Aggregator

F5公司遭遇国家级网络攻击，源代码、未修补漏洞及客户配置被窃取。此事件对数字基础设施构成严重威胁。尽管F5已采取紧急补丁和安全措施应对，但潜在风险仍未消除。

好，我现在要帮用户总结这篇文章的内容，控制在100字以内。首先，我需要通读整篇文章，抓住主要信息。 文章介绍了一个名为MiniBili的第三方B站客户端，适用于iOS和iPad。开发者是ResistanceTo，他用Swift开发的，免费且无广告、无跟踪器。主要功能包括登录、显示弹幕、同步观看历史、隐身模式和下载视频。目前只能在应用内观看下载的视频。开发者提到不会上架商店，并且担心被官方限制。 接下来，我需要将这些信息浓缩到100字以内。要确保涵盖应用名称、功能、特点以及不上架的原因。 可能的结构：应用名称、平台、特点（免费、无广告）、主要功能（登录、弹幕、历史同步）、开发者态度（不上架商店）。 最后，检查字数是否符合要求，并确保语言简洁明了。 MiniBili 是一款简约版第三方 B 站客户端，适用于 iOS 和 iPad，免费无广告。支持登录、显示弹幕、同步观看历史和隐身模式等功能，但无法直接下载视频观看。开发者表示不会上架商店，并尽量避免触发 B 站限制。

Pakistan-based advanced persistent threat group APT36, also known as TransparentTribe, is actively targeting Indian government entities with a sophisticated spear-phishing campaign using email lures themed as “NIC eEmail Services.” This campaign leverages lookalike domains and weaponized infrastructure to steal credentials and enable long-term espionage. The attack begins with email messages that convincingly mimic official notifications […]

The post Pakistani Cyber Actors Impersonating ‘NIC eEmail Services’ to Target Indian Government appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Чип Yuheng способен фиксировать спектры 5600 звёзд за один снимок.

未来的汽车会是完全自主驾驶，但今天的技术距离自主驾驶还有很长的距离。打车软件巨头 Uber 开始向打零工的司机们提供新的收入来源：帮助训练和改进该公司的 AI 系统。此举旨在加速自主化，但完全自主化之后人类司机也不再需要了。司机们是在在训练会取代他们的技术。

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Microsoft Windows Server Message Block (SMB) vulnerability to its Known Exploited Vulnerabilities catalog, warning that threat actors are actively exploiting the security flaw in the wild. The vulnerability, tracked as CVE-2025-33073, affects the Windows SMB Client and could allow attackers to escalate privileges on […]

The post CISA Warns of Actively Exploited Windows SMB Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The lights switch on as you walk in. The air adjusts to your presence. Somewhere in the background, a server notes your arrival. It’s the comfort of a smart building, but that comfort might come with a cost. Smart buildings use digital systems that collect information about how people move and work. These networks make life easier but also create openings for misuse or attack. Cybercriminals can take control of heating systems, security cameras, or … More →

The post Your smart building isn’t so smart without security appeared first on Help Net Security.

KAUST пробил предел многослойной сборки.

A vulnerability labeled as problematic has been found in Sphider 1.3.4. Impacted is an unknown function of the file search.php. Executing manipulation of the argument Query can lead to cross site scripting. This vulnerability is registered as CVE-2008-5211. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability, which was classified as critical, has been found in Simon Rycroft SID. The impacted element is an unknown function of the file client.php. This manipulation of the argument dir causes code injection. This vulnerability is handled as CVE-2008-7152. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability was found in Softbiz Jokes And Funny Pictures Script and classified as critical. This impacts an unknown function of the file index.php. Executing manipulation of the argument sbcat_id can lead to sql injection. This vulnerability appears as CVE-2008-1050. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability was found in Softbiz Image Gallery. It has been rated as problematic. This issue affects some unknown processing of the file index.php. Performing manipulation of the argument msg results in cross site scripting. This vulnerability is known as CVE-2008-3511. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability categorized as problematic has been discovered in Softbizscripts Classifieds Script. Affected by this vulnerability is an unknown functionality of the file signinform.php. Such manipulation of the argument msg leads to cross site scripting. This vulnerability is listed as CVE-2008-6306. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability classified as critical has been found in University of Washington wu-ftpd 2.4.1. This issue affects some unknown processing of the component site exec Command. The manipulation leads to improper privilege management. This vulnerability is referenced as CVE-1999-0955. Remote exploitation of the attack is possible. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in Matt Wright WWWBoard 2.0 Alpha 2. It has been classified as critical. The affected element is an unknown function. This manipulation causes information disclosure (Password). This vulnerability is registered as CVE-1999-0954. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.

A vulnerability marked as problematic has been reported in Omnicron OmniHTTPD 1.1/2.0. This impacts an unknown function of the file visadmin.exe. This manipulation causes denial of service. This vulnerability appears as CVE-1999-0970. The attack may be initiated remotely. In addition, an exploit is available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Sun Solaris 2.5/2.5.1/2.6/7.0. This issue affects some unknown processing of the file sadmind. Executing manipulation of the argument NETMGT_PROC_SERVICE can lead to memory corruption. This vulnerability is tracked as CVE-1999-0977. The attack can be launched remotely. Moreover, an exploit is present. You should upgrade the affected component.

当前环境出现异常，需完成验证后才能继续访问。

当前环境出现异常，请完成验证以继续访问。

Russian state-sponsored threat actor COLDRIVER, long known for targeting high-profile NGOs, policy advisors, and dissidents, has been linked to a rapidly evolving malware campaign following the public disclosure of its LOSTKEYS malware in May 2025. After details of LOSTKEYS surfaced, COLDRIVER (also tracked as UNC4057, Star Blizzard, and Callisto) pivoted away from the compromised malware. […]

The post New LOSTKEYS Malware Tied to Russian State-Sponsored Hacker Group COLDRIVER appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.