Aggregator

A new phishing campaign has been observed employing tax-themed lures to deliver a stealthy backdoor payload as part of attacks targeting Pakistan. Cybersecurity company Securonix, which is tracking the activity under the name FLUX#CONSOLE, said it likely starts with a phishing email link or attachment, although it said it couldn't obtain the original email used to launch the attack. "One of the

Discover strategies for empowering women in cybersecurity, gleaned from lessons learned at the 2024 FS-ISAC women’s networking event.

Unlike 5G non-standalone (NSA) that is connected to the 4G LTE core network infrastructure, 5G standalone (SA) works independently and is deployed with dedicated 5G equipment and network functionalities. 5G SA networks link to a cloud-native 5G core that can deliver a more complete experience for support of advanced...

A review of some interesting briefings and tools found at Blackhat EMEA 2024.

The post Review of Blackhat EMEA 2024 appeared first on The Cyber Hut.

The post Review of Blackhat EMEA 2024 appeared first on Security Boulevard.

YouTube 宣布将在未来几天推出一项可选择加入的功能，让内容创作者和版权所有者选择允许第三方公司使用其视频内容去训练 AI。该选项“Third-party training”位于 YouTube Studio 设置下，默认是不允许。创作者可以选择允许哪些第三方公司，也可以不加选择的允许任何第三方公司。YouTube 表示，未经许可抓取视频的做法是不允许的。

WebView2 от Microsoft стал входным билетом для вирусов.

A vulnerability, which was classified as problematic, was found in NextGeography NG Analyser up to 2.2.710. This affects an unknown part. The manipulation leads to authorization bypass. This vulnerability is uniquely identified as CVE-2024-9819. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Moodle up to 4.1.14/4.3.8/4.4.4/4.5.0. Affected by this issue is some unknown functionality of the component Email Change Confirmation Token. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2024-55645. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Moodle up to 4.1.14/4.3.8/4.4.4/4.5.0. Affected by this vulnerability is an unknown functionality of the component Tag Index Page. The manipulation leads to information disclosure. This vulnerability is known as CVE-2024-55644. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.