Aggregator

Сразу тридцать государств присоединились к негласному восстанию против Кремниевой долины.

Researchers in California contacted data brokers in their state to exercise their rights under the California Privacy Protection Act. Many didn’t reply, while others threw up barriers.

The post Hundreds of registered data brokers ignore user requests around personal data appeared first on CyberScoop.

Exposed API documentation is a gift-wrapped roadmap for threat actors. The free Autoswagger tool from Intruder scans for exposed docs and flags endpoints with broken access controls—before attackers find them. [...]

The rise of agentic AI means the battle of the machines is just beginning. To win, we'll need our own agents — human and machine — working together.

Russian authorities confirmed on Monday that ongoing Aeroflot flight disruptions are due to a cyberattack affecting the nation's largest carrier.

Russia’s Aeroflot, one of the world’s oldest airlines, has been left scrambling after pro-Ukraine hackers claimed to have “completely destroyed” the carrier’s internal IT infrastructure in a stealthy, year-long campaign. The groups, known as “Silent Crow” and Belarusian counterpart “Cyber Partisans BY,” said they gained deep-tier access to systems ranging from booking platforms to executive […]

The post Hackers Allegedly Destroyed Aeroflot Airlines’ IT Infrastructure in Year-Long Attack appeared first on Cyber Security News.

Как один американский закон перечёркивает европейские границы.

It’s 10 p.m. when the power fails without warning, plunging an entire city into darkness. What follows is a mayor’s worst nightmare: traffic grinds to a halt, emergency services are overwhelmed, and families are left without power. Within minutes, critical infrastructure collapses, and no one knows why. This isn’t a...

Cybersecurity researchers have successfully deployed artificial intelligence-powered honeypots to trick cybercriminals into revealing their attack strategies, demonstrating a promising new approach to threat intelligence gathering. The innovative technique uses large language models (LLMs) to create convincing fake systems that lure hackers into exposing their methods and infrastructure. Revolutionary Deception Technology The breakthrough involves Beelzebub, a […]

The post LLM Honeypots Deceive Hackers into Exposing Attack Methods appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

As part of some research I’m doing into Amcache (more on that another time), I went about exploring Windows PE version information and how Windows see’s it. This came about because I thought I found a bug in the Velocidex PE module when in fact, it’s more likely “Windows does funny things sometimes”. What was […]

Makers of the app for women called Tea are continuing to respond to an intrusion into a "legacy data storage system" that exposed photos of users, including images of driver's licenses.

For the latest discoveries in cyber research for the week of 28th July, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The US Energy Department, including its National Nuclear Security Administration (NNSA), was reportedly breached as part of a Microsoft SharePoint vulnerability exploit. The breach was linked to a broader espionage campaign, that […]

The post 28th July – Threat Intelligence Report appeared first on Check Point Research.

Антипротон провёл в квантовой суперпозиции рекордные 50 секунд.

Critical vulnerability in Post SMTP plugin risks full site takeover, over 400k sites use it, and nearly half remain unpatched. A critical vulnerability, tracked as CVE-2025-24000 (CVSS of 8.8) in the Post SMTP WordPress plugin, used by 400k sites, allows full site takeover. The plugin Post SMTP is an email delivery plugin that allows site owners […]

The popular npm package ‘is’, which has about 2.8 million weekly downloads, has been taken over by threat actors in a sophisticated escalation of a phishing effort that was first disclosed last Friday. The attack began with emails spoofing npm’s [email protected] address, directing developers to a typosquatted domain, npnjs.com a near-identical proxy of the legitimate […]

The post NPM ‘is’ Package with 2.8M Weekly Downloads Exploited in Attack on Developers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In 2025, the demand for sophisticated ethical hacking services has intensified, driven by the rapid evolution of digital infrastructure and increasingly cunning cyber adversaries. Organizations are moving beyond periodic checks towards continuous security validation, seeking partners who offer deep technical expertise, innovative delivery models, and a proactive stance against emerging threats. Ethical hacking, encompassing everything […]

The post 10 Best Ethical Hacking Service Providers in 2025 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Insurance firm Allianz Life said that a threat actor accessed personally identifiable information of the majority of its 1.4 million US customers

Cybercriminals have allegedly compromised Airpay, one of India’s prominent digital payment gateway providers, exposing sensitive financial data of thousands of users and businesses.  The threat actors are currently advertising the company’s complete database on dark web marketplaces, raising serious concerns about the security of India’s digital payment infrastructure. Key Takeaways1.  Indian payment gateway allegedly compromised […]

The post Threat Actors Allegedly Claiming Breach of Airpay Payment Gateway appeared first on Cyber Security News.

A state lawmaker spoke to Recorded Future News about how a multistate group of legislators is working to put regulations on the data broker industry.