Aggregator

关键词数据泄露勒索软件组织 Everest 再次在其暗网泄露站点上发布声称的攻击成果，将都柏林机场（Dubli

关键词网络犯罪臭名昭著的网络犯罪论坛 BreachForums 再次出现在网络上，这次通过清网域名提供访问，无

UK Finance reveals a 3% increase in the value and 17% increase in the volume of fraud in H1 2025

The notorious Mem3nt0 mori hacker group has been actively exploiting a zero-day vulnerability in Google Chrome, compromising high-profile targets across Russia and Belarus. Dubbed CVE-2025-2783, this flaw allowed attackers to bypass Chrome’s robust sandbox protections with minimal user interaction, leading to the deployment of sophisticated spyware. Discovered by Kaspersky researchers in March 2025, Google swiftly […]

The post Chrome 0-Day Vulnerability Actively Exploited in Attacks by Notorious Hacker Group appeared first on Cyber Security News.

天文学家首次在银河系以外的冰层中，发现构成生命的化学基础物质。在大麦哲伦星系一颗新生恒星周围的冰层中，研究团队侦测到乙醇（ethanol）、乙醛（acetaldehyde）与蚁酸甲酯（methyl formate）等复杂有机分子，这是人类首次在银河系外的冰冻物质中找到这些化合物。此外，他们还首次在宇宙中发现固态冰的乙酸（acetic acid），过去仅观测到以气态存在的乙酸。研究揭示生命化学的基础成分可能广泛存在于宇宙中，而非仅限于银河系之内。与银河系相比，大麦哲伦星系的金属量仅约为其三分之一至二分之一。所谓「金属」在天文学上指氦以外的所有元素，因此该星系的氧、碳、矽等含量相对贫乏。它的尘埃也较少，使光线更容易穿透，同时频繁的恒星诞生活动释放强烈紫外线辐射，这使得在此环境下形成复杂有机分子的机制更值得探究。

Шпион Dante воскрес после утечки Hacking Team.

一项发表在 arXiv 的研究发现，AI 模型的谄媚程度比人类高 50%。该研究测试了 11 个广泛使用的大模型对 1.15 多万个咨询请求的响应情况，其中不乏涉及不当行为或有害行为的请求。包括 ChatGPT 和 Gemini 在内的AI聊天机器人，常常会鼓励用户、给出过度奉承的反馈，还会调整回应以附和用户观点，有时甚至会为此牺牲准确性。研究 AI 行为的科研人员表示，这种取悦他人的倾向即“谄媚性”，正影响着他们在科研中使用 AI 的方式，涵盖从构思创意、生成假设到推理分析等各类任务。arXiv 上的另一项研究旨在验证 AI 的谄媚性是否会影响其解决数学问题的能力。研究人员从今年举办的数学竞赛中选取了 504 道题目，对每道题的定理表述进行修改，植入不易察觉的错误，随后让 4 个大模型为这些存在缺陷的表述提供证明。测试结果显示，GPT-5 的谄媚性最低，仅 29% 的回答存在谄媚行为；而 DeepSeek-V3.1 的谄媚性最高，70% 的回答带有谄媚倾向。研究人员指出，尽管这些大模型具备识别数学表述中错误的能力，但它们“就是会默认用户的说法是正确的”。

已修复

速修复

Qilin ransomware group used Linux binaries on Windows to evade EDRs, steal backups, and disable defenses via BYOVD attacks. Trend Research found that the Qilin ransomware group (aka Agenda) used a Linux ransomware binary on Windows systems via legitimate remote tools, bypassing Windows defenses and EDRs. The cross-platform method enables stealthy attacks, stealing backup credentials […]

For the latest discoveries in cyber research for the week of 27th October, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Toys “R” Us Canada has suffered a data breach that resulted in stolen customer records being leaked on the dark web. The compromised data affects an undisclosed number of individuals and includes […]

The post 27th October – Threat Intelligence Report appeared first on Check Point Research.

A vulnerability was found in Hasleo Backup Suite up to 5.2. It has been rated as problematic. Impacted is an unknown function of the component HasleoImageMountService/HasleoBackupSuiteService. This manipulation causes unquoted search path. This vulnerability is tracked as CVE-2025-12247. The attack is restricted to local execution. Moreover, an exploit is present. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in CLTPHP 3.0. The affected element is an unknown function of the file /home/search.html. Such manipulation of the argument keyword leads to sql injection. This vulnerability is listed as CVE-2025-12248. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability identified as problematic has been detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. This vulnerability is cataloged as CVE-2025-12249. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability labeled as critical has been found in OpenWGA 7.11.12 Build 737. This affects an unknown function of the file WGA.File of the component TMLScript API. Executing manipulation can lead to path traversal. This vulnerability is registered as CVE-2025-12250. It is possible to launch the attack remotely. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability marked as problematic has been reported in OpenWGA 7.11.12 Build 737. This impacts an unknown function of the component Admin UI. The manipulation leads to cross site scripting. This vulnerability is documented as CVE-2025-12251. The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

A sophisticated cyber-sabotage group known as Predatory Sparrow has emerged as one of the most destructive threat actors targeting Iranian critical infrastructure over the past several years. Unlike traditional cybercriminal operations focused on financial gain, this group executes highly disruptive campaigns designed to cripple essential services, destroy sensitive data, and send provocative political messages. Security […]

The post Predatory Sparrow Strikes: Coordinated Cyberattacks Seek to Cripple Critical Infrastructure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.