Вы ни за что не отгадаете, где на этот раз запустили «DOOM»
Забудьте про калькуляторы: игру заставили работать там, где вообще нет файловой системы.
Aggregator
Drift $280M crypto theft linked to 6-month in-person operation
2 months 3 weeks ago
The Drift Protocol says that the $280+ million hack it suffered last week was the result of a long-term, carefully planned operation that included building "a functioning operational presence inside the Drift ecosystem." [...]
Bill Toulas
DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea
2 months 3 weeks ago
Threat actors likely associated with the Democratic People's Republic of Korea (DPRK) have been observed using GitHub as command-and-control (C2) infrastructure in multi-stage attacks targeting organizations in South Korea.
The attack chain, per Fortinet FortiGuard Labs, involves obfuscated Windows shortcut (LNK) files acting as the starting point to drop a decoy PDF
The Hacker News
Singapore, US warn of latest Fortinet bug being exploited in wild
2 months 3 weeks ago
The Cybersecurity and Infrastructure Security Agency (CISA) gave federal agencies until Thursday to apply the hotfix.
Akira
2 months 3 weeks ago
You must login to view this content
cohenido
Akira
2 months 3 weeks ago
You must login to view this content
cohenido
Alleged Breach of KBank Vietnam Exposes 10.1 Million Credit Registration Records With National IDs, Salaries, Credit Scores, and Employer Details
2 months 3 weeks ago
Alleged Breach of KBank Vietnam Exposes 10.1 Million Credit Registration Records With National IDs, Salaries, Credit Scores, and Employer Details
Dark Web Informer
CVE-2025-50286
2 months 3 weeks ago
Currently trending CVE - Hype Score: 8 - A Remote Code Execution (RCE) vulnerability in Grav CMS v1.7.48 allows an authenticated admin to upload a malicious plugin via the /admin/tools/direct-install interface. Once uploaded, the plugin is automatically extracted and loaded, allowing arbitrary PHP code execution and ...
CVE-2026-28289
2 months 3 weeks ago
Currently trending CVE - Hype Score: 8 - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. A patch bypass vulnerability for CVE-2026-27636 in FreeScout 1.8.206 and earlier allows any authenticated user with file upload permissions to achieve Remote Code Execution (RCE) on the server by ...
CVE-2025-20741
2 months 3 weeks ago
Currently trending CVE - Hype Score: 20 - In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00434422; ...
CVE-2025-70951
2 months 3 weeks ago
Currently trending CVE - Hype Score: 1
CISA orders feds to patch exploited Fortinet EMS flaw by Friday
2 months 3 weeks ago
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to secure FortiClient Enterprise Management Server (EMS) instances against an actively exploited vulnerability by Friday. [...]
Sergiu Gatlan
Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations
2 months 3 weeks ago
The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize recently disclosed vulnerabilities to obtain initial access, exfiltrate data, and deploy Medusa ransomware.
The post Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations appeared first on Microsoft Security Blog.
Microsoft Threat Intelligence
Купил билет в Лувр — и попал в базу данных хакеров. Добро пожаловать в эпоху культурного туризма
2 months 3 weeks ago
Захватили Vivaticket, украли данные миллионов посетителей — теперь требуют выкуп.
SecWiki News 2026-04-06 Review
2 months 3 weeks ago
今日暂未更新资讯~
更多最新文章,请访问SecWiki
更多最新文章,请访问SecWiki
eCapture v2 来了,AI Agent 写了 90% 的代码
2 months 3 weeks ago
eCapture v2 完成了整个内部架构重建——8 个 Probe 全部标准化重写,`user/` 目录彻底删除,E2E 测试覆盖 72+ 场景。更值得一说的是:v2 系列 90% 的代码由 GitHub Copilot AI Agent 完成,笔者主要负责写需求和审 PR。这是一次 AI 真正深度参与开源项目的真实实验。
CFC4N
Танки вместо паролей. Армия США решила сыграть в опасную игру с хакерами из Ирана.
2 months 3 weeks ago
Специалисты опасаются снижения уровня защиты армии США из-за новых правил подготовки.
Automated Credential Harvesting Campaign Exploits React2Shell Flaw
2 months 3 weeks ago
An emerging threat cluster tracked as UAT-10608 is exploiting vulnerable Web-exposed Next.js apps and using an automated tool to exfiltrate credentials, secrets, and other system data.
Elizabeth Montalbano
德国公开俄罗斯勒索软件组织 REvil 头目的身份
2 months 3 weeks ago
德国公开了曾在早期运营俄罗斯勒索软件组织 GandCrab 和 REvil 的头目 UNKN 的身份。31 岁的 Daniil Maksimovich Shchukin 于 2019-2021 年间协助在德国实施了至少 130 起计算机破坏和勒索行动。德国称,Shchukin 以及另一名俄罗斯人——43 岁 Anatoly Sergeevitsch Kravchuk——一起勒索了近 200 万欧元,造成经济损失逾 3500 万欧元。德国联邦刑事警察局(BKA)称他领导的 GandCrab 和 REvil 首创了双重勒索——先向受害者收取赎金提供解锁的密钥,然后再收取一笔费用换取不公开被盗数据的承诺。GandCrab 在 2019 年成功勒索逾 20 亿美元后宣布解散,但随后就以 REvil 的名字再次亮相。
Trojanized PyPI AI Proxy Uses Stolen Claude Prompt to Exfiltrates Data
2 months 3 weeks ago
A malicious Python package has been discovered on PyPI that disguises itself as a privacy-focused AI inference tool while quietly stealing sensitive user data in the background. Named hermes-px, the package marketed itself as a “Secure AI Inference Proxy” that routes all AI requests through the Tor network to protect user anonymity. In reality, it hijacked […]
The post Trojanized PyPI AI Proxy Uses Stolen Claude Prompt to Exfiltrates Data appeared first on Cyber Security News.
Tushar Subhra Dutta