Aggregator

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

VMware устроила матрёшку для хакеров.

手慢无~

企业需紧急修复

文末投递简历

看雪论坛作者ID：SleepAlone

A critical security vulnerability has been discovered in Lenovo’s protection driver software, affecting millions of users across desktop and laptop systems. The flaw, identified as CVE-2025-4657, allows local attackers with elevated privileges to execute arbitrary code through a buffer overflow exploit, posing significant security risks to enterprise and consumer environments. Vulnerability Details and Impact The […]

The post Lenovo Protection Driver Flaw Enables Privilege Escalation and Code Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

一年一度的“大考”火热进行中，攻防演练期间本公众号会每日更新当天鲜活情报和热点漏洞，欢迎大家对我们进行收藏和关注！

OpenAI's next foundational and state-of-the-art model, GPT-5, is still on its way after a delay. OpenAI won't tell us the release date for now. [...]

LameHug malware uses AI to create data-theft commands on infected Windows systems. Ukraine links it to the Russia-nexus APT28 group. Ukrainian CERT-UA warns of a new malware strain dubbed LameHug that uses a large language model (LLM) to generate commands to be executed on compromised Windows systems. Ukrainian experts attribute the malware to the Russia-linked […]

新闻出版商行业协会 The News/Media Alliance 宣布成功关闭了帮助用户绕过付费墙的服务 12ft.io。12ft.io 的托管商在该组织的施压下于 7 月 14 日下线了网站。12ft.io 全称 12 Foot Ladder，通过将用户的浏览器伪装成 Web 爬虫从而不受限制的访问网站内容，避开广告、跟踪程序以及弹出式窗口。12ft.io 是由软件工程师 Thomas Millar 在新冠疫情期间创建的，他当时发现 Google 搜索结果前 10 中有 8 个设置了付费墙。12ft.io 下线了，但类似的自托管工具 13 Feet Ladder 允许用户创建无数的 12ft.io。

近期，一些不法机构或平台通过虚假宣传手段，诱导消费者办理网络贷款，不仅给消费者带来沉重的经济负担，还可能使消费者陷入法律纠纷。国家金融监督管理总局金融消费者权益保护局发布风险提示，提醒广大群众警惕虚假宣传诱导网络贷款的风险，提高风险防范意识

近日，国家互联网信息办公室发布《可能影响未成年人身心健康的网络信息分类办法（征求意见稿）》，向社会公开征求意见，进一步明确可能影响未成年人身心健康的网络信息的具体种类、范围、判断标准和提示办法。意见反馈截止日期为2025年7月19日。

《基于金融业跨银行企业资金流水核验场景的安全多方计算技术应用案例》涉及金融行业内跨机构的数据流通安全问题。为提升金融风险管理水平，建立起银行间高效合规的数据交互与协同机制具有重要的意义。

根据《个人信息保护法》《个人信息保护合规审计管理办法》等法律法规规章规定，国家互联网信息办公室就开展个人信息保护负责人信息报送工作有关事项公告如下……

Microsoft has shed light on the sophisticated operations of Octo Tempest, a financially motivated cybercriminal group alternatively known as Scattered Spider, Muddled Libra, UNC3944, or 0ktapus. This threat actor has demonstrated a versatile arsenal of tactics, techniques, and procedures (TTPs) in end-to-end attacks targeting organizations across various sectors. Octo Tempest’s methodology typically begins with initial […]

The post Microsoft Uncovers Scattered Spider Tactics, Techniques, and Procedures in Recent Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Mattermost up to 9.11.16/10.5.6/10.7.3/10.8.1. It has been rated as critical. This issue affects some unknown processing of the component Private Channel Handler. The manipulation leads to missing authentication. The identification of this vulnerability is CVE-2025-6226. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mattermost up to 9.11.16/10.5.7/10.7.3/10.8.1. It has been declared as critical. This vulnerability affects unknown code of the component JSONL File Import. The manipulation leads to path traversal. This vulnerability was named CVE-2025-6233. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in descreekert wx-discuz up to 12bd4745c63ec203cb32119bf77ead4a923bf277. It has been classified as problematic. This affects the function validToken of the file /wx.php. The manipulation of the argument echostr leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-7803. It is possible to initiate the attack remotely. There is no exploit available. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

Cybersecurity researchers at Northeastern University and Dartmouth College have unveiled a groundbreaking attack technique that exploits fundamental parsing discrepancies in Web Application Firewalls (WAFs), potentially compromising the security of millions of websites worldwide. The research, dubbed “WAFFLED” (Web Application Firewall Fuzzing through Language Exploitation and Discrepancy), demonstrates how attackers can bypass five major WAF platforms. […]

The post WAFFLED: New Technique Targets Web Application Firewall Weaknesses appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.