Aggregator

文章介绍了一种基于ESXI和OpenWrt实现防溯源攻击环境的方法，通过创建隔离虚拟交换机和端口组，配置OpenWrt作为攻击网段的出口网关，实现流量代理、Fake DNS和防火墙规则设置，确保新虚拟机开机即用且无法被溯源。

A vulnerability has been found in Oxpus Phpbb Personal Notes Module 1.4.6 and classified as critical. This issue affects some unknown processing of the file posting_notes.php. The manipulation of the argument post_id leads to sql injection. This vulnerability is uniquely identified as CVE-2005-1378. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability categorized as critical has been discovered in DLMan Pro 2.0.x. This affects an unknown function of the file dlman.php of the component Links. Executing manipulation of the argument ID can lead to sql injection. This vulnerability is tracked as CVE-2005-1026. The attack can be launched remotely. Moreover, an exploit is present. It is advisable to upgrade the affected component.

A vulnerability, which was classified as critical, was found in phpBB. Affected by this issue is some unknown functionality of the file mod.php of the component Datenbank Module. The manipulation of the argument ID results in sql injection. This vulnerability is cataloged as CVE-2005-1170. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability marked as critical has been reported in PHPCafe Tutorial Manager 1.0. This vulnerability affects unknown code of the file index.php. This manipulation of the argument ID causes sql injection. This vulnerability is handled as CVE-2005-3478. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability labeled as problematic has been found in phpBB. This affects an unknown function of the file sessions.php. Executing manipulation of the argument userdata[user_level can lead to information disclosure. This vulnerability appears as CVE-2005-0614. The attack may be performed from remote. In addition, an exploit is available. The affected component should be upgraded.

Press enter or click to view image in full sizeIn a world drowning in public data, the real edge isn

Organizations commonly allow traffic to core services like Google Meet, YouTube, Chrome update servers, and Google Cloud Platform (GCP) to ensure uninterrupted operations.  A newly demonstrated domain fronting technique weaponizes this trust to establish covert command-and-control (C2) channels, enabling attackers to tunnel malicious traffic through Google’s own infrastructure without raising suspicion. Domain Fronting Technique Praetorian […]

The post New Domain-fronting Attack Uses Google Meet, YouTube, Chrome and GCP to Tunnel Traffic appeared first on Cyber Security News.

ANY.RUN的Microsoft Sentinel连接器通过集成快速、准确的沙盒分析功能，帮助SOC团队自动化处理和丰富警报，缩短响应时间并提升威胁检测效率。

The Unit 42 team at Palo Alto Networks has uncovered a large-scale search poisoning campaign dubbed Operation Rewrite,

The post Operation Rewrite: Chinese Threat Actors Hijack Websites in Massive Search Poisoning Campaign appeared first on Penetration Testing Tools.

意大利8月网络安全事件减少45%，但攻击严重性上升，主要通过钓鱼邮件、漏洞利用和有效账户攻击电信、制造和金融行业。同时，中国国家支持的网络间谍活动增加，强调提高网络弹性的重要性。

European law enforcement authorities, with the support of Eurojust and Europol, have carried out a major operation against

The post Global Cryptocurrency Fraud Ring Busted: Law Enforcement Arrests Mastermind, Freezes Millions appeared first on Penetration Testing Tools.

安理会 24 日召开关于 AI 和平利用与风险的讨论会议。联合国秘书长古特雷斯主张要到 2026 年针对不基于人类判断、利用 AI 实施攻击的武器建立国际监管。主持会议的安理会本月轮值主席国韩国总统李在明也表达了相同的观点。美国代表提出反对，称 AI 的开发和利用是关乎“国家独立和主权的问题。拒绝国际管理。”提出美国优先的特朗普政府在 AI 领域也明显展现出轻视多边协作的态度。古特雷斯强调，运用AI将在粮食短缺、难民出现等预测和早期应对方面带来优势。但他指出，如果完全没有国际规则的状态持续，在武器上的使用或将加快。古特雷斯指出尤其是核武器的使用必须由人类而非 AI 做出判断。中国等表态支持。

Luxembourg, Luxembourg, September 25th, 2025, CyberNewsWire Gcore, the global edge AI, cloud, network, and security solutions provider, today announced the findings of its Q1-Q2 2025 Radar report into DDoS attack trends. DDoS attacks have reached unprecedented scale and disruption in 2025, and businesses need to act fast to protect themselves from this evolving threat. The […]

The post Gcore Radar Report Reveals 41% Surge in DDoS Attack Volumes appeared first on Cyber Security News.

In early September, South Korea experienced a major cyberattack that affected nearly twenty asset management firms. According to

The post Qilin Ransomware Group Attacks South Korea: Data of 20 Asset Managers Stolen appeared first on Penetration Testing Tools.

SOC teams may waste hours daily manually enriching alerts and switching between tools, delaying response. ANY.RUN’s Microsoft Sentinel Connector fixes this by introducing fast, accurate, and interactive sandbox analysis into Sentinel’s workflow, so alerts get auto-processed, enriched with IOCs, and prioritized in seconds.   Here’s how you can speed up response times, filter out false positives, […]

The post ANY.RUN Sandbox & Microsoft Sentinel: Less Noise, More Speed for Your SOC appeared first on ANY.RUN's Cybersecurity Blog.

Poland’s Deputy Prime Minister and Minister of Digitalization, Krzysztof Gawkowski, commented on the aftermath of the major disruption

The post Poland Dodges Major European Airport Cyberattack: Minister Assures Infrastructure Safety appeared first on Penetration Testing Tools.

本文分析了一种恶意软件的攻击手法，通过合法软件加载恶意DLL并利用回调机制执行Shellcode。该恶意程序采用API哈希匹配技术和加密存储Shellcode以规避检测，并通过动态加载函数和随机地址存储进一步提升隐蔽性。

The Circle K convenience store chain has reported a system outage in Hong Kong that effectively paralyzed operations

The post Circle K Hong Kong Paralyzed: System Outage Halts Payments Across 400 Stores appeared first on Penetration Testing Tools.

谷歌为Chrome浏览器开发者工具引入MCP服务器支持，使AI代理能直接在浏览器中调试和验证代码，提升网页开发效率与准确性。