Two new pro-Russian hacktivist groups target Ukraine, recruit insiders
Groups calling themselves IT Army of Russia and TwoNet are newly active on Telegram, coordinating operations and seeking new members, researchers at Intel 471 said.
Aggregator
Citrix Alerts on Authentication Failures After NetScaler Update to Resolve Auth Vulnerability
1 month 2 weeks ago
Citrix has issued an urgent advisory for NetScaler users following the release of builds 14.1.47.46 and 13.1.59.19, warning of potential authentication disruptions stemming from a 16c3 a newly implemented security feature. As part of Citrix’s secure-by-design and secure-by-default initiative, the Content Security Policy (CSP) header has been enabled by default in these builds to bolster […]
The post Citrix Alerts on Authentication Failures After NetScaler Update to Resolve Auth Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
伊朗“Robert”黑客组织盯上特朗普,暴露美方网络防线薄弱
1 month 2 weeks ago
安全客
Privilege Escalation Flaw Found in Azure Machine Learning Service
1 month 2 weeks ago
A critical Azure Machine Learning flaw allows privilege escalation, risking subscription compromise
AI爬虫重塑互联网生态:已占据全球三成网络流量
1 month 2 weeks ago
安全客
NimDoor 高级加密窃密木马:进程被杀后可自动“复活”
1 month 2 weeks ago
安全客
谷歌因安卓手机数据传输被判赔3.14亿美元,加州陪审团裁定其“偷用用户流量”
1 month 2 weeks ago
安全客
Cloudflare 推出“按次付费抓取”:网站可向AI爬虫收取内容使用费
1 month 2 weeks ago
安全客
Qwizzserial恶意软件伪装正规app在安卓平台大规模窃取银行数据并拦截2FA短信
1 month 2 weeks ago
安全客
美国20州起诉卫生部:反对将医保数据共享给移民执法机构
1 month 2 weeks ago
安全客
Microsoft investigates ongoing SharePoint Online access issues
1 month 2 weeks ago
Microsoft is investigating an ongoing incident causing intermittent issues for users attempting to access SharePoint Online sites. [...]
Sergiu Gatlan
Alleged Data Sale of doValue S.p.A.
1 month 2 weeks ago
Alleged Data Sale of doValue S.p.A.
Dark Web Informer - Cyber Threat Intelligence
Wing FTP Server 曝CVSS 10.0 远程代码执行漏洞(CVE-2025-47812),可实现完全控制,PoC 已公开
1 month 2 weeks ago
安全客
Interpol identifies West Africa as potential new hotspot for cybercrime compounds
1 month 2 weeks ago
Interpol said it analyzed five years of data about the illicit industry, which relies on human trafficking to staff up centers with people who are forced to conduct investment fraud, romance scams and other schemes.
CVE-2025-6463:Forminator 插件曝高危任意文件删除漏洞,超 60 万 WordPress 网站恐遭远程接管
1 month 2 weeks ago
安全客
360亮相全球数字经济大会,智能体涌现,安全运营跃升
1 month 2 weeks ago
安全客
Кто держит минералы — держит мир за горло. Но 4 страны решили сказать Китаю: стоп, хватит
1 month 2 weeks ago
«Квад» начинает борьбу за независимость электромобилей и роботов.
Drupal security advisory (AV25-389)
1 month 2 weeks ago
Canadian Centre for Cyber Security
Apache Tomcat and Camel Vulnerabilities Actively Targeted in Cyberattacks
1 month 2 weeks ago
The Apache Foundation disclosed several critical vulnerabilities affecting two of its widely used software platforms, Apache Tomcat and Apache Camel, sparking immediate concern among cybersecurity experts and organizations worldwide. Apache Tomcat, a popular platform for running Java-based web applications, was found to have a severe flaw identified as CVE-2025-24813. This vulnerability, impacting versions 9.0.0.M1 to […]
The post Apache Tomcat and Camel Vulnerabilities Actively Targeted in Cyberattacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
CVE-2025-6041 | yContributors Plugin up to 0.5 on WordPress Setting cross-site request forgery (EUVD-2025-19925)
1 month 2 weeks ago
A vulnerability was found in yContributors Plugin up to 0.5 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation leads to cross-site request forgery.
This vulnerability is handled as CVE-2025-6041. The attack may be launched remotely. There is no exploit available.
vuldb.com