Aggregator

Кибергруппировка усилила атаки в 2025 году.

The Socket Research Team has uncovered a malicious npm package@ton-wallet/create designed to steal sensitive cryptocurrency wallet keys from developers and users in the TON blockchain ecosystem. TON, originally developed by Telegram, is a growing platform for decentralized applications (dApps), smart contracts, and cryptocurrency transactions. The malicious package impersonated the legitimate @ton/ton package and remained undetected […]

The post Malicious npm Package Targets Developers for Supply Chain Attack appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Silver Fox, a China-based threat actor that may or may not be backed by the Chinese government, has been delivering the ValleyRAT backdoor to unsuspecting users by disguising the malware as legitimate healthcare app (the Philips DICOM viewer), a Windows text editor (EmEditor), and system drivers and utilities. The ValleyRAT malware How the malware gets served to users is unknown. In previous attacks attributed to Silver Fox, the group has used SEO poisoning and / … More →

The post China-based Silver Fox spoofs healthcare app to deliver malware appeared first on Help Net Security.

Researchers at Palo Alto Networks have identified a new Linux malware, dubbed “Auto-Color,” that has emerged as a significant threat due to its advanced evasion techniques and ability to grant attackers full remote access to compromised systems. Discovered between November and December 2024, the malware targets Linux-based systems, primarily those in universities and government offices […]

The post New Auto-Color Malware Attacking Linux Devices to Gain Full Remote Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Rey Claims to have Leaked the Data of Telekom Slovenije

Cybersecurity researchers have flagged an updated version of the LightSpy implant that comes equipped with an expanded set of data collection features to extract information from social media platforms like Facebook and Instagram. LightSpy is the name given to a modular spyware that's capable of infecting both Windows and Apple systems with an aim to harvest data. It was first documented in

At Seceon’s 2025 Q1 Innovation and Certification Days, Seceon’s Bhabani Prasad engaged in a conversation with cybersecurity experts Deeptesh Chandra and German Moreno about the evolving threat landscape and how Seceon’s AI-powered platform is setting new standards in cybersecurity. The discussion explored Seceon’s competitive strengths, AI-driven threat prevention, and the platform’s ability to consolidate multiple

The post Seceon’s AI-Driven Cybersecurity: Insights from Bhabani Prasad, Deeptesh Chandra, and German Moreno appeared first on Seceon Inc.

The post Seceon’s AI-Driven Cybersecurity: Insights from Bhabani Prasad, Deeptesh Chandra, and German Moreno appeared first on Security Boulevard.

Организации рискуют потерять контроль над критически важной информацией.

The Lumma Stealer malware, a sophisticated infostealer, is being actively distributed through malicious files disguised as video content on platforms like YouTube. Researchers at Silent Push have uncovered alarming patterns in the malware’s infrastructure, revealing its use of weaponized files to steal sensitive user data. These files are often embedded in video descriptions, comments, or […]

The post Lumma Stealer Malware Delivered Through Weaponized Files Disguised as Videos appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity researchers at Bitdefender Labs have uncovered a sophisticated scam targeting the Counter-Strike 2 (CS2) gaming community. Cybercriminals are hijacking popular YouTube gaming channels to impersonate professional players and lure unsuspecting fans into fraudulent schemes. These scams, timed to coincide with major esports events like IEM Katowice 2025 and PGL Cluj-Napoca 2025, result in stolen […]

The post New Attack Hijacks Popular YouTube Gaming Channels to Steal Steam Accounts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as problematic has been found in GLPI up to 10.0.17. This affects an unknown part of the file status.php. The manipulation of the argument name leads to information disclosure. This vulnerability is uniquely identified as CVE-2025-21626. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Have you ever heard anyone earnestly ask in a business, “Who owns legal?” or “Who sets the financial strategy?” Probably not – it should be obvious, right? Yet, when it comes to cybersecurity, the question of ownership still seems to spark endless debates. That might have been understandable back in the 1990s when key security roles like the CISO were still being ironed out. But these days, it should be a serious red flag. Security … More →

The post Cybersecurity needs a leader, so let’s stop debating and start deciding appeared first on Help Net Security.

Author/Presenter: The Magician

Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.

Permalink

The post DEF CON 32 – Doors, Cameras & Mantraps: Oh My! appeared first on Security Boulevard.