Aggregator

Apple Trade In 折抵换购体验：今年有什么不一样？

混淆还原的几种方式实践

Researchers analyzed phishing attacks from Q3 2023 to Q3 2024 and identified the top five industries targeted by subject-customized emails, which often leverage personal information like names, emails, phone numbers, or company names to bypass security measures.  Employing redaction techniques to protect sensitive information while providing actionable intelligence to clients ensures that valuable insights are […]

The post Top Five Industries Most Frequently Targeted by Phishing Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

​12月4日，美国近 100 名前国家安全官员签署了一封公开信，批评当选总统唐纳德·特朗普提名前众议员塔尔西·加巴德担任国家情报总监的决定，并呼吁参议院举行闭门听证会，审查有关她的任何政府信息。

德勤遭勒索攻击，被窃取机密数据超1TB

BlueAlpha, a Russian state-sponsored group, is actively targeting Ukrainian individuals and organizations by using spearphishing emails with malicious HTML attachments to deliver GammaLoad malware.  To evade detection, BlueAlpha is leveraging Cloudflare Tunnels to conceal their infrastructure and using DNS fast-fluxing for their C2 servers, as this ongoing campaign, active since early 2024, highlights the persistent […]

The post Russian BlueAlpha APT Exploits Cloudflare Tunnels to Distribute Custom Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

每周高级威胁情报解读(2024.11.29~12.05)

Ultralytics遭供应链投毒攻击，模型训练恐成挖矿！

Any company/person I can hire for an ethical SE research project?

Secret Blizzard, a Russian threat actor, has infiltrated 33 command-and-control (C2) servers belonging to the Pakistani group Storm-0156, which allows Secret Blizzard to access networks of Afghan government entities and Pakistani operators.  They have deployed their own malware, TwoDash and Statuezy, and leveraged Storm-0156’s malware, Waiscot and CrimsonRAT, to gather intelligence on targeted networks, which […]

The post Russian Hackers Hijacked Pakistani Actor Servers For C2 Communication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

De maatschappelijke weerbaarheid en militaire paraatheid moeten omhoog. Alleen dan kan Nederland zich wapenen tegen oorlog en crises. “We ontkomen er niet aan een flinke stap extra te zetten.” Dat schrijven defensieminister Ruben Brekelmans, minister van Justitie en Veiligheid David van Weel en staatssecretaris van defensie Gijs Tuinman vandaag aan de Kamer. 

A student in my uni hacked uni database and got access to student ID photos

Researchers discovered Celestial Stealer, a JavaScript-based MaaS infostealer targeting Windows systems that, evading detection with obfuscation and anti-analysis techniques, steals data from various browsers, applications, and cryptocurrency wallets.  It operates as an Electron or NodeJS application, injecting code into vulnerable apps and communicating with C2 servers. The malware’s FUD status is maintained through regular updates […]

The post Sophisticated Celestial Stealer Targets Browsers to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Police seize chat platform and laundering networks, Russian APT hijacks Pakistani actor's systems, and China targets global telecom providers.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 49 appeared first on SentinelOne.

Also, Man Who Stole $3.5M of Cloud Computing to Mine $1M in Crypto Pleads Guilty
This week, Solana npm package attack, a Brazilian banking giant entered crypto trading and a Nebraska man pleaded guilty to cryptojacking. Australia tightened rules for crypto businesses and crypto losses dropped in 2024 and DMM Bitcoin will cease operations.

Russian Activist for Ukraine Claims Spyware Was Installed While in Custody by FSB
A Russian activist says security forces covertly installed spyware on his cellphone while he was detained in Moscow for aiding Ukraine. A report published Thursday shows the spyware received a broad range of permissions, from tracking location to reading encrypted messages.

CEO Anand Eswaran Talks Investors, Innovation and Data Resilience Leadership
CEO Anand Eswaran explains how Veeam's $2 billion secondary offering strengthens its financial position as the data resilience vendor prepares for an initial public offering. He discusses the company’s commitment to innovation and strategic pacts with Splunk, CrowdStrike and Palo Alto Networks.