Aggregator

Vietnamese phishing campaign evolves from Python infostealer to PureRAT trojan

Cisco Systems has issued security updates to address a critical vulnerability in its widely deployed IOS and IOS XE network operating systems, after confirming the flaw is being exploited in active attacks. Designated CVE-2025-20352, the vulnerability resides in the Simple Network Management Protocol (SNMP) subsystem of Cisco’s core network software. According to Cisco, the weakness […]

The post Cisco uncovers new SNMP vulnerability used in attacks on IOS devices appeared first on CyberScoop.

«Лаборатория Касперского» рассказала о новой кибератаке.

Chinese state-sponsored cyber threat group Salt Typhoon has intensified long-term espionage operations against global telecommunications infrastructure, according to recent legal and intelligence reporting. Aligned with the Ministry of State Security (MSS) and active since at least 2019, Salt Typhoon has systematically exploited network edge devices to establish deep persistence and exfiltrate highly sensitive communications metadata, […]

The post Chinese State-Sponsored Hackers Targeting Telecommunications Infrastructure to Steal Sensitive Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

本文分享针对某大厂大模型的提示词注入实战，从保护机制探测到批量规则提取，逐步诱导输出25条系统提示词片段，包括SYS_ROLE定义、安全禁止（如规则6：禁止未成年人不良内容）和/debug模式逻辑。新对话验证剔除幻觉干扰，确认80%真实性。过程暴露动态防御局限，仅供学习参考。

Робертсоновская загадка раскрыта…

Cybercriminals are increasingly using AI-powered tools and (malicious) large language models to create convincing, error-free emails, deepfakes, online personas, lookalike/fake websites, and malware. There’s even been a documented instance of an attacker using the agentic AI coding assistant Claude Code (along with Kali Linux) for nearly all steps of a data extortion operation. More recently, Microsoft Threat Intelligence spotted and blocked an attack campaign delivering an LLM-obfuscated malicious attachment. The phishing campaign and the LLM-obfuscated … More →

The post Microsoft spots LLM-obfuscated phishing attack appeared first on Help Net Security.

A vulnerability was found in dref 0.1.2. It has been classified as problematic. This affects the function lib.set. This manipulation causes improperly controlled modification of object prototype attributes ('prototype pollution'). This vulnerability is registered as CVE-2025-26278. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability was found in apidoc-core up to 0.15.0 and classified as critical. Affected by this issue is the function preProcess. The manipulation results in improperly controlled modification of object prototype attributes ('prototype pollution'). This vulnerability is cataloged as CVE-2025-57317. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in lobehub lobe-chat up to 1.130.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Header Handler. The manipulation of the argument X-Forwarded-Host/X-Forwarded-Proto leads to open redirect. This vulnerability is listed as CVE-2025-59426. The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.

A vulnerability, which was classified as problematic, was found in iMonitor EAM 9.6394. Affected is an unknown function. Executing manipulation can lead to cleartext transmission of sensitive information. This vulnerability is tracked as CVE-2025-10540. The attack can be launched remotely. No exploit exists.

A vulnerability was found in Delta Electronics CNCSoft-G2 2.0.0.5/2.1.0.4/2.1.0.10/2.1.0.20/2.1.0.27 and classified as critical. This impacts an unknown function of the component File Handler. The manipulation results in stack-based buffer overflow. This vulnerability is identified as CVE-2025-58317. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Delta Electronics CNCSoft-G2 2.0.0.5/2.1.0.4/2.1.0.10/2.1.0.20/2.1.0.27. It has been classified as critical. Affected is an unknown function of the component File Handler. This manipulation causes stack-based buffer overflow. This vulnerability is tracked as CVE-2025-58319. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.

A vulnerability categorized as problematic has been discovered in Liferay Portal and DXP. Affected is an unknown function. Such manipulation of the argument _com_liferay_commerce_product_definitions_web_internal_portlet_CPDefinitionsPortlet_productTypeName leads to cross site scripting. This vulnerability is documented as CVE-2025-43779. The attack can be executed remotely. There is not any exploit available.

Submit #653341 / VDB-325852

Submit #653340 / VDB-325851

Submit #653337 / VDB-325850

Submit #653336 / VDB-325849

Submit #653335 / VDB-325848

Submit #653333 / VDB-325847