Aggregator

Платформа ИТ-компетенций набирает обороты.

ESET Research analyzes Gamaredon’s updated cyberespionage toolset, new stealth-focused techniques, and aggressive spearphishing operations observed throughout 2024

美国财政部对俄罗斯防弹托管服务提供商Aeza Group及其子公司和个人实施制裁，因其支持网络犯罪活动如勒索软件攻击、数据窃取及暗网市场运营。该集团高管涉嫌参与非法活动并被逮捕。此举与国际合作伙伴共同打击网络犯罪生态系统中的关键节点。

The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) has levied sanctions against Russia-based bulletproof hosting (BPH) service provider Aeza Group for assisting threat actors in their malicious activities and targeting victims in the country and across the world. The sanctions also extend to its subsidiaries Aeza International Ltd., the U.K. branch of Aeza Group, as

Миллионы книг пошли на корм Claude — и теперь он помогает писать резюме.

该文章介绍了数字取证科学领域及其应用范围。它涉及从数字设备中恢复和分析材料以调查计算机犯罪，并运用信息安全原则进行归属和事件重建。该社区不仅涵盖个人计算机，还包括手机、视频等其他数字媒体设备。

Malware analysis is a critical skill for cybersecurity professionals, threat hunters, and incident responders. With the growing sophistication of cyber threats, having access to reliable, free malware analysis tools is essential for dissecting, understanding, and mitigating malicious software. This article reviews the 10 best free malware analysis tools in 2025 covering their specifications, features, reasons […]

The post 10 Best Free Malware Analysis Tools To Break Down The Malware Samples – 2025 appeared first on Cyber Security News.

Qantas admits that a “significant” volume of customer data may have been stolen from a contact center

The French National Agency for the Security of Information Systems (ANSSI) has uncovered a sophisticated cyberattack campaign orchestrated by a threat group dubbed “Houken.” This group, suspected to be linked to the Chinese intrusion set UNC5174, exploited multiple zero-day vulnerabilities in Ivanti Cloud Service Appliance (CSA) devices to gain unauthorized access to networks of French […]

The post Chinese Houken Group Exploits Ivanti CSA Zero-Days to Install Linux Rootkits appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

本周，互联网网络安全态势整体评价为良。

当前环境出现异常，请完成验证后继续访问。

文章介绍了ClawCloud VPS服务器的促销活动和优惠券信息，提供了多个配置的折扣优惠码及使用方式。

文章探讨了如何通过建立风险意识流程和明确政策来平衡企业合规与创新。强调通过清晰的指导方针、风险分级框架和嵌入式合规拥护者，在确保遵守法规的同时激发团队创造力。同时提出将合规融入日常创新过程的方法，如敏捷工作流中的检查点、基于真实场景的培训和安全实验环境，并通过持续监测和反馈机制维持合规与创新的动态平衡。

With empowered advocates and continuous measurement, teams can navigate the fine line between compliance, rule adherence and creative freedom.

The post Guiding Global Teams: Fostering Compliance and Creativity appeared first on Security Boulevard.

Google修复了Chrome零日漏洞CVE-2025-6554，该漏洞由V8引擎中的类型混淆引起，允许远程攻击者通过恶意HTML页面进行任意读写。这是今年修复的第四个零日漏洞。

Google released security patches to address a Chrome vulnerability, tracked as CVE-2025-6554, for which an exploit exists in the wild. Google released security patches to address a Chrome vulnerability, tracked as CVE-2025-6554, for which an exploit is available in the wild. “Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker […]

Временная защита для тех, кто не любит надолго.

Qantas Airways, Australia’s flagship carrier, has confirmed a major cyberattack that compromised the personal data of up to six million customers, marking one of the largest data breaches in the country’s aviation history. The breach, discovered earlier this week, targeted a third-party customer service platform used by one of Qantas’ offshore contact centres. According to […]

The post Australian Airline Qantas Hacked – Attackers Gained Access to Customers Personal Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly disclosed security advisory from Tenable reveals serious vulnerabilities in the Nessus vulnerability scanner that could enable attackers to compromise Windows systems through privilege escalation attacks.  The security flaws, affecting all Nessus versions prior to 10.8.5, include a critical Windows-specific vulnerability (CVE-2025-36630) that allows unauthorized file overwrites at SYSTEM privilege level, alongside two additional […]

The post Nessus for Windows Vulnerabilities Enables Overwrite of Arbitrary Local System Files appeared first on Cyber Security News.