Aggregator

分享近期值得关注的IOC

The Tor Project has announced the release of Tor Browser 13.5.2, which includes significant security updates and improvements, mainly focusing on integrating the latest Firefox security patches. Tor Browser anonymizes web traffic using the Tor network, making it easy to protect your identity online. The Tor Browser, updated to version 11.4.31, enhances script-blocking capabilities and […]

The post Tor Browser 13.5.2 Released: What’s New! appeared first on Cyber Security News.

Botnets attack routers to gain control over these devices, turning them into “zombies” that can be used to carry out malicious activities. While they execute all their illicit activities without getting detected, and they do activities like DDoS attacks, spreading malware, facilitating further network intrusions, and many more. In October 2023, Gi7w0rm first referenced the […]

The post Beware Of New Botnet Attacking ASUS Routers & Opens Port 63256 appeared first on Cyber Security News.

APT组织Lazarus 在Rootkit（获取内核权限）攻击中使用了微软的0day漏洞;APT组织Kimsuky利用软件公司产品安装程序进行伪装展开攻击;NoName057(16)组织DDoSia项目持续更新;

A record-breaking Distributed Denial of Service (DDoS) attack unleashed 419 terabytes of malicious traffic over 24 hours. This unprecedented event, which began at 8:05 UTC on July 15, 2024, targeted a financial services company in Israel, showcasing the evolving threat landscape of cyber warfare. A Sustained Assault The attack commenced with a small probing attempt, […]

The post Record Breaking DDoS Attack 419 TB of Malicious Traffic Within 24-Hours appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

A new AMOS Mac stealer variant is circulating, distributed via a fake Loom website hosted on Google Ads, which, potentially linked to the Crazy Evil threat group, redirects users to a fraudulent download page disguised as the legitimate Loom platform.  Once executed, the advanced AMOS stealer exfiltrates sensitive data, including browser information, credentials, and cryptocurrency […]

The post MacOS Stealer Mimic as Screen Recorder Attacking Users via Google Ads appeared first on Cyber Security News.

New Threat Intelligence confirms connections underpinning pig butchering and investment scams

Даже использование VPN не спасает пользователей от ограничений доступа.

Audio-visual data offers invaluable insights into human behavior and communication but raises significant privacy concerns, which proposes MaskAnyone, a toolkit for de-identifying individuals in audio-visual data while preserving data utility.  By combining face-swapping, auditory masking, and real-time bulk processing, MaskAnyone addresses the ethical and legal challenges associated with human subject data. The toolkit is designed […]

The post Researches Introduced MaskAnyone Toolkit To Minimize The Privacy Risks appeared first on Cyber Security News.

文末免费领取多个好用的实战环境插件大家好，我是地图大师returnwrong。最近，我在与多位新手白帽子接触后发现，环境配置常常成为他们面临的一大难题。无论是灯塔、oneforall、水泽，还是sub

最近，我在与多位新手白帽子接触后发现，漏洞挖掘可以更简单。

The threat actors often exploit fake websites to trick users into revealing their personal data. Not only that, but these fake websites are also used to distribute malware, steal identities, and facilitate phishing attacks. Cybersecurity researchers at SonicWall discovered a deceptive WinRar lookalike website that employs typosquatting to distribute malware.  This initial infection triggers the […]

The post Beware Of Fake WinRar Websites Delivering Ransomware via GitHub appeared first on Cyber Security News.

Microsoft said it is developing security updates to address two loopholes that it said could be abused to stage downgrade attacks against the Windows update architecture and replace current versions of the operating system files with older versions. The vulnerabilities are listed below - CVE-2024-38202 (CVSS score: 7.3) - Windows Update Stack Elevation of Privilege Vulnerability CVE-2024-21302

Windows Security / VulnerabilityMicrosoft said it is developing security updates to address two lo

没有攻不破的网络，没有打不透的墙。网络安全的本质是攻防两端人与人的高强度对抗。为鼓励更多的年轻一代投身安全，入门成为一名真正的白帽黑客，KCon多年来坚持举办安全培训日，帮助白帽和技术爱好者积累丰富的

期待与师傅们在线下相聚，不见不散！KCon 2024 门票KCon 2024的线上售票通道已开启购票网址：https://www.4hou.com/tickets/eERv长按识别下方二维码或点击文末

经过精心筹备与多方努力KCon 2024 黑客大会敲定举办时间将于8月24日-25日举办本次大会涵盖了网安领域的不同热点话题为了展示演讲议题风采让大家了解更多大会情况特此开展议题巡展欢迎围观~演讲者：

KCon大会培训日回归！课程人员有限，先到先得~

KCon 2024，就等你啦～

KCon大会议题巡展正式开启