Aggregator

解读BlackBasta运作模式和技术细节，点击阅读原文，获取完整分析报告

解读BlackBasta运作模式和技术细节，点击阅读原文，获取完整分析报告

A newly disclosed edge case in Substack’s custom domain implementation allows threat actors to hijack inactive subdomains, potentially enabling content spoofing, phishing campaigns, and brand impersonation.  The researcher identified 1,426 vulnerable domains – representing 8% of all Substack-associated custom domains – that remain exposed due to misconfigured DNS records, including 11 wildcard domains that exponentially […]

The post New Vulnerability in Substack let Attackers Take Over Subdomains appeared first on Cyber Security News.

If a company has effective insurance, prevention becomes even less cost-effective. By failing to “value” privacy alone, the system skews in favor of not protecting privacy.

The post DOGE Access to Personal Information and The Difficulty of Showing Harm in Privacy Litigation appeared first on Security Boulevard.

智能化、SaaS化的重保方案，为两会安全保驾护航！

Tailoring backup strategies to ensure operational resilience, safeguard critical configurations, and mitigate risks in Operational Technology environments.

The post Ensuring Continuity in Industrial Operations: A Guide to OT Backup Strategies appeared first on Sygnia.

A new variant of malware, dubbed “Poco RAT,” has emerged as a potent espionage tool in a campaign targeting Spanish-speaking users in Latin America. Security researchers at Positive Technologies Expert Security Center (PT ESC) have linked this malware to the notorious Dark Caracal group, known for its cyber-mercenary operations. The campaign employs weaponized PDF files […]

The post New Poco RAT Via Weaponized PDF Attacking Users to Capture Sensitive Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability, which was classified as critical, has been found in Easybe 1-2-3 music store 1.0. Affected by this issue is some unknown functionality of the file process.php. The manipulation of the argument AlbumID leads to sql injection. This vulnerability is handled as CVE-2005-3855. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, has been found in Edush Maxim GoogleDrive folder list Plugin up to 2.2.2 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-49335. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Fahad Mahmood Endless Posts Navigation Plugin up to 2.2.7 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2024-49629. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Avchat.net AVChat Video Chat Plugin up to 2.2 on WordPress. This affects an unknown part. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-49605. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /manage_customer.php of the component Manage Customer Page. The manipulation of the argument suppliers_name/address leads to cross site scripting. This vulnerability is known as CVE-2024-10198. The attack can be launched remotely. Furthermore, there is an exploit available. The initial researcher advisory mentions contradicting files to be affected. Other parameters might be affected as well.

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. This vulnerability is traded as CVE-2024-10197. It is possible to launch the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A vulnerability classified as problematic was found in LatePoint Plugin up to 4.9.91 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2024-43945. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /manage_medicine.php of the component Manage Medicines Page. The manipulation of the argument name/address/doctor_address/suppliers_name leads to cross site scripting. This vulnerability is handled as CVE-2024-10199. The attack may be launched remotely. Furthermore, there is an exploit available. The initial researcher advisory mentions contradicting files to be affected.

The United States has suspended offensive cyber operations against Russia under an order issued by Defense Secretary Pete Hegseth, according to multiple confirmed reports. The directive, first revealed by The Record and corroborated by The New York Times and The Washington Post, marks a notable shift in the Pentagon’s cyber strategy amid escalating global tensions. While U.S. Cyber Command—tasked with […]

The post U.S. Suspends Cyberattacks Against Russia appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The Information Commissioner’s Office is now investigating how TikTok uses 13–17-year-olds’ personal information

США теперь усиливают защиту от Китая.

Cybersecurity researchers have uncovered a sophisticated phishing campaign leveraging Google Ads and PayPal’s infrastructure to deceive users and steal sensitive personal data. The attackers exploited vulnerabilities in Google’s ad policies and PayPal’s “no-code checkout” feature to create fraudulent payment links that appeared legitimate, tricking victims into engaging with fake customer support agents. Exploitation of Google […]

The post Hackers Abused Google and PayPal’s Infrastructure to Steal Users Personal Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

AI Agent模式在商业和安全领域的应用前景广阔，同时也带来了新的安全风险和治理挑战。如何抓住 Agenti […]