Aggregator

Cybersecurity experts have uncovered a sophisticated phishing campaign that employs a double-edged tactic to compromise Office 365 credentials and deliver malware, posing significant risks to organizations worldwide. The campaign, identified by the Cofense Phishing Defense Center (PDC), uses a file deletion reminder as a pretext to trick victims into engaging with what appears to be […]

The post New Double-Edged Email Attack Steals Office 365 Credentials and Delivers Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Ransomware attacks have continued their relentless assault on organizations worldwide, with a focus on data exfiltration and subsequent blackmail through leak site posts. Rapid7 Labs’ analysis of internal and public data provides insights into the evolving landscape of ransomware threats. Evolving Tactics in Ransomware Operations The ransomware ecosystem has seen a shift where established and […]

The post Ransomware Groups Target Organizations to Exfiltrate Data and Blackmail via Leak Site Posts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

关键词恶意软件威胁行为者正在滥用 SourceForge 分发伪造的 Microsoft 插件，这些插件会在受

关键词安全漏洞Adobe发布了安全更新来修复一系列新的安全漏洞，包括 ColdFusion 版本 2025、2

关键词零日漏洞谷歌近日发布了2025年4月Android安全更新，共修复62个安全漏洞。

Luxembourg, Luxembourg, 9th April 2025, CyberNewsWire

The post Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed appeared first on Security Boulevard.

The cybersecurity community has raised alarms over the rapid evolution of the Hellcat ransomware group, which has escalated its tactics to target critical sectors. Hellcat, which emerged in mid-2024, now employs a sophisticated blend of psychological manipulation, zero-day vulnerabilities, and Ransomware-as-a-Service (RaaS) to expand its influence. Spear Phishing and Zero-day Exploits Hellcat operators initiate attacks […]

The post Hellcat Ransomware Upgrades Arsenal to Target Government, Education, and Energy Sectors appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

By taking simple steps like choosing a cost-effective backup storage strategy and minimizing recovery infrastructure costs, you can protect your business without bloating your budget. 

The post Four Tips for Optimizing Data Backup and Recovery Costs appeared first on Security Boulevard.

4月9日，绿盟科技CERT监测到微软发布4月安全更新补丁，修复了126个安全问题，涉及Windows、Microsoft Office、Azure等广泛使用的产品，其中包括权限提升、远程代码执行等高危漏洞类型。

4月9日，绿盟科技CERT监测到微软发布4月安全更新补丁，修复了126个安全问题，涉及Windows、Microsoft Office、Azure等广泛使用的产品，其中包括权限提升、远程代码执行等高危漏洞类型。

73% of respondents in an Armis survey said they worried about nation-state actors using AI for cyber-attacks

A critical RCE vulnerability (CVE-2025-30406) affecting the Gladinet CentreStack file-sharing/remote access platform has been added to CISA’s Known Exploited Vulnerabilities catalog on Tuesday. According to the vulnerability’s entry in NIST’s National Vulnerability Database, the flaw has been leveraged in attacks since March 2025. About CVE-2025-30406 CentreStack is a platform that allows managed service providers (MSPs) to offer cloud-like file services to their customers: file sharing, backup, collaboration, and remote access. CVE-2025-30406 is a deserialization vulnerability … More →

The post RCE flaw in MSP-friendly file sharing platform exploited by attackers (CVE-2025-30406) appeared first on Help Net Security.

企业版产品火绒终端安全管理系统由于产品发展规划，中心V2.0.16.0及以上版本将不再支持Windows Server 2008及以下系统，请火绒用户避免在以上环境下继续运行中心，以免影响您的管控。

IBM 宣布了最新的 z17 大型机，每秒能处理最多 27 万亿次操作，性能比 2022 年发布的 z16 快 50%，预计夏天上市。z17 使用了 Telum II 处理器，是 z16 使用的 Telum 处理器的升级版，为 8 核、频率 5.5GH，配有 360MB 虚拟 L3 缓存和 2.88GB 虚拟 L4 缓存。Telum II 还引入了旨在帮助加速 AI 工作负载的新数据处理单元等功能。Telum 一代使用三星 7 纳米工艺制造，二代尚无更多信息。

GitGuardian's State of Secrets Sprawl report for 2025 reveals the alarming scale of secrets exposure in modern software environments. Driving this is the rapid growth of non-human identities (NHIs), which have been outnumbering human users for years. We need to get ahead of it and prepare security measures and governance for these machine identities as they continue to be deployed, creating an