Aggregator
CVE-2024-35200 | F5 NGINX Plus/NGINX Open Source HTTP3 QUIC denial of service (K000139612)
CVE-2024-32760 | F5 NGINX Plus/NGINX Open Source HTTP3 QUIC denial of service (K000139609)
CVE-2024-34161 | F5 NGINX Plus/NGINX Open Source HTTP3 QUIC memory leak (K000139627)
Сомнение — новая сила ИИ: Сколтех развивает осторожный интеллект
Threat Actors Using Powerful Cybercriminal Weapon ‘Atlantis AIO’ to Automate Credential Stuffing Attacks
Credential stuffing has emerged as one of the most pervasive and effective attack vectors in today’s cybersecurity landscape. This technique, which leverages stolen username and password combinations across multiple platforms, has been significantly enhanced through a sophisticated automation tool called Atlantis AIO (All-In-One), enabling threat actors to execute attacks at unprecedented scale and efficiency. The […]
The post Threat Actors Using Powerful Cybercriminal Weapon ‘Atlantis AIO’ to Automate Credential Stuffing Attacks appeared first on Cyber Security News.
CVE-2004-0246 | Laurent Adda Les Commentaires 2.0 fonctions.lib.php rep file inclusion (EDB-23621 / XFDB-15010)
CVE-2024-0436 | mintplex-labs anything-llm up to 0.0.x timing discrepancy
Chinese Spy Group FamousSparrow Back with a Vengeance, Targets US
注意!CrushFTP HTTPS 端口漏洞或致未经授权的访问
New Report Explains Why CASB Solutions Fail to Address Shadow SaaS and How to Fix It
CVE-2025-24513
CVE-2004-2038 | Neocrome Land Down Under up to 700.2 BBcode auth.inc.php cross site scripting (EDB-24152 / XFDB-16284)
Malicious Google Ads Target DeepSeek Users to Spread Malware
Cybersecurity threats continue to evolve, with malicious actors exploiting popular platforms like Google Ads to spread malware. Recently, a sophisticated campaign targeting DeepSeek users has been uncovered, highlighting the ongoing risks associated with sponsored search results. The Threat Landscape DeepSeek, a rising platform, has become a lure for cybercriminals who are using fake sponsored Google […]
The post Malicious Google Ads Target DeepSeek Users to Spread Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Игра вне поля: футбольные клубы вступают в битву с киберпреступностью
CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825)
CrushFTP has fixed a critical vulnerability (CVE-2025-2825) in its enterprise file transfer solution that could be exploited by remote, unauthenticated attackers to access vulnerable internet-facing servers (and likely the data stored on them). Attackers, especially ransomware gangs, have a penchant for leveraging 0-day and n-day vulnerabilities in MOVEit Transfer, Cleo, Citrix ShareFile, and other enterprise-grade file transfer and sharing solutions. Attackers have been known to exploit previous CrushFTP vulnerabilities, but there is currently no evidence … More →
The post CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825) appeared first on Help Net Security.
How We Enrich TI Lookup and Feeds with Fresh Threat Data from 15,000 Organizations
Cyber threat intelligence is all about data: its collection, exploration and research, extracting actionable insight. If you employ any intelligence solution, it is vital to understand what data sources it relies on and what kind of information they deliver. In ANY.RUN’s Threat Intelligence Lookup and TI Feeds, we leverage fresh data from millions of sandbox […]
The post How We Enrich TI Lookup and Feeds with Fresh Threat Data from 15,000 Organizations appeared first on ANY.RUN's Cybersecurity Blog.
Lucid PhAAS Platform Uses RCS and iMessage to Evade Detection
The cybersecurity landscape has been disrupted by the emergence of Lucid, a sophisticated Phishing-as-a-Service (PhAAS) platform developed by Chinese-speaking threat actors. This advanced toolkit enables cybercriminals to conduct large-scale phishing campaigns, targeting 169 entities across 88 countries globally. Lucid’s innovation lies in its exploitation of Rich Communication Services (RCS) and Apple’s iMessage protocol to circumvent […]
The post Lucid PhAAS Platform Uses RCS and iMessage to Evade Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.