Aggregator

Cybersecurity researchers at Bitdefender have uncovered a significant evolution in the tactics of the RedCurl threat group, marking their first foray into ransomware deployment. This new strain, dubbed QWCrypt, specifically targets Hyper-V servers, showcasing a sophisticated and highly targeted approach to cyberattacks. Novel Ransomware Strain Emerges The QWCrypt ransomware, previously undocumented, represents a departure from […]

The post RedCurl Unleashes New Ransomware Targeting Hyper-V Servers Exclusively appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

 The Cybersecurity and Infrastructure Security Agency (CISA) has included a critical deserialization vulnerability affecting Sitecore CMS and Experience Platform (XP). This vulnerability, tracked as CVE-2019-9874, allows unauthenticated attackers to execute arbitrary code by manipulating HTTP POST parameters, specifically the __CSRFTOKEN field. The vulnerability exploits a weakness in the Sitecore.Security.AntiCSRF module, enabling malicious actors to send […]

The post CISA Adds Sitecore CMS Code Execution Vulnerability to Exploited List appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

关键词恶意软件ReversingLabs 的安全研究人员在 npm 软件包存储库中发现了一场新的恶意软件攻击活

关键词恶意软件网络安全研究人员在 npm 注册表中发现了两个恶意软件包，旨在感染另一个本地安装的软件包，这凸显

关键词网络钓鱼一种被称为“Clickflix 技术”的复杂网络钓鱼活动已经出现，它通过看似合法的品牌合作请求瞄

关键词数据泄露即时通讯应用Telegram近期出现了一款名为Funstatgrtbot的监控机器人，该服务引发

Attackers aren't just spending more time targeting the cloud — they're ruthlessly stealing more sensitive data and accessing more critical systems than ever before.

A vulnerability was found in Xiaomi Phone Framework. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to missing authentication. The identification of this vulnerability is CVE-2024-45356. It is possible to launch the attack on the local host. There is no exploit available.

Мошенники масштабируют атаки с ИИ.

Business Email Compromise (BEC) fraud represents one of the most insidious threats facing businesses and individuals today.

The post Business Email Compromise, ACH Transactions, and Liability appeared first on Security Boulevard.

当前，多家医院引入人工智能，并将其应用于临床、科研等多个场景。甚至，有营销宣传声称——“AI帮你一分钟搞定问诊、开药”。近期，湖南省医保局印发通知明确规定：“严禁使用 AI人工智能等自动生成处方”，引发网络热议。

3月20日，瑞典政府正式向议会提交了《国家网络安全战略2025-2029年》，对未来五年的国家网络安全建设进行了整体谋划，以应对日益复杂的网络安全威胁，提升国家整体网络安全水平。

近日，国家互联网信息办公室、公安部联合公布了《人脸识别技术应用安全管理办法》，对应用人脸识别技术处理人脸信息的基本要求、处理规则、应用安全规范、监督管理职责等作出规定，旨在进一步扎紧人脸信息保护的“篱...

近日，国家网信办、工业和信息化部、公安部、国家广播电视总局联合发布《人工智能生成合成内容标识办法》，将于今年9月1日起施行。

近日，北京市互联网信息办公室等三部门印发《北京市数据跨境流动便利化综合配套改革实施方案》。

意见反馈截止日期为2025年4月15日前。

关于第二届“长城杯”铁人三项赛（防护赛）决赛入围队伍名单公示的通知