馆的历史航拍照片进行交叉比对，发现城市沟壑在 1950 年代只有 46 条。研究显示，仅在刚果民主共和国，2004-2023 年间平均就有约 11.86 万人流离失所。研究人员估计，如果不采取紧急行动，未来 10 年非洲各地可能会有数十万人流离失所。刚果民主共和国首都金沙萨是受灾最严重的城市之一，该市共有 868 条城市沟壑，总长 221 公里。

Первое масштабное сравнение CVSS, EPSS, SSVC и Exploitability Index раскрывает неудобную правду о современной кибербезопасности

A critical security vulnerability has been discovered in the Linux UDisks daemon that could allow unprivileged attackers to gain access to files owned by privileged users.  The flaw, identified as CVE-2025-8067, was publicly disclosed on August 28, 2025, and carries an Important severity rating with a CVSS v3 score of 8.5. Key Takeaways1. CVE-2025-8067 in […]

The post Linux UDisks Daemon Vulnerability Let Attackers Gaining Access to Files Owned by Privileged Users appeared first on Cyber Security News.

Пластик. Порох. Программа. И больше не нужен завод.

The Cybersecurity and Infrastructure Security Agency (CISA) has published nine Industrial Control Systems (ICS) advisories on August 28, 2025, detailing high- and medium-severity vulnerabilities across leading vendors’ products.  The advisories highlight remote-exploitable flaws, privilege-escalation weaknesses, memory corruption bugs, and insecure configurations.  CISA and vendors aim to empower operators with precise guidance to safeguard ICS environments […]

The post CISA Releases Nine ICS Advisories Surrounding Vulnerabilities, and Exploits appeared first on Cyber Security News.

AIDEFEND (Artificial Intelligence Defense Framework) is an open knowledge base dedicated to AI security, providing defensive countermeasures and best practices to help security pros safeguard AI and machine learning systems. Practicality is at the core of AIDEFEND. The framework is designed to be “highly actionable,” with the goal of not only raising awareness of threats but also providing clear playbooks to defend against them. “Each technique and subtechnique is mapped to concrete threats cataloged in … More →

The post AIDEFEND: Free AI defense framework appeared first on Help Net Security.

A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20211108.1423. This issue affects the function sub_418030 of the file /boafrm/formParentControl. Executing manipulation of the argument submit-url can lead to buffer overflow. The identification of this vulnerability is CVE-2025-9783. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in TOTOLINK A702R 4.0.0-B20211108.1423. This vulnerability affects the function sub_4466F8 of the file /boafrm/formOneKeyAccessButton. Performing manipulation of the argument submit-url results in buffer overflow. This vulnerability was named CVE-2025-9782. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability described as critical has been identified in TOTOLINK A702R 4.0.0-B20211108.1423. This affects the function sub_4162DC of the file /boafrm/formFilter. Such manipulation of the argument ip6addr leads to buffer overflow. This vulnerability is uniquely identified as CVE-2025-9781. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability marked as critical has been reported in TOTOLINK A702R 4.0.0-B20211108.1423. Affected by this issue is the function sub_419BE0 of the file /boafrm/formIpQoS. This manipulation of the argument mac causes buffer overflow. This vulnerability is handled as CVE-2025-9780. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability labeled as critical has been found in TOTOLINK A702R 4.0.0-B20211108.1423. Affected by this vulnerability is the function sub_4162DC of the file /boafrm/formFilter. The manipulation of the argument ip6addr results in buffer overflow. This vulnerability is known as CVE-2025-9779. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability identified as critical has been detected in Tenda W12 up to 3.0.0.6(3948). Affected is an unknown function of the file /etc_ro/shadow of the component Administrative Interface. The manipulation leads to hard-coded credentials. This vulnerability is traded as CVE-2025-9778. An attack has to be approached locally. Furthermore, there is an exploit available.

Submit #640991 / VDB-322085

Submit #640990 / VDB-322084

Submit #640989 / VDB-322083