Aggregator

Australia’s spy chief warns of China-linked threats to critical infrastructure

3 months ago

Australia’s spy chief warns China-linked actors are probing critical infrastructure and preparing for cyber sabotage and espionage. Australia’s intelligence chief Mike Burgess warned that China-linked threat actors are probing critical infrastructure and, in some cases, have gained access. He said at least two Chinese state-sponsored groups are positioning themselves for future sabotage and espionage operations […]

Pierluigi Paganini

Hackers Use KakaoTalk and Google Find Hub in Android Spyware Attack

Hack Read

3 months ago

North Korea-linked KONNI hackers used KakaoTalk and Google Find Hub to spy on victims and remotely wipe Android devices in a targeted phishing campaign.

Deeba Ahmed

Ransom House

Dark Feed IO

3 months ago

You must login to view this content

cohenido

INC

Dark Feed IO

3 months ago

You must login to view this content

cohenido

XcodeGhost in 2025

rmb122's notebook

3 months ago

背景

在上网冲浪时, 发现一篇文章提到了 XcodeGhost. 想起之前只是了解了大概, 就又去仔细搜索了下 XcodeGhost 事件的细节, 发现 icloud-analysis.com 这个域名目前居然是无主状态, 于是有了接下来的故事.

INC

Dark Feed IO

3 months ago

You must login to view this content

cohenido

New UK laws to strengthen critical infrastructure cyber defenses

Bleeping Computer.

3 months ago

The United Kingdom has introduced new legislation to boost cybersecurity defenses for hospitals, energy systems, water supplies, and transport networks against cyberattacks, linked to annual damages of nearly £15 billion ($19.6 billion). [...]

Sergiu Gatlan

Нанороботы, лазер и немного золота — этого оказалось достаточно, чтобы вырастить живую кость с нуля… ну, почти

Securitylab.ru

3 months ago

Наглядный эксперимент показывает, как превратить стволовые клетки во что угодно.

Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws

The Hackers News

3 months ago

Amazon's threat intelligence team on Wednesday disclosed that it observed an advanced threat actor exploiting two then-zero-day security flaws in Cisco Identity Service Engine (ISE) and Citrix NetScaler ADC products as part of attacks designed to deliver custom malware. "This discovery highlights the trend of threat actors focusing on critical identity and network access control infrastructure –

The Hacker News

Future-Proofing Retail Security: Preparing for Tomorrow's Cyberthreats

The Akamai Blog

3 months ago

Learn about the emerging cybersecurity threats facing retailers and the advanced technologies needed to build adaptive, future-ready security defenses.

Jim Black

Connecting to production: the architecture of remote bindings

The Cloudflare Blog

3 months ago

Remote bindings allow you to connect your local Worker code to deployed Cloudflare resources like R2 and D1. Come along on the technical journey of how we built this feature to create a seamless local development experience.

Samuel Macleod

Hackers exploited Citrix, Cisco ISE flaws in zero-day attacks

Bleeping Computer.

3 months ago

An advanced threat actor exploited the critical vulnerabilities "Citrix Bleed 2" (CVE-2025-5777) in NetScaler ADC and Gateway, and CVE-2025-20337 affecting Cisco Identity Service Engine (ISE) as zero-days to deploy custom malware. [...]

Bill Toulas

APT-C-08 Hackers Exploiting WinRAR Vulnerability to Attack Government Organizations

Cyber Security News

3 months ago

The advanced persistent threat group APT-C-08, also known as Manlinghua or BITTER, has launched a sophisticated campaign targeting government organizations across South Asia by exploiting a critical directory traversal vulnerability in WinRAR. Security researchers have identified the group’s first operational use of CVE-2025-6218, a flaw affecting WinRAR versions 7.11 and earlier that allows attackers to […]

The post APT-C-08 Hackers Exploiting WinRAR Vulnerability to Attack Government Organizations appeared first on Cyber Security News.

Tushar Subhra Dutta

C2通信协议解析（一）：HTTP(s)、mTLS、WebSocket、DNS

先知技术社区

3 months ago

本文深入探讨四种主流C2通信协议的技术实现与流量伪装策略，涵盖HTTPS加密传输、mTLS双向认证、WebSocket全双工通信及DNS隧道隐蔽控制，结合Go语言实例分析其对抗检测机制。

某app加密算法逆向分析

先知技术社区

3 months ago

加密算法逆向分析

Seeing Clearly with Deep Packet Inspection at Scale

Netscout

3 months ago

Every organization depends on digital services that must stay available and secure. The margin for error is getting smaller. More clouds, more devices, and more threats mean greater risk to services and network performance. Traditional monitoring can’t always keep up, which is why detecting and preventing issues inside...

Anthony Cote

营收狂飙的「暗面」：Meta 成「全球欺诈大本营」？

极客公园

3 months ago

当 Meta 的营收增长，靠纵容「诈骗」。

0Day стоил $40000, а пользователям — всех файлов. Немедленное обновление Synology — единственный способ избежать эксплуатации

Securitylab.ru

3 months ago

На Pwn2Own показали, как превратить «персональное облако» в общедоступный файловый сервер.

钱志敏在英国被判 11 年 8 个月

Solidot

3 months ago

天津蓝天格锐 430 亿元非法集资案当事人、携款逃到英国的钱志敏因洗钱罪被判 11 年 8 个月。中国受害者正寻求英国政府归还部分其扣押的目前价值约 50 亿英镑的比特币。现年 47 岁的钱志敏于 2017 年 9 月持假护照抵达英国，她搬进了 Hampstead Heath 的一栋豪宅，月租金逾 1.7 万英镑。为支付租金需要将比特币兑换成现金，她装成是一位富有的古董钻石继承人，雇佣了前外卖员温俭为其私人助理，帮助将比特币兑换成现金和房产等资产。随着比特币价格飙升，钱看起来可以兑现蓝天格锐向投资者承诺的“躺着也能致富”的目标。温俭在庭审中表示，钱大部分时间都躺在床上玩游戏和网购。但在她们试图购买一栋豪宅时，由于无法说明财富来源而引起警方调查。警方在搜查中扣押了数万枚比特币。这些比特币目前价值 466 亿人民币，超过了从投资者骗取的 430 亿元集资。暂时还不清楚投资者能否获得全额或更多退款。英国财政部尚未回应如何处理这些比特币。

CodeQL中Java污点分析的净化流优化与API安全检测实践

先知技术社区

3 months ago

本文主要讨论了CodeQL在Java项目通过自定义isBarrier规则来净化某些数据类型，从而减少误报。还介绍了提取Spring框架中Controller方法的URL路径。

Aggregator

Managed ad