Aggregator

Citrix customers are urged to patch their vulnerable NetScaler appliances, but “patching alone won’t cut it,” experts said

Тишина алгоритмов рушится от едва заметной манипуляции.

Een C-130-transportvliegtuig van de luchtmacht heeft sinds 8 augustus in totaal 108.296 kilo hulpgoederen afgeworpen in Gaza. Het ging om voedsel, drinkwater en medische hulpmiddelen. De inzet is inmiddels beëindigd. Het detachement keerde zaterdag terug op Vliegbasis Eindhoven. Een overzicht van Defensieoperaties in de week van 20 tot en met 26 augustus 2025.

零基础学员必看！代码审计全链路实战

Nissan 确认旗下设计工作室遭勒索软件攻击泄密

战况激烈，大奖花落谁家？

一、事件概述近日，网络安全公司Trellix发现了一个针对Linux系统的新型无文件攻击事件，他们为该攻击事件

根据发表在《Nature Climate Change》期刊上的一项研究，森林砍伐过去 20 年导致局部地区气温升高，逾 50 万人死于与热相关疾病。2001-2020 年间，热带地区约有 3.45 亿人遭受了由森林砍伐引起的局部气温上升，其中 260 万人的热暴露增加了 3 摄氏度。研究人员估计，森林砍伐导致的变暖过去 20 年每年造成 28,330 人死亡。其中逾半数在东南亚，该地区受高温影响的人口较多；三分之一在热带非洲，其余在中美洲和南美洲。

分享一篇文章。

A large-scale cybercrime conspiracy known as ShadowCaptcha was made public by cybersecurity researchers at Israel’s National Digital Agency. This campaign exploits the ClickFix technique, deploying deceptive CAPTCHA interfaces mimicking legitimate services like Cloudflare or Google to manipulate users into running malicious commands. The operation, traced through compromised WordPress websites, represents a sophisticated blend of social […]

The post ShadowCaptcha Exploit: Massive WordPress Site Compromise Used to Execute Malicious Commands on Victims appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A whistleblower disclosure filed today alleges that the Department of Government Efficiency (DOGE) within the Social Security Administration (SSA) covertly created a live copy of the nation’s entire Social Security dataset in an unsecured cloud environment.  Chief Data Officer Charles Borges warned that, if malicious actors gain access, over 300 million Americans could face identity […]

The post DOGE Accused of Mimicking Country’s Social Security Info in Unsecured Cloud appeared first on Cyber Security News.

A widespread data theft campaign has allowed hackers to breach sales automation platform Salesloft to steal OAuth and refresh tokens associated with the Drift artificial intelligence (AI) chat agent. The activity, assessed to be opportunistic in nature, has been attributed to a threat actor tracked by Google Threat Intelligence Group (GTIG) and Mandiant, tracked as UNC6395. GTIG told The Hacker

A vulnerability classified as problematic was found in SMA Boy. Affected by this vulnerability is an unknown functionality. The manipulation results in relative path traversal. This vulnerability is reported as CVE-2021-4459. The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.

Вредоносное ПО устанавливается автоматически, без ведома пользователя.

A.S.E (AI Code Generation Security Evaluation) - 为你提供大模型安全实践工具，让你一眼就能选出最靠谱的 AI 队友。

EU security agency ENISA is being handed €36m to operate the EU Cybersecurity Reserve