Aggregator

一次付费：终身学习 + 持续更新

Linux Sudo 被曝高危漏洞，无特权用户可借此提权至 root，主流发行版均受波及。

看雪论坛作者ID：ngiokweng

从治理流程全闭环到效能整体大提升

A critical remote code execution (RCE) vulnerability affecting Django web applications, demonstrating how seemingly benign CSV file upload functionality can be weaponized for complete server compromise.  Summary1. Django RCE exploit chains directory traversal with CSV parser abuse to compromise servers through file uploads.2. Attackers use unsanitized username input (../../../../../../app/backend/backend/) to target Django's wsgi.py file.3. Malicious […]

The post Django App Vulnerabilities Chained to Execute Arbitrary Code Remotely appeared first on Cyber Security News.

Trustwave SpiderLabs has uncovered a chilling cyber threat targeting Latin American organizations, particularly in the financial sector, with a focus on Colombian institutions. The threat cluster, linked to the notorious Proton66 OOO infrastructure, employs a cunning mix of open-source Remote Access Trojans (RATs) and advanced obfuscation techniques to bypass static detection mechanisms. Unmasking a Sophisticated […]

The post Blind Eagle Hackers Leverage Open-Source RATs and Ciphers to Evade Static Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Editor’s note: The current article is authored by Mauro Eldritch, offensive security expert and threat intelligence analyst. You can find Mauro on X.  New ransomware strains continue to surface frequently, and many of them are loosely built on or repackaged from existing families. One such case involves a sample resembling DragonForce ransomware, yet bearing several […]

The post DEVMAN Ransomware: Analysis of New DragonForce Variant  appeared first on ANY.RUN's Cybersecurity Blog.

愿心中的火永不熄灭！

Interpol warns that scam centers are expanding beyond Southeast Asia

挪威近年来最严重网络攻击事件之一

Microsoft Threat Intelligence has uncovered a sophisticated operation by North Korean remote IT workers who are leveraging cutting-edge artificial intelligence (AI) tools to infiltrate organizations worldwide. Since at least 2020, these highly skilled individuals, often based in North Korea, China, and Russia, have been targeting technology-related roles across various industries to generate revenue for the […]

The post North Korean IT Workers Employ New Tactics to Infiltrate Global Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Теперь за нами следят с высоты 20 км. Спокойно, это для нашего блага… наверное.

三步搭建AI企业知识库，让企业智慧“活”起来！

DeepSeek случайно запустил новую холодную войну в IT.

Windows 11 Revamp Means No Kernel Access Required for Third-Party Security Tools
Nearly one year after a faulty CrowdStrike software update disrupted 8.5 million Windows hosts, causing global IT chaos, Microsoft is previewing multiple resilience changes to Windows, including enabling third-party endpoint security tools to do their magic without needing kernel-level access.

Horizon Healthcare RCM Hints at Paying Ransom in Data Theft Incident
Horizon Healthcare RCM is the latest revenue cycle management software vendor to report a health data breach involving ransomware and data theft. The firm's breach notification statement suggests that the company paid a ransom to prevent the disclosure of its stolen information.

Claudia Plattner Says Complete Switch to European Technologies Is Unrealistic
European ambitions to replace foreign tech solutions with domestic alternatives are "unrealistic" in the short term, warned the head of the German cybersecurity head cybersecurity agency in a call for greater technological control over cloud platforms.

ESET experts discuss Sandworm’s new data wiper, relentless campaigns by UnsolicitedBooker, attribution challenges amid tool-sharing, and other key findings from the latest APT Activity Report