Камеры против нарушителей ПДД оказались охотниками за мигрантами
Никаких ордеров — только запросы «по дружбе» и мгновенный доступ к любым передвижениям.
Aggregator
喜讯!快快网络荣登《嘶吼2025网络安全产业图谱》多个领域
10 months 2 weeks ago
5月27日,《嘶吼2025网络安全产业图谱》调研结果正式发布。作为新一代云安全引领者,快快网络入选图谱中的多个细分领域。
据悉,本次《嘶吼2025网络安全产业图谱》调研共收到400+网络安全企业参报,嘶吼安全产业研究院通过全面的市场调研与数据分析,对收录企业进行筛选,重点展示综合能力较高或具有代表性的企业,为行业用户提供更精准的行业参考指南。
依托突出的技术创新实力和强大的云安全防护能力,快快网络入选了云主机安全、云抗D、WAF云安全防护、网页防篡改、web应用防护(WAF)、勒索病毒专项防护、API安全、网络安全保障等多个细分领域。
此次入选图谱多个细分领域,是业界对快快网络整体云安全实力的高度认可。未来,快快网络将依托十余年的技术创新能力,不断打磨产品,提升安全服务水平,为用户提供更加全面、可靠的云安全防护。
快快网络
CVE-2025-25251 | Fortinet FortiClientMac up to 7.0.14/7.2.8/7.4.2 XPC Message authorization (FG-IR-25-016)
10 months 2 weeks ago
A vulnerability was found in Fortinet FortiClientMac up to 7.0.14/7.2.8/7.4.2 and classified as critical. This issue affects some unknown processing of the component XPC Message Handler. The manipulation leads to incorrect authorization.
The identification of this vulnerability is CVE-2025-25251. Attacking locally is a requirement. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
持续飙升!境外DDoS攻击强势来袭
10 months 2 weeks ago
近期,快快网络DDoS专家团队在监测全球DDoS攻击态势过程中,发现境外不法分子对我国域内发起高强度的DDoS攻击。快快网络DDoS专家团队呼吁企业用户结合自身的业务情况及时提升安全防御能力。
根据快快网络DDoS专家团队的监测数据显示,自2025年4月份以来,全球范围中遭受DDoS攻击的国家/地区数接近200个。其中,中国域内遭受到的攻击数量冲到第一,成为全球DDoS攻击范围里的首要目标国家。
一、中国域内被攻击情况
1. 目标城市:主要集中在北京、香港、浙江、广东、江苏等多个城市,占比超过85%;
2. 目标行业:主要集中在基础设施及服务、视频平台、游戏服务等互联网行业;
3. 目标端口:主要集中为80、443等。
4. 攻击类型:主要集中为传输层攻击(ICMP Flood、TCP ACK Flood、Host Total Traffic)和应用层攻击(HTTP Flood、HTTPS Flood)等。
二、攻击手法分析
1. 混合攻击:黑客等不法分子借助僵尸网络、远程控制、后门利用等手段,配合不同层级的流量攻击,加大了防御难度;
2. 新威胁出现:无连接轻量级目录访问协议攻击和封装安全荷载反射/放大攻击等新威胁的出现也让攻击防护更加复杂;
3. AI技术加大攻击精准度:黑客等不法分子进一步利用AI技术提高攻击的精确度和效率,加大了攻击防范难度系数。
三、AI主动防御DDoS解决方案
快快网络自研的DDoS系列安全产品结合AI安全引擎,可为用户提供TB级海量防护带宽资源,结合智能调度和高可用的防护集群,为企业用户构建多层级、立体化的防御体系,帮助企业用户有效抵御大流量DDoS攻击及CC攻击。
1. 边缘智能,全球分布式协同
AI分析用户生物特征,自主区分真实用户和自动化攻击机器,减少对普通用户正常流量的干扰率。并将轻量化AI模型部署至全球SCDN节点,就近对垃圾流量执行初始过滤,中心节点资源则聚焦应对高级攻击,从而降低中心节点负载,延迟降低至毫秒级。
2. 全球安全态势监测,画像精准
结合监测到的攻击事件、组织还有僵尸网络的恶意文件、域名、IP,经过关联分析,最终形成犯罪团伙和控制团伙的画像,完成对DDoS攻击组织的刻画。
3. 智能感知,新型攻击无处遁形
基于自编码器深度学习的实时流量分析,无需依赖对历史攻击的溯源学习即可捕捉细微异常:结合流量包速率、源IP分布等百维特征,让未知的新型攻击无处遁形。融合多模态特征构建攻击者“数字画像”,极大程度降低AI误判率,解放人力资源。
4. 弹性调度,防御策略自我进化
深度强化学习(DRL)构建的响应引擎,可模拟百万级攻防场景自主训练,动态调整流量清洗阈值、自动切换备用路由,有效降低误杀概率。结合时序预测模型,攻击到来时提前预判攻击规模并动态扩展云资源,即使面对Tb级流量冲击仍能确保关键业务稳定,提升业务连续性。
未来,我国域内的互联网基础设施业务仍是境外DDoS攻击的重要目标对象,对于涉及此服务范围的企业用户仍需保持高度警惕,可借助专业的DDoS安全服务提供商应对复杂的境外DDoS及其他网络攻击。及时提高DDoS防御能力,避免遭受数据泄露、业务中断带来的经济损失,影响品牌声誉。
在数字全球化时代下,网络安全不仅关乎技术,更关乎社会稳定及国家对外形象展现。快快网络将继续致力于提供强大的DDoS防护产品与服务,为我国企业和用户提供可靠的安全护盾。
快快网络
CVE-2024-54020 | Fortinet FortiManager up to 7.0.7/7.2.1 Update authorization (FG-IR-24-023)
10 months 2 weeks ago
A vulnerability has been found in Fortinet FortiManager up to 7.0.7/7.2.1 and classified as problematic. This vulnerability affects unknown code of the component Update Handler. The manipulation leads to missing authorization.
This vulnerability was named CVE-2024-54020. Local access is required to approach this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-46777 | Fortinet FortiPortal up to 7.0.9/7.2.5/7.4.0 log file (FG-IR-24-380)
10 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Fortinet FortiPortal up to 7.0.9/7.2.5/7.4.0. This affects an unknown part. The manipulation leads to sensitive information in log files.
This vulnerability is uniquely identified as CVE-2025-46777. An attack has to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-24473 | Fortinet FortiClientWindows up to 7.2.1 exposure of sensitive system information to an unauthorized control sphere (FG-IR-24-548)
10 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Fortinet FortiClientWindows up to 7.2.1. Affected by this issue is some unknown functionality. The manipulation leads to exposure of sensitive system information to an unauthorized control sphere.
This vulnerability is handled as CVE-2025-24473. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-47295 | Fortinet FortiOS up to 6.4.16/7.0.14/7.2.7/7.4.3 FGFM Daemon buffer over-read (FG-IR-24-381)
10 months 2 weeks ago
A vulnerability classified as problematic was found in Fortinet FortiOS up to 6.4.16/7.0.14/7.2.7/7.4.3. Affected by this vulnerability is an unknown functionality of the component FGFM Daemon. The manipulation leads to buffer over-read.
This vulnerability is known as CVE-2025-47295. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-47294 | Fortinet FortiOS up to 6.4.16/7.0.14/7.2.7 csfd Daemon integer overflow (FG-IR-24-388)
10 months 2 weeks ago
A vulnerability classified as problematic has been found in Fortinet FortiOS up to 6.4.16/7.0.14/7.2.7. Affected is an unknown function of the component csfd Daemon. The manipulation leads to integer overflow.
This vulnerability is traded as CVE-2025-47294. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-4009 | Evertz SVDN 3080ipx-10G Web Management Interface command injection
10 months 2 weeks ago
A vulnerability was found in Evertz SVDN 3080ipx-10G, MViP-II, cVIP, 7890IXG, CC Access Server and 5782XPS-APP-4E. It has been rated as very critical. This issue affects some unknown processing of the component Web Management Interface. The manipulation leads to command injection.
The identification of this vulnerability is CVE-2025-4009. The attack may be initiated remotely. There is no exploit available.
vuldb.com
How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds
10 months 2 weeks ago
Would you expect an end user to log on to a cybercriminal’s computer, open their browser, and type in their usernames and passwords? Hopefully not! But that’s essentially what happens if they fall victim to a Browser-in-the-Middle (BitM) attack.
Like Man-in-the-Middle (MitM) attacks, BiTM sees criminals look to control the data flow between the victim’s computer and the target service, as
The Hacker News
以AI对抗AI,补天锻造人工智能时代白帽人才“熔炉”
10 months 2 weeks ago
补天构建“三维一体”的AI安全人才培养方案。
251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and Elasticsearch
10 months 2 weeks ago
Cybersecurity researchers have disclosed details of a coordinated cloud-based scanning activity that targeted 75 distinct "exposure points" earlier this month.
The activity, observed by GreyNoise on May 8, 2025, involved as many as 251 malicious IP addresses that are all geolocated to Japan and hosted by Amazon.
"These IPs triggered 75 distinct behaviors, including CVE exploits,
The Hacker News
Армия Австралии бросает вызов генералам: больше денег — не тем, у кого звезда, а тем, кто кодит
10 months 2 weeks ago
Если застрял в прошлом веке, надбавок не жди…
Apple не перенесёт производство iPhone в США. Что бы там не говорил Трамп
10 months 2 weeks ago
25% пошлины = 0% эффекта: производи сам, если сможешь.
New Phishing Campaign Uses DBatLoader to Drop Remcos RAT: What Analysts Need to Know
10 months 2 weeks ago
Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.
Owais Sultan
Crooks use a fake antivirus site to spread Venom RAT and a mix of malware
10 months 2 weeks ago
Researchers found a fake Bitdefender site spreading the Venom RAT by tricking users into downloading it as antivirus software. DomainTools Intelligence (DTI) researchers warn of a malicious campaign using a fake website (“bitdefender-download[.]com”) spoofing Bitdefender’s Antivirus for Windows download page to trick visitors into downloading a remote access trojan called Venom RAT. “A malicious campaign […]
Pierluigi Paganini
Netfilter Tunnel 之殇:CVE-2025-22056分析
10 months 2 weeks ago
文章详细介绍了 Netfilter 框架及其安全风险,深入剖析了漏洞成因),并提供了两种利用方式(基于 io_uring 和 pipe_buffer 的任意地址读写)实现内核提权。
Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites
10 months 2 weeks ago
A Vietnam-nexus hacking group distributes infostealers and backdoors via social media ads promoting fake AI generator websites
MATLAB, Serving Over 5 Million Users, Hit by Ransomware Attack
10 months 2 weeks ago
MathWorks, the renowned developer of MATLAB and Simulink, has been grappling with the aftermath of a significant ransomware attack that began on Sunday, May 18, 2025. The incident, which affected both customer-facing and internal IT systems, prompted immediate notification to federal law enforcement and the mobilization of cybersecurity experts. As of May 27, many services […]
The post MATLAB, Serving Over 5 Million Users, Hit by Ransomware Attack appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Anupriya