Aggregator

A sophisticated malware campaign leveraging search engine optimization (SEO) poisoning on Microsoft Bing has emerged, delivering the notorious Bumblebee malware to unsuspecting users. The campaign, identified in May 2025, specifically targets users searching for specialized software tools, demonstrating a concerning evolution in malware distribution tactics that exploits trusted search engine results. Bumblebee, a downloader malware […]

The post Threat Actors Deliver Bumblebee Malware Poisoning Bing SEO appeared first on Cyber Security News.

A vulnerability classified as critical was found in PowerDNS DNSdist up to 1.9.9. This vulnerability affects unknown code. The manipulation leads to uncontrolled recursion. This vulnerability was named CVE-2025-30193. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.15-rc1. This affects the function inftl_read_oob of the component mtd. The manipulation of the argument return leads to unchecked return value. This vulnerability is uniquely identified as CVE-2025-37892. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Adidas Korea has announced a security breach affecting customer data, marking the second major incident in the fashion industry targeting Korean consumers this month. The sportswear giant revealed that unauthorized access was gained through a third-party customer service provider, compromising customers’ personal information who had contacted their service centers. On May 16, Adidas disclosed on […]

The post Adidas Data Breach – Customers’ Personal Information Exposed appeared first on Cyber Security News.

Reliable measurements of the light from our planet can help industries from agriculture to meteorology to mining.

Thales found that 73% of organizations are investing in AI-specific security tools, amid surging takeup of GenAI tools in enterprises

物联网相关协议流量分析

本文系统讲解MQTT协议的基础知识、安全机制，通过举出MQTT在车联网应用的案例、模拟搭建简单的MQTT渗透测试实验环境，揭示协议交互过程中可能存在的认证缺陷、信息泄露、命令执行等风险，并揭示安全工程师学习协议原理的重要性。

RVTools installer on its official site was found delivering malware. Research shows it spread Bumblebee loader. Users urged to verify downloads.

Foxconn и NVIDIA строят новую медицину прямо сейчас.

The phishing attack landscape continues to evolve in 2025, with cybercriminals using more sophisticated techniques to bypass security measures, emphasizing the need for phishing attack prevention. Phishing remains one of the most prevalent and damaging cyber threats facing organizations worldwide. In the fourth quarter of 2024 alone, nearly a million phishing attacks were observed, showing […]

The post Phishing Attack Prevention – Best Practices for 2025 appeared first on Cyber Security News.

Langflow RCE漏洞分析，Python装饰器的小技巧。

Outpost24 announced the addition of AI-enhanced summaries to the Digital Risk Protection (DRP) modules within its External Attack Surface Management (EASM) platform. With Outpost24’s DRP modules, organizations are able to identify, monitor, and protect against threats before they can be exploited. DRP’s threat intelligence provides continuous scans for exposed credentials, brand impersonations, data leaks and more. While this is all valuable information to have, these DRP findings can be challenging and time-consuming for security teams … More →

The post Outpost24 simplifies threat analysis with AI-enhanced summaries appeared first on Help Net Security.

主要讲解CVE-2018-18708栈溢出漏洞的环境搭建、漏洞的复现、漏洞的利用以及漏洞原理讲解

主要讲述了模型whisper这一种新型的隐写技术

某info开源系统是一款开源的php程序，主要用于官网搭建，系统采用自研的架构。

A suspected initial access broker has been leveraging trojanized versions of the open-source KeePass password manager to set the stage for ransomware attacks, WithSecure researchers have discovered. KeeLoader: Passoword manager that acts as data stealer and malware loader In February 2025, WithSecure’s inicident responders were hired by an European IT service provider to help with response and remediation after a ransomware gang encrypted their VMware ESXi servers’ datastores. While the attack itself was relatively typical, … More →

The post Trojanized KeePass opens doors for ransomware attackers appeared first on Help Net Security.

数字中国

Готовьтесь к утечке CPU, криптовалюте и новым соседям в crontab.

最近几年银狐类黑产团伙非常活跃，今年这些黑产团伙会更加活跃，而且仍然会不断的更新自己的攻击样本，采用各种免杀方式，逃避安全厂商的检测，此前大部分银狐黑产团伙使用各种修改版的Gh0st远控作为其攻击武器，远程控制受害者主机之后，进行相关的网络犯罪活动。