Aggregator

Hackers Leveraging Cloudflare Tunnels, DNS Fast-Flux to Hide GammaDrop Malware

GitLab 任命 Bill Staple 为新 CEO

The State of Cybersecurity in the European Union 2024: Insights from ENISA’s Report

The cybersecurity industry faces a growing crisis in attracting and retaining SOC analysts.

关基被渗透！罗马尼亚选举系统遭遇8.5万次网络攻击

The "Census of Free and Open Source Software" report, which identifies the most critical software projects, sees more cloud infrastructure and Python software designated as critical software components.

sentap Allegedly is Selling Super Admin Access to an Unidentified Clinic Management System in Kenya

Apple Trade In 折抵换购体验：今年有什么不一样？

混淆还原的几种方式实践

Researchers analyzed phishing attacks from Q3 2023 to Q3 2024 and identified the top five industries targeted by subject-customized emails, which often leverage personal information like names, emails, phone numbers, or company names to bypass security measures.  Employing redaction techniques to protect sensitive information while providing actionable intelligence to clients ensures that valuable insights are […]

The post Top Five Industries Most Frequently Targeted by Phishing Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

​12月4日，美国近 100 名前国家安全官员签署了一封公开信，批评当选总统唐纳德·特朗普提名前众议员塔尔西·加巴德担任国家情报总监的决定，并呼吁参议院举行闭门听证会，审查有关她的任何政府信息。

德勤遭勒索攻击，被窃取机密数据超1TB

BlueAlpha, a Russian state-sponsored group, is actively targeting Ukrainian individuals and organizations by using spearphishing emails with malicious HTML attachments to deliver GammaLoad malware.  To evade detection, BlueAlpha is leveraging Cloudflare Tunnels to conceal their infrastructure and using DNS fast-fluxing for their C2 servers, as this ongoing campaign, active since early 2024, highlights the persistent […]

The post Russian BlueAlpha APT Exploits Cloudflare Tunnels to Distribute Custom Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

每周高级威胁情报解读(2024.11.29~12.05)

Ultralytics遭供应链投毒攻击，模型训练恐成挖矿！

Any company/person I can hire for an ethical SE research project?

Secret Blizzard, a Russian threat actor, has infiltrated 33 command-and-control (C2) servers belonging to the Pakistani group Storm-0156, which allows Secret Blizzard to access networks of Afghan government entities and Pakistani operators.  They have deployed their own malware, TwoDash and Statuezy, and leveraged Storm-0156’s malware, Waiscot and CrimsonRAT, to gather intelligence on targeted networks, which […]

The post Russian Hackers Hijacked Pakistani Actor Servers For C2 Communication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

De maatschappelijke weerbaarheid en militaire paraatheid moeten omhoog. Alleen dan kan Nederland zich wapenen tegen oorlog en crises. “We ontkomen er niet aan een flinke stap extra te zetten.” Dat schrijven defensieminister Ruben Brekelmans, minister van Justitie en Veiligheid David van Weel en staatssecretaris van defensie Gijs Tuinman vandaag aan de Kamer. 

A student in my uni hacked uni database and got access to student ID photos