Aggregator
一款伪装成云盘的恶意APP逆向分析
DragonForce
You must login to view this content
DragonForce
You must login to view this content
Cybercriminals Target Turkish Banks With 8,400 Phishing Domains and 6,600 Scam Ads
Cybercriminals are operating an industrial-scale fraud ecosystem targeting Turkey’s financial sector, using more than 8,400 phishing domains, thousands of social media advertisements, fake loan offers, illicit gambling services, and money-mule recruitment to steal credentials. Group-IB’s investigation links these operations into five interconnected schemes targeting dozens of Turkish banking brands. Group-IB recorded more than 6,600 scam […]
The post Cybercriminals Target Turkish Banks With 8,400 Phishing Domains and 6,600 Scam Ads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Telegram’s t.me Links Go Offline After Registry Places Domain on serverHold
Почему 90% людей — правши, а не 50 на 50? Учёные подобрались к разгадке ближе, чем когда-либо
New MacOS Malware Exploits Legitimate Developer ID to Pose as Apple Crash Reporter
NIST Receives New Patent for Microbe-Killing Water Heater
Study of 85 Crypto Wallet Extensions Finds Address Leaks and Cross-Site Tracking Risks
A Guide to the Convergence of Electronic Warfare and Cyber Operations
SAP warns of critical flaws in NetWeaver and Commerce Cloud
How Pentera Turns AI Security Workflows into Validation Engines
Шесть недель без работы — и 37 лет истории коту под хвост. Кибератака обанкротила немецкую текстильную компанию
ANY.RUN Integrates Threat Intelligence and Interactive Sandbox to Streamline SOC Workflows
Security Operations Centers (SOCs) often encounter challenges that go beyond just managing alert volume. Each alert necessitates that analysts validate indicators, investigate behaviors, assess scope, decide on escalation paths, and create detections to prevent future occurrences. When these tasks rely on separate tools, crucial evidence can be lost during transitions, leading analysts to enrich the […]
The post ANY.RUN Integrates Threat Intelligence and Interactive Sandbox to Streamline SOC Workflows appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
OAuth Client ID Spoofing Lets Attackers Validate Stolen Microsoft Entra Credentials
CISA Adds Cisco IOS CSRF Flaw Enabling Arbitrary Command Execution to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2008-4128, a cross-site request forgery (CSRF) vulnerability affecting Cisco IOS, to its Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability was officially listed on July 13, 2026, with a remediation deadline of July 16, 2026, for Federal Civilian Executive Branch agencies. Although this vulnerability dates back […]
The post CISA Adds Cisco IOS CSRF Flaw Enabling Arbitrary Command Execution to KEV Catalog appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.