Aggregator

The North Korea-aligned threat actor known as BlueNoroff has been observed targeting an employee in the Web3 sector with deceptive Zoom calls featuring deepfaked company executives to trick them into installing malware on their Apple macOS devices. Huntress, which revealed details of the cyber intrusion, said the attack targeted an unnamed cryptocurrency foundation employee, who received a

The Golden SAML assault is a lesser-known but much more dangerous threat in a world where password-based hacks breach millions of accounts every month. Unlike common password sprays or phishing attempts, Golden SAML attacks are rare, with Microsoft reporting only 20 incidents across fewer than ten unique customers over the past 24 months as of […]

The post Golden SAML Attack: How Attackers Gain Control of Federation Server’s Private Key appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The global cybersecurity landscape is facing a seismic shift as the Qilin ransomware group, also known as Agenda, has surged to the forefront of digital extortion, demanding ransoms as high as $50 million and disrupting critical services worldwide. Once an obscure player, Qilin has rapidly evolved into the most prevalent and technically sophisticated ransomware operation […]

The post Qilin Ransomware Rises as Major Threat, Demanding $50M in Ransom appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Threat analysis is a complex task that demands full attention, especially during active incidents, when every second counts. ANY.RUN’s Interactive Sandbox is designed to ease that pressure with an intuitive interface and fast threat detection.   Our new feature, Detonation Actions, takes this further by highlighting detonation steps during analysis. When a specific action is needed […]

The post Simplify Threat Analysis and Boost Detection Rate with Detonation Actions  appeared first on ANY.RUN's Cybersecurity Blog.

Оплатить нельзя. Спросить — тоже нельзя.

DALL-E for coders? That’s the promise behind vibe coding, a term describing the use of natural language to create software. While this ushers in a new era of AI-generated code, it introduces "silent killer" vulnerabilities: exploitable flaws that evade traditional security tools despite perfect test performance. A detailed analysis of secure vibe coding practices is available here. TL;DR: Secure

技术支持骗局层出不穷。安全公司 Malwarebytes 报告，骗子使用 Google 广告在苹果、微软等知名公司的网站注入假的技术支持电话号码。骗子首先在微软、苹果、惠普、PayPal、Netflix 等知名公司的 Google 搜索结果页面购买在顶部展示的广告，Google 只允许广告展示类似 https://www.microsoft.com 之类的链接，但允许在链接右侧添加不可见的参数，骗子就是利用这一漏洞在广告上添加了假的电话支持号码，类似给苹果网址加入参数 /kb/index?page=search&q=☏☏Call%20Us%20%2B1-805-749-2108%20AppIe。用户点击该链接会进入官网的一个有关电话技术支持号码搜索查询页面，显示无该结果。略懂一点技术的人能很轻松识别骗局，但此类骗局本就是针对不怎么了解技术的老年人。

A threat actor group known as Banana Squad has been found exploiting GitHub, a cornerstone platform for developers worldwide, by hosting over 60 malicious repositories containing hundreds of trojanized Python files. Discovered by the ReversingLabs threat research team, this campaign represents a shift toward stealthier and more sophisticated tactics in open-source exploitation. Sophisticated Supply Chain […]

The post Threat Actor Exploit GitHub and Hosted 60 GitHub Repositories with 100s of Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

关键词安全漏洞CISA 已警告美国联邦机构，攻击者以 Linux 内核的 OverlayFS 子系统中的一个高

关键词小红书6月18日，B站知名程序员UP主“鱼皮”发布视频指出，小红书存在一个严重的后门漏洞。

关键词数据泄露2025 年上半年，网络安全研究员 Sergei Volokitin 在近期公开了一项关于小米

关键词Windows2025年6月，微软向所有受支持的Windows操作系统推送了2025年6月例行累积更新，

Всё по инструкции, всё по протоколу — и почта больше не ваша.

A vulnerability was found in code-projects Responsive Blog 1.0/1.12.4/3.3.4. It has been declared as problematic. This vulnerability affects unknown code of the file /responsive/resblog/blogadmin/admin/pageViewMembers.php. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-6347. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester Advance Charity Management System 1.0. It has been classified as critical. This affects an unknown part of the file /members/fundDetails.php. The manipulation of the argument m06 leads to sql injection. This vulnerability is uniquely identified as CVE-2025-6346. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Cato Networks researchers demonstrated an attack leveraging Atlassian’s AI agent-enabling server

Submit #595676 / VDB-313342

Submit #595346 / VDB-313341

A vulnerability was found in SourceCodester My Food Recipe 1.0 and classified as problematic. Affected by this issue is the function addRecipeModal of the file /endpoint/add-recipe.php of the component Add Recipe Page. The manipulation of the argument Name leads to cross site scripting. This vulnerability is handled as CVE-2025-6345. The attack may be launched remotely. Furthermore, there is an exploit available.