Aggregator

Бизнесу придётся заговорить честно.

微软于 5 月 5 日正式结束了 Skype 长达 22 年的历史。现有的 Skype 用户迁移到了 Teams，用户现在打开 Skype应用会重定向到 Teams。Skype 服务唯一保留的功能是拨打传统电话号码的 Skype Dial Pad。Skype 诞生于 2003 年 8 月，2011 年 5 月被微软以 85 亿美元收购。它曾是最流行的视频通话软件，然而在收购之后逐渐由盛而衰，新冠疫情期 Zoom 取代它成为了视频聊天和会议的代名词。微软于 2017 年开始逐步淘汰 Skype，一开始是 Skype for Business，如今则是完全关闭。

Security researchers have released GPOHound, a powerful open-source tool designed to analyze Group Policy Objects (GPOs) in Active Directory environments for misconfigurations and privilege escalation risks. Developed by cybersecurity firm Cogiceo, the tool automates the detection of insecure settings like exposed credentials, weak registry permissions, and unauthorized group memberships that attackers could exploit. Why GPOHound Matters […]

The post New GPOHound Tool Analyzes Active Directory GPOs for Escalation Risks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Huawei HarmonyOS 5.0.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component App Lock Module. The manipulation leads to information management error. This vulnerability is known as CVE-2025-46589. Attacking locally is a requirement. There is no exploit available.

A vulnerability was found in Huawei HarmonyOS 5.0.0. It has been classified as problematic. Affected is an unknown function of the component App Lock Module. The manipulation leads to information management error. This vulnerability is traded as CVE-2025-46588. Local access is required to approach this attack. There is no exploit available.

A vulnerability was found in Huawei HarmonyOS 5.0.0 and classified as critical. This issue affects some unknown processing of the component Print Module. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2025-46593. An attack has to be approached locally. There is no exploit available.

A vulnerability has been found in Huawei HarmonyOS 5.0.0 and classified as problematic. This vulnerability affects unknown code of the component USB HDI Driver Module. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2025-46592. The attack needs to be approached locally. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Huawei HarmonyOS 5.0.0. This affects an unknown part of the component Authorization Module. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2025-46591. It is possible to launch the attack on the local host. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Huawei HarmonyOS 5.0.0. Affected by this issue is some unknown functionality of the component Network Search Instruction Authentication Module. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2025-46590. The attack can only be initiated within the local network. There is no exploit available.

Как один хакер решил спасти искусство, но взломал корпорацию.

A vulnerability classified as critical was found in Huawei HarmonyOS 5.0.0. Affected by this vulnerability is an unknown functionality of the component Media Library Module. The manipulation leads to improper access controls. This vulnerability is known as CVE-2025-46587. Local access is required to approach this attack. There is no exploit available.

A vulnerability classified as problematic has been found in Huawei HarmonyOS 5.0.0. Affected is an unknown function of the component Media Library Module. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-58252. An attack has to be approached locally. There is no exploit available.

A major security scare has erupted in Washington after reports emerged that a Trump associate was using an unofficial version of the secure messaging platform Signal-an application that was subsequently targeted in a data breach, according to a Sunday report from tech outlet 404 Media. According to the Reuters report, the report centers on former […]

The post Signal App Used by Trump Associate Targeted in Security Breach appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Huawei HarmonyOS 5.0.0. It has been rated as critical. This issue affects some unknown processing of the component File System Module. The manipulation leads to improper handling of insufficient permissions or privileges. The identification of this vulnerability is CVE-2025-46584. The attack needs to be approached locally. There is no exploit available.

现代汽车在其位于美国佐治亚州的 Metaplant America工厂部署了波士顿动力的 Atlas 人形机器人，此举旨在加速工厂自动化和本地生产，提高效率以应对汽车关税上涨。现代汽车已经在其美国工厂部署了 Spot 四足机器人用于工业检测，它没有披露部署了多少台 Atlas，以及 Atlas 的具体用途。现代汽车是在 2021 年从日本软银收购了波士顿动力，Atlas 为双足人形机器人，其最新型号为全电版而不是早期使用的液压版。波士顿动力在宣布电动版 Atlas 时透露第一个合作对象是其母公司现代汽车。

A vulnerability was found in pixel_prime Reales WP STPT Plugin up to 2.1.2 on WordPress. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to authorization bypass. This vulnerability was named CVE-2025-3610. The attack can be initiated remotely. There is no exploit available.

Хакеры не просто взломали авиакомпанию, а изменили расстановку сил.

RSA announced cybersecurity innovations that defend organizations against the next wave of AI powered identity attacks, including IT Help Desk bypasses, malware, social engineering, and other threats. These advancements are especially critical for organizations implementing passwordless strategies. Among the highlights is the new RSA Help Desk Live Verify (patent pending), a feature that prevents social engineering and technical support scams. With bi-directional identity verification, RSA Help Desk Live Verify ensures that both users and IT … More →

The post RSA helps organizations secure passwordless environments appeared first on Help Net Security.

A vulnerability was found in Huawei HarmonyOS 5.0.0. It has been classified as critical. This affects an unknown part of the component Contacts Module. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2025-46586. Attacking locally is a requirement. There is no exploit available.

A vulnerability was found in Huawei HarmonyOS 5.0.0 and classified as critical. Affected by this issue is some unknown functionality of the component Kernel Module. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2025-46585. Local access is required to approach this attack. There is no exploit available.