Aggregator

The threat actor known as Gamaredon has been observed leveraging Cloudflare Tunnels as a tactic to conceal its staging infrastructure hosting a malware called GammaDrop. The activity is part of an ongoing spear-phishing campaign targeting Ukrainian entities since at least early 2024 that's designed to drop the Visual Basic Script malware, Recorded Future's Insikt Group said in a new analysis.

GitLab 任命 Bill Staple 为新 CEO 和董事会成员，联合创始人和 CEO Sid Sijbrandij 不再从事日常工作，他将专注于健康，转任董事会执行主席。GitLab 有逾 3000 万注册用户，被逾半数财富 100 强公司部署，估值 90 亿美元。其名义总部位于旧金山，但所有员工都远程工作。今年早些时候有传言称 GitLab 正在探索出售，任命 Bill Staple 基本上证实了这一传言，因为他的上一任工作是担任 New Relic CEO 然后在 2023 年以 65 亿美元出售给私募 Francisco Partners 和 TPG Inc。

Red teaming is like staging a realistic rehearsal for a potential cyber attack to check an organization’s security resilience before they become actual problems. The exercise has three key phases: getting inside the system, maintaining their presence undetected, and acting to achieve their goals. The job is to test an organization’s defenses, challenge security assumptions, […]

The post What is Red Teaming? appeared first on Kratikal Blogs.

The post What is Red Teaming? appeared first on Security Boulevard.

下面都是使用goron的混淆进行符号执行以及模拟执行处理的结果

How cybercriminals are outpacing macOS security in 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has released two advisories highlighting significant security vulnerabilities in Industrial Control Systems (ICS) software and hardware. These vulnerabilities, identified in AutomationDirect’s C-More EA9 Programming Software and Planet Technology’s industrial switch WGS-804HPT, could pose serious risks to critical infrastructure if exploited by attackers. AutomationDirect C-More EA9 Programming Software The […]

The post Multiple ICS Advisories Released by CISA Detailing Exploits & Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Siemens Unlocked JTAG Interface / Buffer Overflow

Motorcycle Parts and Services Management System - MPSSMS- PHP (by: oretnom23 ) v1.0 Multiple-SQLi

勒索软件组织 Brain Cipher 近日声称入侵了世界四大会计师事务所之一德勤，并从中窃取了1TB的压缩数据。

Blue sun info - Sql Injection

Convoy CMS SQL injection 24.5

10 Tips to Enhance Data Center Sustainability with DCIM Software

Обсуждается новая инициатива Минцифры.

The Global Research and Analysis Team (GReAT) has announced the release of hrtng, a cutting-edge plugin for IDA Pro, one of the most prominent tools for reverse engineering. Designed specifically to enhance the efficiency of malware analysis, hrtng provides analysts with powerful features that automate and simplify the otherwise intricate tasks involved in dissecting malicious binaries. The […]

The post Researchers Released hrtng IDA Pro Plugin for Malware Analyst to Make Reverse Engineering Easy appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Patchwork组织近期针对国内的攻击活动分析；APT35 对多个国家的航空航天和半导体行业发动攻击；APT-C-53（Gamaredon）组织广泛攻击活动分析

奇安信威胁情报中心发现由Ultralytics团队开发的YOLO11模型框架项目ultralytics 遭恶意投毒，用户在使用pypi安装最新的v8.3.41版本时，机器将被植入挖矿木马，我们建议使用了该项目的用户尽快进行自查。

U.S. org suffered four month intrusion by Chinese hackers

A vulnerability has been found in BrowserCRM up to 4.604.01 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument contact_id leads to sql injection. This vulnerability is known as CVE-2011-5213. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in Linux Kernel 2.6.16.9. Affected is an unknown function. The manipulation leads to denial of service. This vulnerability is traded as CVE-2009-3621. An attack has to be approached locally. Furthermore, there is an exploit available.

It seems like 2024 just started, but the final Patch Tuesday of the year is almost here! In retrospect, it has been a busy year with continued Windows 11 releases, the new Server 2025 release, and all the patches we’ve needed to deal with on Patch Tuesdays (and in between). Looking back to my blog from November of 2023, I had a single line referencing Microsoft’s Secure Future Initiative and just mentioned it in passing … More →

The post December 2024 Patch Tuesday forecast: The secure future initiative impact appeared first on Help Net Security.