Aggregator

网络钓鱼攻击利用品牌仿冒和PDF附件中的恶意链接或QR码诱导用户访问钓鱼网站或拨打电话。攻击者通过VOIP号码隐藏身份，并利用AI生成恶意URL扩大攻击面。

Cybersecurity researchers are calling attention to phishing campaigns that impersonate popular brands and trick targets into calling phone numbers operated by threat actors. "A significant portion of email threats with PDF payloads persuade victims to call adversary-controlled phone numbers, displaying another popular social engineering technique known as Telephone-Oriented Attack Delivery (TOAD

The International Criminal Court (ICC), the global tribunal responsible for prosecuting serious international crimes, has been targeted by a sophisticated and highly focused cyberattack late last week. The Court confirmed that the incident, which marks the second such breach in recent years, was quickly detected and contained through its robust cybersecurity measures. According to an […]

The post International Criminal Court Hacked via Sophisticated Cyber Campaign appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

华为发布盘古 Pro MoE 模型，参数720亿，优化昇腾硬件，在推理性能上领先同类模型，并在Gitcode开放，但禁止欧盟使用。

华为发布了使用其昇腾 NPU 训练的开放权重模型，模型发布在 Gitcode 上，其许可证禁止欧盟地区使用。被称为盘古 Pro MoE 的模型总参数 720 亿，每个 token 激活 160 亿参数。模型为昇腾 300I Duo 和 800I A2 进行了优化，单卡推理性能达到了 1148 token/s，通过预测加速（speculative acceleration）能进一步提高到 1528 token/s。华为研究人员称，在参数低于 1000 亿的模型中，盘古 Pro MoE 的性能超越了 GLM-Z1-32B 和 Qwen3-32B 等知名开放权重模型。

As digital security and privacy demands evolve, users and businesses are increasingly seeking VPN alternatives that offer more robust protection, better scalability, and seamless remote access. While traditional VPNs remain popular, their limitations such as latency, complex management, and scalability issues have paved the way for next-generation solutions. This guide explores the 10 best VPN […]

The post 10 Best VPN Alternative Solutions In 2025 appeared first on Cyber Security News.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority alert after adding two newly discovered vulnerabilities in the TeleMessage TM SGNL messaging platform to its Known Exploited Vulnerabilities (KEV) Catalog. These flaws CVE-2025-48927 and CVE-2025-48928, are confirmed to have been actively exploited in the wild, prompting urgent calls for immediate remediation across […]

The post CISA Issues Alert on TeleMessage TM SGNL Flaws Actively Exploited appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Qantas reports a cyberattack after hackers accessed customer data via a third-party platform, amid ongoing Scattered Spider aviation breaches. Qantas, Australia’s largest airline, disclosed a cyberattack after hackers accessed a third-party platform used by a call centre, stealing significant customer data. The breach, linked to ongoing Scattered Spider activity, was detected and contained on Monday. […]

澳大利亚航空巨头Qantas遭遇网络攻击，黑客通过第三方平台获取了600万条客户数据，包括姓名、邮箱、电话号码等。此次攻击与Scattered Spider网络犯罪组织相关，该组织利用社会工程学手段入侵企业系统。Qantas已采取措施控制事件，并加强安全防护。

一年一度的“大考”持续火热进行中，攻防演练期间本公众号会每日更新当天鲜活情报和热点漏洞，欢迎大家对我们进行收藏和关注！

Это как взять Вселенную и встряхнуть её изнутри.

速修复

当前环境异常,需完成验证后方可继续访问.

文章指出API在推动业务创新的同时也带来了管理难题，未记录的Shadow APIs和未退役的Zombie APIs成为主要安全隐患。这些API因缺乏监控和修复机制而易受攻击，可能导致数据泄露和合规问题。建议通过加强发现、治理和安全措施来应对这一挑战。

The future of API security is not just about better firewalls — it is about smarter governance, automation and visibility at scale. 

The post API Sprawl Can Trip Up Your Security, Big Time appeared first on Security Boulevard.

近日，FBI和NSA紧急提醒注意与伊朗有关的黑客攻击美国关键基础设施。

当前环境异常，需完成验证后才能继续访问。