Aggregator

关键词恶意软件一场名为 “DocSwap” 的复杂恶意软件攻击活动浮出水面，它伪装成一款合法的文档安全与查看应

关键词攻击者正在积极利用 OpenAI 的 ChatGPT 基础设施中的一个服务器端请求伪造（SSRF）漏洞。

关键词StilachiRAT深入分析规避技术反分析与沙盒规避StilachiRAT 设计了强大的反分析功能，以

关键词网络安全在数字化互联的时代，数据作为第五大生产要素，只有实现充分流动，才能激发出无限价值。

Commandant Luchtstrijdkrachten luitenant-generaal André Steur bezocht de Nederlandse militairen in Roemenië. Een MQ-9 Reaper-detachement verzamelt daar met 3 onbemande toestellen informatie aan de oostflank van de NAVO. Een overzicht van Defensieoperaties in de week van 12 tot en met 18 maart 2025.

Интеграция с OSV-SCALIBR позволила сканировать контейнерные образы от слоя к слою.

The threat actors behind the ClearFake campaign are using fake reCAPTCHA or Cloudflare Turnstile verifications as lures to trick users into downloading malware such as Lumma Stealer and Vidar Stealer. ClearFake, first highlighted in July 2023, is the name given to a threat activity cluster that employs fake web browser update baits on compromised WordPress as a malware distribution vector. The

Власти ограничили доступ к X, YouTube и Instagram на фоне политического кризиса.

Cybercriminals have launched a new sophisticated attack campaign targeting travelers through fake booking websites. The campaign, discovered in early 2025, tricks users into installing LummaStealer malware through deceptive CAPTCHA verification processes, putting personal and financial information at risk. The attack begins when unsuspecting victims visit what appears to be a legitimate booking confirmation page. Before […]

The post Sophisticated Attack Via Booking Websites Installs LummaStealer Malware appeared first on Cyber Security News.

Gartner has claimed that AI agents will reduce the time it takes to exploit exposed accounts

Kali Linux 2025.1a 发布，新增 Hoaxshell 工具，全新主题和桌面更新，提升安全测试体验。

The Rules File Backdoor attack targets AI code editors like GitHub Copilot and Cursor, making them inject malicious code via a supply chain vulnerability. Pillar Security researchers uncovered a dangerous new supply chain attack vector called ‘Rules File Backdoor.’ Threat actors could use the technique to silently compromise AI-generated code by injecting malicious code. The attack […]

Нестандартный аргумент в переговорах Ox Thief начинает новую эру атак.

Identity-based attacks are on the rise. Attackers are targeting identities with compromised credentials, hijacked authentication methods, and misused privileges. While many threat detection solutions focus on cloud, endpoint, and network threats, they overlook the unique risks posed by SaaS identity ecosystems. This blind spot is wreaking havoc on heavily SaaS-reliant organizations big and small