Aggregator

Threat Attack Daily - 4th of June 2025

Ransomware Attack Update for the 4th of June 2025

A vulnerability, which was classified as critical, was found in Complete Supplier Management System 1.0. Affected is an unknown function of the file /Supply_Management_System/admin/edit_category.php. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2024-22625. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability was found in Netis MW5360 1.0.1.3031. It has been rated as critical. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument Password leads to command injection. This vulnerability is handled as CVE-2024-22729. The attack can only be initiated within the local network. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Project Worlds Visitor Management Systemin 1.0. Affected is an unknown function of the file POST/index.php of the component Login Page. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2024-22922. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file profile.php of the component Feedback Form. The manipulation of the argument Your Feedback with the input <img src=x onerror=alert(document.cookie)> leads to cross site scripting. This vulnerability is handled as CVE-2024-1103. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Intermesh Group Office up to 6.6.181/6.7.63/6.8.30. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-23941. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Vinchin Backup & Recovery 7.2. Affected by this issue is the function deleteUpdateAPK. The manipulation leads to command injection. This vulnerability is handled as CVE-2024-22903. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in EyouCMS 1.6.5. It has been rated as problematic. Affected by this issue is some unknown functionality of the component URL Handler. The manipulation of the argument is_water leads to cross site scripting. This vulnerability is handled as CVE-2024-23031. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Orthanc up to 1.12.1 and classified as problematic. Affected by this issue is some unknown functionality of the component Error Report Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-22725. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

After three years of peddling stolen data, BidenCash, one of the web's most brazen cybercrime hubs is offline, and authorities say they're just getting started.

新风向下的韩国：李在明政府的战略重塑与政策转向深度解析2025年6月4日清晨，当晨光穿透首尔的薄雾，韩国迎来了

2025年6月4日，韩国政坛发生了一场静悄悄的革命。

A vulnerability classified as problematic has been found in Philips Collaboration Platform up to 12.2.0. This affects an unknown part. The manipulation leads to improper neutralization of script in attributes in a web page. This vulnerability is uniquely identified as CVE-2020-14525. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Philips Collaboration Platform up to 12.2.1. Affected is an unknown function. The manipulation leads to protection mechanism failure. This vulnerability is traded as CVE-2020-16198. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in Philips Collaboration Platform up to 12.2.1. It has been classified as problematic. This affects an unknown part. The manipulation leads to configuration. This vulnerability is uniquely identified as CVE-2020-16247. It is possible to launch the attack on the local host. There is no exploit available.

The cybercrime marketplace was used by more than 117,000 customers and trafficked more than 15 million credit card numbers since March 2022, the Justice Department said.

The post Feds seize 145 domains associated with BidenCash cybercrime platform appeared first on CyberScoop.

谈指标，首先要弄清楚考核的对象是谁？从问题来看，此处应该是对SDL安全运营人员。不过又可以分为广义和狭义，前者泛指从事SDL相关人员、尤其适合中小型团队，后者则仅指运营岗位上的人员、主要负责流程、体系、推动检测等工作。先说下广义的指标： 1、安全测试覆盖率：所有产品在上线前进行安全测试的情况，最理想状态是100%经过完整的安全测试，不过会出现各类古怪的bypass情况； 2、非自主发现漏洞比例：通过SRC、CVND等外部渠道接收到的产品相关安全漏洞数量占总体比例，越小说明SDL做的越好。 以上是比较通用的运营指标，按照不用风险等级亦可以继续细分，如高危漏洞修复率、中危漏洞修复率等，不过并非全部指标都应在很高水位，应该结合实际水平而定。 更多内容，可以访问： 1、SDL 100问 SDL100问：我与SDL的故事 SAST误报太高，如何解决？ SDL需要哪些人参与？ SDL如何做成平台化以及价值？ 安全SDK提供安全API是怎么做的？ 安全测试，测不出逻辑漏洞怎么办？ 如何逐步建设XAST安全测试工具？ SDL 68/100问：如何设计安全开发平台的架构和功能？ 2、SDL创新实践 首发！“ 研发安全运营 ” 架构研究与实践 DevSecOps实施关键：研发安全团队 DevSecOps实施关键：研发安全流程 DevSecOps实施关键：研发安全规范 从安全视角，看研发安全 数字化转型下研发安全痛点 一个思考：安全测试驱动产品安全？ 3、SDL最初实践 【SDL最初实践】开篇 【SDL最初实践】安全培训 【SDL最初实践】安全需求 【SDL最初实践】安全设计 【SDL最初实践】安全开发 【SDL最初实践】安全测试 【SDL最初实践】安全审核 【SDL最初实践】安全响应 4、软件供应链安全 软件供应商面临的攻防实战风险 软件供应商实战对抗十大安全举措 软件供应商攻防常规战之SDL 软件供应链投毒事件应急响应 5、安全运营实践 基于实践的安全事件简述 安全事件运营SOP：钓鱼邮件 安全事件运营SOP：网络攻击 安全事件运营SOP：蜜罐告警 安全事件运营SOP：webshell事件 安全事件运营SOP：接收漏洞事件 应急能力提升：实战应急困境与突破 应急能力提升：挖矿权限维持攻击模拟 应急能力提升：内网横向移动攻击模拟 应急能力提升：实战应急响应经验

A little more than three-quarters of these exposed devices are located in Europe, followed by Asia, with 17%.