Aggregator

Submit #580399 / VDB-309659

Submit #580323 / VDB-309661

根据海关周二公布的数据，4 月中国智能手机出口额暴跌 72%，凸显了特朗普政府对华商品征收 145% 关税对电子产品出口的影响。海关数据显示，4 月智能手机出口额为 6.885 亿美元，创 2011 年 6 月以来最低，对美出口智能手机环比下降 18 亿美元，笔记本电脑环比下降 2.6 亿美元。2024 年中国对美出口额最高的三种产品分别是智能手机、笔记本电脑和锂离子电池，从美国进口额最高的产品分别是液化石油气、石油、大豆、燃气轮机和半导体制造机器。海关总署的数据显示，过去一年对印度的手机零部件出口额增长了约四倍。印度是苹果在中国之外最大的 iPhone 生产基地，苹果正加快将其产品制造转移到印度。

Submit #580248 / VDB-309660

A critical security vulnerability discovered in the popular Motors WordPress theme has exposed approximately 22,000 websites to significant risk.  Security researchers have identified a privilege escalation vulnerability that allows unauthenticated attackers to take over administrative accounts, potentially compromising the entire website.  This vulnerability (CVE-2025-4322) carries a critical CVSS score of 9.8 and affects all versions […]

The post WordPress Plugin Vulnerability Exposes 22,000 Sites to Cyber Attacks appeared first on Cyber Security News.

Submit #580201 / VDB-309659

Submit #580195 / VDB-309658

Submit #580198 / VDB-300677

Submit #580197 / VDB-300675

Cybersecurity and Infrastructure Security Agency (CISA) has added a cross-site scripting (XSS) vulnerability affecting MDaemon Email Server to its Known Exploited Vulnerabilities (KEV) Catalog on May 19, 2025. This critical addition, identified as CVE-2024-11182, highlights a security flaw that allows attackers to inject malicious JavaScript code via crafted HTML emails. Federal agencies now have until […]

The post CISA Includes MDaemon Email Server XSS Flaw in KEV Catalog appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #580196 / VDB-251553

Submit #580192 / VDB-309657

Microsoft is introducing artificial intelligence capabilities directly into Windows 11’s File Explorer, allowing users to manipulate files without opening dedicated applications.  Announced in Windows 11 Insider Preview Build 26200.5603 (KB5058488) released to the Dev Channel on May 19, 2025, this integration represents a significant advancement in Microsoft’s AI strategy for its flagship operating system. AI […]

The post Microsoft to Integrate AI With Windows 11 File Explorer appeared first on Cyber Security News.

Cynet announced a major update to CyAI, its proprietary AI engine that powers advanced threat detection across the Cynet platform. By reducing false positives by 90%, CyAI advances Cynet’s mission to maximize purpose-built protection for managed service providers and small-to-medium businesses, backed by 24/7 SOC support. Leveraging machine learning models trained on millions of samples, CyAI continuously analyzes every executable file across all endpoints to detect known and zero-day threats before damage can be done. … More →

The post Cynet boosts AI-powered threat detection accuracy appeared first on Help Net Security.

While analyzing malware samples uploaded to ANY.RUN’s Interactive Sandbox, one particular case marked as “phishing” and “Telegram” drew the attention of our security analysts.  Although this analysis session wasn’t attributed to any known malware family or threat actor group, the analysis revealed that Telegram bots were being used for data exfiltration. This led us to […]

The post How Adversary Telegram Bots Help to Reveal Threats: Case Study  appeared first on ANY.RUN's Cybersecurity Blog.

Russian organizations have become prime targets of a sophisticated malware campaign deploying the Pure malware family, first identified in mid-2022. Distributed via a Malware-as-a-Service (MaaS) model, Pure malware allows cybercriminals to purchase and deploy it with ease. While the campaign began in March 2023, the first third of 2025 witnessed a staggering fourfold increase in […]

The post Hackers Use Weaponized RAR Archives to Deliver Pure Malware in Targeted Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #569966 / VDB-309652

Weeks after LockBit ransomware breach, leaked data reveals how affiliates generate ransomware, set ransom demands, and often walk away unpaid.

Crypto POS机，同样不安全

Троян включается, когда вы заходите в онлайн-банк.