Aggregator

Zr.Ms. Friesland heeft opnieuw een drugstransport in de Caribische Zee onderschept. Na een achtervolging nam het marineschip een grote hoeveelheid cocaïne in beslag. Dat gebeurde 14 juni, maar is vandaag pas bekendgemaakt.

OsmAnd 或代表 OpenStreetMap Automated Navigation Directions 是一款基于 OpenStreetMap 数据集的 FOSS 地图导航应用，至今已走过了 15 年历程。项目开发者称，OsmAnd 在所有平台的月活跃量为 250 万，日活跃量为 10 万以上，总安装量超过 2000 万。开发者称，过去 15 年可分为三个阶段：前五年是构建地图导航应用的基础功能；接下来五年是让功能齐全，提供丰富的插件和专业的工具；第三个五年是重写和改进了渲染引擎和路由算法等核心组件。未来的五年将是改善稳定性、速度和整合。

Australia’s flagship carrier, Qantas Airways, has disclosed a significant cybersecurity breach affecting up to 6 million customers, with cybercriminals gaining unauthorized access to a third-party customer service platform used by the airline’s contact centre operations. The incident, detected on Monday and contained shortly thereafter, represents one of the most significant data breaches in Australian aviation […]

The post Qantas Airlines Hit by Cyberattack, Customer Data Compromised appeared first on Cyber Security News.

Security-First Culture (SFC) is an organization-wide commitment where security considerations influence decision-making at every level, from strategic planning to daily operational tasks.  It’s not just about having fancy tech or a dedicated IT team; it’s about making security a core part of how the company thinks and acts. A mindset where every decision, from coding […]

The post A Guide to Developing Security-First Culture Powered by Threat Intelligence  appeared first on ANY.RUN's Cybersecurity Blog.

I analyzed some PureLogs Stealer malware infections this morning and found some interesting behavior and artifacts that I want to share. PureLogs infections sometimes start with a dropper/downloader (PureCrypter) that retrieves a .pdf file from a legitimate website. The dropper I will demo here down[...]

PureLogs恶意软件通过伪装成PDF文件传播，实际为加密的DLL文件。该DLL被注入到InstallUtil.exe进程并连接C2服务器。分析揭示了其行为模式及多个IOC指标。

A vulnerability classified as very critical has been found in Infinera G42 up to 7.0. This affects an unknown part of the component Endpoint. The manipulation leads to improper handling of insufficient permissions or privileges. This vulnerability is uniquely identified as CVE-2025-27025. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

文章介绍了Reddit作为一个社交媒体平台的功能和使用方法，包括导航、社区互动、应用程序下载以及登录流程等内容。

AI含量一小步，安全运营一大步

360航空维修AI助手目前已在全国多家航空企业落地

Как жили, любили и мечтали до нашей эры?

澳大利亚最大航空公司Qantas遭网络攻击，第三方客服平台泄露600万客户记录，包括姓名、邮箱等信息。未涉及信用卡等敏感数据。公司已隔离系统并配合调查。FBI警告黑客针对航空业的威胁增加。

A significant security flaw has been identified in the popular YONO SBI banking application that could potentially expose millions of users to cybersecurity threats.  The vulnerability, designated as CVE-2025-45080, affects version 1.23.36 of the YONO SBI: Banking & Lifestyle app and stems from insecure network configuration settings that allow unencrypted data transmission. Summary1. CVE-2025-45080 in […]

The post YONO SBI Banking App Vulnerability Let Attackers Execute a Man-in-the-Middle Attack appeared first on Cyber Security News.

Пятерых "бизнесменов" поймали за руку.

Netcraft报告指出大型语言模型在识别登录网站时不可靠,易导致钓鱼攻击风险增加,并举例说明其结果可能被恶意利用。

A report published this week by Netcraft, a provider of a platform for combating phishing attacks, finds that large language models (LLMs) might not be a reliable source when it comes to identifying where to log in to various websites.

The post Report Finds LLMs Are Prone to Be Exploited by Phishing Campaigns appeared first on Security Boulevard.

该文章揭示了Vite框架中`@fs`机制存在的本地文件包含（LFI）漏洞（CVE-2025-30208），攻击者可通过构造特定查询参数读取服务器上的任意文件。该漏洞等级为高危至严重，并提供了详细的PoC代码和利用方法。

这篇文章介绍了一个Python脚本，用于演示CVE-2025-47170漏洞的利用。该脚本生成一个包含VBA宏的恶意Word文档（.docm），当用户启用宏时，会从HTTP服务器下载并执行VBScript payload（salaries.vbs），导致系统重启。该方法通过动态下载payload和隐藏执行步骤来绕过Windows Defender检测。

Moodle 4.4.0 存在认证远程代码执行漏洞（CVE-2024-43425），允许攻击者通过上传特定计算题触发系统命令执行。该漏洞影响多个版本（如4.1至4.4系列），需登录后利用。