FreeBuf早报 | OpenAI Agent首次自主完成钓鱼攻击;近百万电脑遭入侵
只需输入基本的攻击目标和步骤,便能自动化发起针对攻击目标的钓鱼攻击,执行包括信息收集、攻击代码等操作。
Aggregator
Lazarus Group Weaponizes IIS Servers for Deploying Malicious ASP Web Shells
9 months ago
The notorious Lazarus group has been identified as leveraging compromised IIS servers to deploy malicious ASP web shells. These sophisticated attacks have been reported to facilitate the spread of malware, including the LazarLoader variant, and utilize privilege escalation tools to gain extensive control over infected systems. The Lazarus group, associated with North Korean actors, has […]
The post Lazarus Group Weaponizes IIS Servers for Deploying Malicious ASP Web Shells appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya
Microsoft Warns of Cyber Attack Mimic Booking .com To Deliver Password Stealing Malware
9 months ago
Microsoft Threat Intelligence has identified an ongoing phishing campaign impersonating Booking.com to deliver credential-stealing malware. The campaign, which began in December 2024, targets hospitality organizations in North America, Oceania, Asia, and Europe. This sophisticated attack specifically aims at individuals in these organizations who are most likely to work with the popular travel platform. The attackers […]
The post Microsoft Warns of Cyber Attack Mimic Booking .com To Deliver Password Stealing Malware appeared first on Cyber Security News.
Tushar Subhra Dutta
微软警示:ClickFix 通过虚假 Booking. com 邮件,对酒店业展开网络钓鱼行动
9 months ago
安全客
香港 Web3 嘉年华 | 慢雾(SlowMist) 活动安排速览
9 months ago
期待在香港与您相见,共同推动 Web3 安全前行!
香港 Web3 嘉年华 | 慢雾(SlowMist) 活动安排速览
9 months ago
期待在香港与您相见,共同推动 Web3 安全前行!
【安全圈】SuperBlack 攻击者利用两个 Fortinet 漏洞部署勒索软件
9 months ago
【安全圈】GitLab 警告多个漏洞可让攻击者以有效用户身份登录
9 months ago
【安全圈】Tenda AC7 路由器漏洞使攻击者能够通过恶意负载获取 Root Shell
9 months ago
【安全圈】利用 OAuth 重定向进行帐户接管的 Microsoft365 主题攻击
9 months ago
香港 Web3 嘉年华 | 慢雾(SlowMist) 活动安排速览
9 months ago
期待在香港与您相见,共同推动 Web3 安全前行!
Кто за кулисами крипторынка: тайные игроки, влияющие на стоимость монет
9 months ago
Дональд Трамп легитимизирует рынок с скрытыми рычагами управления.
Fraudsters Impersonate Clop Ransomware to Extort Businesses
9 months ago
Barracuda observed threat actors impersonating the Clop ransomware group via email to extort payments, claiming to have exfiltrated sensitive data
Why Most Microsegmentation Projects Fail—And How Andelyn Biosciences Got It Right
9 months ago
Most microsegmentation projects fail before they even get off the ground—too complex, too slow, too disruptive. But Andelyn Biosciences proved it doesn’t have to be that way.
Microsegmentation: The Missing Piece in Zero Trust Security
Security teams today are under constant pressure to defend against increasingly sophisticated cyber threats. Perimeter-based defenses alone can no
The Hacker News
黑客滥用Microsoft Copilot进行复杂的网络钓鱼攻击
9 months ago
安全客
盘点 | 中国互联网联合辟谣平台2025年2月辟谣榜
9 months ago
近日,中国互联网联合辟谣平台对2025年2月网络谣言进行了梳理分析。
评论 | 共同担当人工智能全球治理责任
9 months ago
世界各国纷纷出台相关政策,大力扶持人工智能相关产业发展,谋求在新一轮产业革命中抢占先机。然而,在对人工智能快速发展感到欣喜和振奋的同时,如何避免产业竞争失序也成为国际社会不得不面对的重大课题。
权威解答 | 《人工智能生成合成内容标识办法》答记者问
9 months ago
近日,国家互联网信息办公室、工业和信息化部、公安部、国家广播电视总局联合发布《人工智能生成合成内容标识办法》,自2025年9月1日起施行。日前,国家互联网信息办公室有关负责人就《标识办法》有关问题回答了记者提问。
通知 | 网安标委发布《网络安全标准实践指南——人工智能生成合成内容标识 服务提供者编码规则》(附全文)
9 months ago
近日,网安标委发布《网络安全标准实践指南——人工智能生成合成内容标识 服务提供者编码规则》。
通知 | 四部门联合发布《人工智能生成合成内容标识办法》(附全文)
9 months ago
近日,国家互联网信息办公室、工业和信息化部、公安部、国家广播电视总局联合发布《人工智能生成合成内容标识办法》,自2025年9月1日起施行。