Aggregator

Interlock ransomware continues to develop custom tooling and a new RAT has been detected by researchers

Threat actors have exploited Microsoft Compiled HTML Help (CHM) files to distribute malware, with a notable sample named deklaracja.chm uploaded to VirusTotal from Poland. This CHM file, a binary container for compressed HTML and associated objects, serves as a delivery vehicle for a multi-stage infection chain. Upon execution via the default hh.exe handler, the file […]

The post Hackers Weaponize Compiled HTML Help to Deliver Malicious Payload appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

AI 浏览器的野心不是换下 Chrome，而是重新思考人与信息的关系。

五年磨一剑，焕新再出发

94%员工重度依赖浏览器，70%攻击源自其中，统一浏览器安全（UBS）内嵌零信任，成企业防护新基石。

Modern AI attacks require runtime guardrails capable of spanning application, container and node/host runtime environments comprehensively.

The post Security in the Era of AI-speed Exploits appeared first on Security Boulevard.

A vulnerability classified as critical was found in iGaming CMS 1.5. This vulnerability affects unknown code of the file poll_vote.php. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2008-2130. The attack can be initiated remotely. Furthermore, there is an exploit available.

Name: L3HCTF 2025 (an L3HCTF event.)
Date: July 12, 2025, 1 a.m. — 14 July 2025, 01:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://l3hctf2025.xctf.org.cn/
Rating weight: 23.50
Event organizers: L3H Sec

Уязвимость тормозов в поездах США игнорировали 12 лет, а теперь за неё платят очень дорого.

恭喜SU战队！！

Sophos’ Ben Gelman and Sean Bergeron will present their research on enhancing command line classification with benign anomalous data at Las Vegas

为了能抓到包，无数安全研究人员使出浑身解数，我们可以按照OSI七层模型或TCP/IP四层模型，将这些方法进行粗略的分类。

黑客借 AI 扩展盗走50万美元加密资产

看雪论坛作者ID：九天666

A vulnerability was found in Gearbox Software Halo Combat Evolved up to 1.05. It has been classified as problematic. This affects an unknown part. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2004-1539. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Oracle Fusion Middleware 8.3.5/8.3.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Outside In Technology. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2012-1770. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

Luxury fashion house Louis Vuitton has confirmed that customer data from its UK operations was compromised in a cyber-attack, marking the latest in a series of high-profile retail breaches targeting major brands. The incident, which occurred on July 2, 2025, resulted in unauthorized access to customer information, including names, contact details, and purchase histories, though […]

The post Louis Vuitton Suffers Data Breach—Customer Information Stolen appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

一年一度的“大考”火热进行中，攻防演练期间本公众号会每日更新当天鲜活情报和热点漏洞，欢迎大家对我们进行收藏和关注！