Aggregator

1,5 миллиона аккаунтов украдены всего за полгода.

A former moderator of the dark web forum XSS, known by the alias Rehub, has launched his own platform under the name Rehubcom. This move coincides with the arrest of the XSS administrator in...

The post The King Is Dead, Long Live the King: A New Cybercrime Forum Rises from the Ashes of XSS appeared first on Penetration Testing Tools.

The China-linked group UAT-7237 has become the subject of a new report from Cisco Talos. According to researchers, this team has been active since 2022, specializing in long-term persistence within victim infrastructure. In one...

The post Beyond the Firewall: Inside UAT-7237, a Chinese APT Group Targeting Taiwan appeared first on Penetration Testing Tools.

Researchers have demonstrated that the latest Gemini models consistently interpret hidden Unicode Tag characters as executable instructions—rendering invisible text within the interface into direct commands for the AI. This flaw endangers all Gemini-based integrations,...

The post The Invisible Attack: Hidden Characters Can Make Gemini Models Implant Backdoors appeared first on Penetration Testing Tools.

A recent reverse engineering analysis of a Lockbit ransomware variant targeting Linux-based ESXi servers has uncovered several sophisticated evasion techniques and operational details. The malware, first documented in 2022, employs the ptrace system call to detect debugging environments by attempting to attach to its parent process. If this fails typically due to an existing tracer […]

The post Lockbit Linux ESXi Ransomware Variant Reveals Evasion Techniques and File Encryption Process appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A team of researchers has unveiled a new framework, SNI5GECT, which exposes vulnerabilities in fifth-generation mobile networks at the very earliest stages of connection establishment. Unlike attacks that rely on counterfeit base stations—complex to...

The post SNI5GECT: A New Framework Exposes Major Vulnerabilities in 5G Networks appeared first on Penetration Testing Tools.

Allianz Life breach exposed data of most of its 1.4M customers; HIBP lists 1.1M impacted, though the insurer hasn’t confirmed exact figures. In July, Allianz Life disclosed a breach where hackers stole data from a cloud database, affecting most of its 1.4M customers and staff. Now, the data breach notification site Have I Been Pwned […]

A security researcher named Wayne has unveiled a new tool for Windows 11 that circumvents the PatchGuard protection mechanism in the system’s latest release (24H2). The project, called Kurasagi, has already been published on...

The post New Tool Bypasses Windows 11 PatchGuard, Opening a New Debate on Security appeared first on Penetration Testing Tools.

A vulnerability was found in Bouncy Castle for Java up to 2.1.0. It has been rated as problematic. Impacted is an unknown function of the component API Module. The manipulation leads to resource consumption. This vulnerability is traded as CVE-2025-9092. An attack has to be approached locally. There is no exploit available.

A vulnerability labeled as problematic has been found in Linux Kernel up to 6.6.99/6.12.39/6.15.7. Affected by this vulnerability is the function user_mutex of the file net/rxrpc/recvmsg.c. Executing manipulation can lead to race condition. This vulnerability is handled as CVE-2025-38524. The attack can only be done within the local network. There is not any exploit available. The affected component should be upgraded.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.6.99/6.12.39/6.15.7. Affected by this issue is the function ice_lag_is_switchdev_running. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-38526. The attack can only be initiated within the local network. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.146/6.6.99/6.12.39/6.15.7. This issue affects the function cifs_oplock_break of the component smb. Such manipulation leads to use after free. This vulnerability is referenced as CVE-2025-38527. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.

A vulnerability has been found in Linux Kernel up to 6.1.147/6.6.100/6.12.38/6.15.6 and classified as critical. The impacted element is the function exit_mmap of the component amdkfd. The manipulation leads to deadlock. This vulnerability is listed as CVE-2025-38520. The attack must be carried out from within the local network. There is no available exploit. The affected component should be upgraded.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.12.38/6.15.6. The affected element is the function alloc_tag_top_users. Executing manipulation can lead to improper initialization. This vulnerability is tracked as CVE-2025-38517. The attack is only possible within the local network. No exploit exists. You should upgrade the affected component.

Researchers at Cymulate Research Labs have disclosed a new vulnerability in Windows that allows attackers to bypass Microsoft’s recent patch and once again exfiltrate NTLM hashes without any user interaction. The flaw, tracked as...

The post The Patch Isn’t a Fix: New Flaw Lets Attackers Steal NTLM Hashes from Windows appeared first on Penetration Testing Tools.

Microsoft has introduced a new mechanism known as Nested App Authentication (NAA), which is steadily becoming a key component of the company’s cloud ecosystem. The concept is straightforward: if a user has already signed...

The post Nested App Authentication: Microsoft’s New Feature Is a Double-Edged Sword for Azure Security appeared first on Penetration Testing Tools.

天文学家利用 ALMA 观测 12P/Pons-Brooks 彗星，发现其中的水具有与地球海洋几乎相同的同位素组成比例。这一发现进一步支持了「彗星可能在年轻地球上带来水与部分生命所需分子原料」的假说。一般认为，地球上的水在数十亿年前由彗星、小行星及陨石撞击带来。然而，过去观测多数彗星的水同位素比例与地球差异明显。本次结果则提供了迄今最有力的证据，显示至少部分彗星携带的水与地球水有相同的化学「指纹」。在这项研究中，科学家首次绘制出 12P 彗星的彗发（包围彗核的气体）中普通水（H₂O）与重水（HDO，即水分子里的一个氢被带有额外中子的氘取代）的空间分布。观测时间点为 12P 彗星接近太阳之际，结合毫米／次毫米波与红外线数据，精确测定了氘氢比（D/H）。透过绘制 H₂O 与 HDO 的分布，研究团队判断这些气体确实来自彗核内的冰冻物质，而非在彗发中由化学作用或其他过程生成。测得的 D/H 比值为 (1.71 ± 0.44) × 10⁻⁴，这个数值在所有已观测的彗星中偏低，并与地球海洋完全一致。

上海长征医院骨科医生历经 3 小时成功为一例遭遇罕见严重颈椎骨折脱位、跨度之大几乎可以被称为“身首离断”的患者实施了复位固定手术。这名患者因此前颈部遭受机械臂重击，当场高位截瘫、心跳骤停，经紧急心肺复苏才勉强恢复微弱生命体征。影像学检查结果几乎为患者宣判了“死刑”——其颈椎发生了极其罕见的大跨度离断式脱位，脊髓严重挫伤、关键神经血管结构撕裂。患者于 6 月 18 日进行的手术，目前生命体征稳定，已脱离呼吸机大概半个月。患者双下肢功能永久损伤无法挽回，上肢功能在逐渐锻炼康复中。

Hackers exploited Windows flaw CVE-2025-29824 to deploy PipeMagic malware in RansomExx attacks, Kaspersky revealed. A joint report from Kaspersky and BI.ZONE analyzed the evolution of PipeMagic malware from its first detection in 2022 to new infections observed in 2025. The researchers identified key changes in its operators’ tactics. BI.ZONE experts focused on a technical analysis of the CVE-2025-29824 vulnerability […]

TikTok Shop массово продаёт GPS-трекеры для слежки за партнёрами — ролики с инструкциями набирают миллионы просмотров