Aggregator

Researchers Expose Scattered Spider’s Tools, Techniques and Key Indicators

Cyber Security News
1 day 19 hours ago

Scattered Spider’s phishing domain patterns provide actionable insights to proactively counter threats from the notorious cyber group responsible for recent airline attacks. Scattered Spider, a sophisticated cyber threat group known for aggressive social engineering and targeted phishing, is broadening its scope, notably targeting aviation alongside enterprise environments. Check Point Research has uncovered specific phishing domain […]

The post Researchers Expose Scattered Spider’s Tools, Techniques and Key Indicators appeared first on Cyber Security News.

Kaaviya

Netflix 称其全球订户有五成看动漫

不安全
1 day 19 hours ago
Netflix加大投资动漫市场,并公布其全球订阅用户中约3亿人在观看动漫。过去五年间平台动漫收视率增长两倍,2024年有33部作品登上Global Top 10排行榜。全球动漫内容观看量超10亿次,80%-90%用户选择配音版。为满足需求,Netflix提供最多33种语言的配音和解说服务。

Netflix 称其全球订户有五成看动漫

Solidot
1 day 19 hours ago
Netflix 加大了对动漫的投资,公布了其全球订户的动漫观看数据,凸显了日本动漫从小众市场成长为全球主流内容市场的过程。Netflix 称,其全球订户——逾 1.5 亿家庭约 3 亿用户——在观看动漫。过去五年,该平台动漫收视率增长了两倍,2024 年有 33 部动漫作品登上了它的 Global Top 10 (Non-English)排行榜,是 2021 年的两倍多。2024 年全球动漫内容的观看次数逾 10 亿次,其中 80% 至 90% 的用户选择观看配音版。为满足这一需求,Netflix 开始为动漫作品提供最多 33 种语言的配音和解说。

Critical Vulnerabilities in KIA Infotainment Let Attackers Inject Code with PNG Files

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
1 day 19 hours ago

A recent security analysis has uncovered critical vulnerabilities in the infotainment systems of KIA vehicles, raising alarm across the automotive cybersecurity community. These flaws allow attackers to inject and execute malicious code through specially crafted PNG image files, potentially compromising vehicle safety and user privacy. Security researchers, during an in-depth examination of KIA’s head unit and its […]

The post Critical Vulnerabilities in KIA Infotainment Let Attackers Inject Code with PNG Files appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

BERT Ransomware Forcibly Shut Down ESXi Virtual Machines to Disrupt Recovery

Cyber Security News
1 day 19 hours ago

New ransomware group employs advanced virtualization attack tactics to maximize damage and hinder organizational recovery efforts. A newly emerged ransomware group known as BERT has introduced a particularly disruptive capability that sets it apart from traditional ransomware operations: the ability to forcibly terminate ESXi virtual machines before encryption, significantly complicating recovery efforts for targeted organizations. […]

The post BERT Ransomware Forcibly Shut Down ESXi Virtual Machines to Disrupt Recovery appeared first on Cyber Security News.

Guru Baran

CVE-2025-7345 | gdk‑pixbuf JPEG Decoding/Base64 Decoding io‑jpeg.c gdk_pixbuf__jpeg_image_load_increment heap-based overflow

VulDB Recent Entries
1 day 19 hours ago
A vulnerability was found in gdk‑pixbuf. It has been rated as critical. Affected by this issue is the function gdk_pixbuf__jpeg_image_load_increment of the file io‑jpeg.c of the component JPEG Decoding/Base64 Decoding. The manipulation leads to heap-based buffer overflow. This vulnerability is handled as CVE-2025-7345. The attack may be launched remotely. There is no exploit available.
vuldb.com

TSUBAME Report Overflow (Jan-Mar 2025)

JPCERT/CCブログ 英語版
1 day 19 hours ago
This TSUBAME Report Overflow series discuss monitoring trends of overseas TSUBAME sensors and other activities which the Internet Threat Monitoring Quarterly Reports do not include. This article covers the monitoring results for the period January to March 2025. Trends of...
鹿野 恵祐 (Keisuke Shikano)

CISA Issues Alert Over Actively Exploited Flaw in Zimbra Collaboration Suite

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
1 day 19 hours ago

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding an actively exploited vulnerability in Synacor’s Zimbra Collaboration Suite (ZCS), urging organizations to take immediate action to mitigate the threat. The flaw, tracked as CVE-2019-9621, is a server-side request forgery (SSRF) vulnerability that resides in the ProxyServlet component of ZCS and has […]

The post CISA Issues Alert Over Actively Exploited Flaw in Zimbra Collaboration Suite appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

又有罗马仕移动电源充电时起火爆炸 并且并非罗马仕召回的型号

不安全
1 day 19 hours ago
罗马仕移动电源发生起火爆炸事故,用户在正常充电时设备突然异响并起火,所幸及时处理未造成严重后果。值得注意的是,该用户的设备不在召回范围内,意味着其他未召回型号也存在安全隐患。此前,罗马仕已召回多款可能存在风险的移动电源,但仍有未召回产品出现问题。部分用户质疑产品质量,称部分型号缺乏温控探头和过热保护功能,可能因用料节省导致安全隐患。目前,关于退款和召回的问题仍在处理中,罗马仕已停工停产,但负责召回的员工仍在工作。

Managed ad