Aggregator

The Department of Justice has announced compliance rules for its Data Security Program that will require organizations to reexamine how they do business and with whom.

What happens when cybercriminals no longer need deep skills to breach your defenses? Today’s attackers are armed with powerful tools that do the heavy lifting — from AI-powered phishing kits to large botnets ready to strike. And they’re not just after big corporations. Anyone can be a target when fake identities, hijacked infrastructure, and insider tricks are used to slip past security

Flashpoint announced new capabilities to its flagship platform, Flashpoint Ignite. These innovations are designed to deliver insights that align with customers’ threat intelligence needs, enabling organizations to make informed decisions and protect their most critical assets. “Too often, high-value threat data and insights go underutilized, buried in complex interfaces, siloed tools, or delayed until it’s too late. In a fast-moving threat landscape, complexity kills context and delays action, making it harder for teams to respond … More →

The post Flashpoint Ignite enhancements improve threat intelligence appeared first on Help Net Security.

Anetac announced the global rollout of Human Link Pro. This new capability unifies the management of human and non-human identity vulnerabilities within the Anetac Identity Vulnerability Management Platform. Already in use by organizations in financial services, retail, healthcare and critical infrastructure, this enhancement addresses the critical need for a single, integrated solution to discover, monitor and respond to vulnerabilities across all identity types–whether employee, non-permanent staff (contractor, partner or supplier) or non-human identities like workloads … More →

The post Anetac Human Link Pro secures both human and non-human identities appeared first on Help Net Security.

Microsoft is quietly preparing the next update to its flagship operating system, Windows 11 25H2, with new evidence pointing toward a September–October 2025 release. Unlike the much-anticipated Windows 11 24H2-the major update arriving in 2024-the 25H2 release is shaping up to be a more modest affair, focusing on incremental improvements and under-the-hood changes rather than headline-grabbing […]

The post Windows 11 25H2 Expected to Launch with Minor Changes appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

JAVA代码审计——Echo4.2

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2025-1976 Broadcom Brocade Fabric OS Code Injection Vulnerability
• CVE-2025-42599 Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability
• CVE-2025-3928 Commvault Web Server Unspecified Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

NIST scientists have published results establishing a new atomic clock, NIST-F4, as one of the world’s most accurate timekeepers.

RSA announced cybersecurity innovations that defend organizations against the next wave of AI powered identity attacks, including IT Help Desk bypasses, malware, social engineering, and other threats. These advancements are especially critical for organizations implementing passwordless strategies and further solidify RSA’s position as the only provider of true, enterprise-ready passwordless identity solutions. Among the highlights is the new RSA Help Desk Live Verify (patent pending), a feature that prevents social engineering and technical support scams. … More →

The post RSA defends organizations against AI-powered identity attacks appeared first on Help Net Security.

57% компаний перестроили ИБ-планирование.

在加载阶段（Loading），它是 Java 将字节码数据从不同的数据源读取到 JVM 中， 并映射为 JVM 认可的数据结构（Class 对象），这里的数据源可能是各种各样的形态，如 jar 文件、class 文件，甚至是网络数据源等；如果输入数据不是 ClassFile 的结构，则会抛出ClassFormatError。

本文讨论软件供应链安全的重要性，并重点关注Python里PyPI生态中的具体风险。然后通过本地实验演示了四种常见的攻击手法：利用 setup.py 在安装时执行恶意代码、利用 __init__.py 在导入时执行恶意代码、通过域名仿冒（Typosquatting）诱导用户安装拼写错误的恶意包，以及利用星标劫持（Star Jacking）在github等托管平台伪造项目流行度以欺骗开发者。

A large-scale phishing campaign targets WordPress WooCommerce users with a fake security alert urging them to download a ‘critical patch’ hiding a backdoor. Patchstack researchers uncovered a large-scale phishing campaign targeting WordPress WooCommerce users with a fake security alert. Threat actors urge recipients to download a “critical patch” that hides a backdoor. The experts noted […]

clickhouse数据库基本使用与sql注入手法总结

在实际的应急响应和安全事件调查中，USB 几乎永远是一个“被低估的风险点”。USB 不需要复杂的攻击链，也不依阅读更多

入门逆向题

Оказалось, что даже самые умные алгоритмы не умеют думать по-настоящему.