ИИ пробрался к истокам иудаизма и христианства. И заставил историков покраснеть от стыда
Тот, кто писал свитки два века до н. э, не рассчитывал, что его выведет на чистую воду машина…
Aggregator
Hackers Exploit New HTML Trick to Deceive Outlook Users into Clicking Malicious Links
9 months 3 weeks ago
Cybersecurity researchers have encountered a cleverly crafted phishing email targeting Czech bank customers, employing a lesser-known but highly deceptive technique to bypass security mechanisms and trick users into clicking malicious links. At first glance, the email appears to be a standard phishing attempt, masquerading as a legitimate message from a Czech bank and urging recipients […]
The post Hackers Exploit New HTML Trick to Deceive Outlook Users into Clicking Malicious Links appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
Wireshark Vulnerability Allows Attackers to Launch DoS Attacks
9 months 3 weeks ago
A critical security vulnerability, tracked as CVE-2025-5601, was disclosed on June 4, 2025, affecting Wireshark versions 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12. This flaw, identified as “Dissection engine crash” (wnpa-sec-2025-02), stems from a bug in the column utility module used by Wireshark’s dissectors. The vulnerability allows attackers to cause a denial of service (DoS) […]
The post Wireshark Vulnerability Allows Attackers to Launch DoS Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Anupriya
MT19937算法的逆向和预测以及random库逆向
9 months 3 weeks ago
本文系统介绍了伪随机数生成器MT19937的工作原理,及存在的逆向和随机数预测操作。此外分析了python中random库,并实现了对random库的逆向。
Lynx
9 months 3 weeks ago
You must login to view this content
cohenido
Сел, кликнул — и ты уже в полиции: «Госуслуги» учат жаловаться по-новому, но не факт, что услышат
9 months 3 weeks ago
Кнопка «накатать заяву» уже рядом.
830 Organizations Hacked via Glitch-hosted Phishing Attack Uses Telegram & Fake CAPTCHAs
9 months 3 weeks ago
Netskope Threat Labs reported a staggering 3.32-fold increase in traffic to phishing pages hosted on the Glitch platform, a browser-based web development tool that allows users to create and deploy web apps with free subdomains. This alarming spike has impacted over 830 organizations and more than 3,000 users, with Navy Federal Credit Union members being […]
The post 830 Organizations Hacked via Glitch-hosted Phishing Attack Uses Telegram & Fake CAPTCHAs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
Germany fines Vodafone $51 million for privacy, security breaches
9 months 3 weeks ago
The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company's German subsidiary, €45 million ($51.4 million) for privacy and security violations. [...]
Sergiu Gatlan
Redefining Cyber Value: Why Business Impact Should Lead the Security Conversation
9 months 3 weeks ago
Security teams face growing demands with more tools, more data, and higher expectations than ever. Boards approve large security budgets, yet still ask the same question: what is the business getting in return? CISOs respond with reports on controls and vulnerability counts – but executives want to understand risk in terms of financial exposure, operational impact, and avoiding loss.
The
The Hacker News
Wendelstein 7-X 仿星器创下可控核聚变新纪录
9 months 3 weeks ago
Wendelstein7-X(W7-X)实验项目创下了一项新的世界纪录:成功地维持了长等离子体放电三重积长达 43 秒的新峰值。这标志着 W7-X 超越了其他类型的磁约束装置在这方面的表现,也为未来聚变电站的发展提供了重要技术支持。W7-X 实验项目是目前世界规模最大的仿星器装置实验,旨在验证仿星器设计能否达到理论预期的高效性能。在人类追求聚变发电的征途上,仿星器被视为最具潜力的概念之一。它通过融合轻原子核来产生能量,而这一过程需要在等离子体的状态下进行——这是一种被加热至数千万摄氏度的电离气体。仿星器利用复杂的磁场将这种高温等离子体限制在一个环形真空室内,以实现核聚变所需的条件。而三重积,被认为是可控核聚变的一条“及格线”。只有三重积达到一定阈值,核聚变才能自持燃烧,步入实用化阶段。W7-X 与托卡马克装置相比,尽管后者拥有相对简单的结构和广泛的研究基础,在历史上也取得了一定的三重积值,但它们的等离子体持续时间通常仅为几秒钟。而在维持更长等离子体持续时间方面,W7-X 展现出明显的优势。
CVE-2025-4568 | Trol InterMedia 2ClickPortal up to 7.14.2 changes__reference_id sql injection (EUVD-2025-16979)
9 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Trol InterMedia 2ClickPortal up to 7.14.2. Affected by this issue is some unknown functionality. The manipulation of the argument changes__reference_id leads to sql injection.
This vulnerability is handled as CVE-2025-4568. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
BCS2025|第十届安全创客汇决赛落幕 安泉数智、泛联新安获双赛道年度冠军
9 months 3 weeks ago
第十届安全创客汇收官,双赛道冠军获2000万投资意向
量子计算破解倒计时:NGPKI如何用“中国方案”筑牢数字身份防线?
9 months 3 weeks ago
当中国科研团队把量子比特错误率降至0.01%以下时,当IBM Eagle量子处理器实现127个量子比特稳定操控
安全419 | 5月安全厂商动态:AI领衔 融资赛事新品齐发
9 months 3 weeks ago
5月网安行业活跃,厂商密集发布AI新品与解决方案。
Google Chrome 撤销对中华电信和 Netlock CA 的信任
9 months 3 weeks ago
Google 以合规、未兑现改进承诺以及响应披露等问题撤销了对中华电信和匈牙利 Netlock CA 的信任,Chrome 浏览器在 7 月 31 日之后将停止信任中华电信和 Netlock 颁发的证书。跟踪 CA 和证书的研究员 Ryan Hurst 称,在一年多时间里 Netlock 未向数据库 Common CA Database 披露一个中间证书;Netlock 未能撤销一个错误颁发的证书;Netlock 未能按要求每周提供安全事件更新;中华电信推迟撤销一个错误颁发的证书;中华电信错误颁发了 247 个主题域名结构不正确的证书。
【安全圈】ViperSoftX 不断进化: 新的 PowerShell 恶意软件具有隐蔽性和持久性
9 months 3 weeks ago
关键词power shellK7 Labs公布了对基于PowerShell的新恶意软件活动的详细分析,该活动建
【安全圈】在VMWare NSX中发现多个存储的XSS漏洞-立即修补
9 months 3 weeks ago
关键词安全漏洞Broadcom发布了重要的更新,解决了VMware NSX中三个新披露的漏洞,所有这些漏洞都使
【安全圈】乌克兰GUR黑入俄罗斯图波列夫公司,获取4.4GB战略机密数据
9 months 3 weeks ago
关键词网络攻击近日,乌克兰军事情报局(GUR)成功入侵了俄罗斯航空航天与国防核心企业图波列夫公司(Tupole
【安全圈】悬赏通缉!20名台湾民进党当局“资通电军”首恶分子曝光
9 months 3 weeks ago
关键词网络攻击5月20日和27日,广州市公安局天河区分局先后两次发布《警情通报》,称广州某科技公司遭受网络攻击
Iran-Linked BladedFeline Hits Iraqi and Kurdish Targets with Whisper and Spearal Malware
9 months 3 weeks ago
An Iran-aligned hacking group has been attributed to a new set of cyber attacks targeting Kurdish and Iraqi government officials in early 2024.
The activity is tied to a threat group ESET tracks as BladedFeline, which is assessed with medium confidence to be a sub-cluster within OilRig, a known Iranian nation-state cyber actor. It's said to be active since September 2017, when it targeted
The Hacker News