Aggregator

A vulnerability was found in Huawei HarmonyOS and EMUI. It has been rated as critical. Affected by this issue is some unknown functionality of the component System Service Module. The manipulation leads to business logic errors. This vulnerability is handled as CVE-2024-54098. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Huawei HarmonyOS and EMUI. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component HiView Module. The manipulation leads to external control of system or configuration setting. This vulnerability is known as CVE-2024-54097. It is possible to launch the attack on the physical device. There is no exploit available.

A vulnerability was found in Huawei HarmonyOS and EMUI. It has been classified as critical. Affected is an unknown function of the component MTP Module. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2024-54096. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Huawei HarmonyOS and EMUI and classified as problematic. This issue affects some unknown processing. The manipulation leads to configuration. The identification of this vulnerability is CVE-2024-54099. It is possible to launch the attack on the local host. There is no exploit available.

AuthQuake наглядно доказала – даже самые надёжные системы не гарантируют полной защиты.

A stealthy Command-and-Control (C2) infrastructure Red Team tool named ConvoC2 showcases how cyber attackers can exploit Microsoft Teams to execute system commands on compromised hosts remotely. This innovative project, designed with Red Team operations in mind, uses Teams messages for hidden data exfiltration and command execution, demonstrating a significant security challenge for organizations relying on […]

The post ConvoC2 – A Red Teamers Tool To Execute Commands on Hacked Hosts Via Microsoft Teams appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

手心输入法Windows版出现诈尸级更新 自2018年以来首次发布更新

Building a ‘WiFi Camera’ with a HackRF and Helical Antenna on a Motorized Pan-Tilt Mount

OCR in Banking: The Game Changer of GenAI

以设计巧妙、精美著称的解谜游戏《纪念碑谷3》由 Netflix「大写的免费」发布

「众智维科技」获数千万B1轮融资

喜讯！爱加密荣获“鸿蒙NEXT SDK星河奖”

Cybersecurity researchers have uncovered a sophisticated exploitation campaign involving a zero-day (0-day) vulnerability in Cleo file transfer software platforms. This campaign has been used to deliver a newly identified malware family, now dubbed “Malichus.” The threat, recently analyzed by Huntress and corroborated by other industry vendors, demonstrates significant technical complexity, raising alarms across the cybersecurity […]

The post Cleo 0-day Vulnerability Exploited to Deploy Malichus Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

SaaS services are one of the biggest drivers of OpEx (operating expenses) for modern businesses. With Gartner projecting $247.2 billion in global SaaS spending this year, it’s no wonder SaaS budgets are a big deal in the world of finance and IT. Efficient SaaS utilization can significantly affect both the bottom line and employee productivity.  In this article, we’ll break down this topic

Russian-made spyware BoneSpy and PlainGnome target former Soviet states, while public security bureaus in mainland China use Chinese surveillance tool EagleMsgSpy

iOS 18.2 值得关注的新特性，还有「AI」入华新传闻