Aggregator

FunkSec’s FunkLocker: How AI Is Powering the Next Wave of Ransomware

不安全
8 months 2 weeks ago
文章分析了由FunkSec团伙开发的FunkLocker勒索软件,揭示其利用AI辅助生成代码的特点。该恶意软件通过终止进程、滥用系统工具禁用防御机制,并删除卷影副本以阻止恢复。其本地加密功能及重复使用的比特币钱包使解密成为可能。研究人员已开发出解密工具应对攻击。

Use of Generative AI in Scams

不安全
8 months 2 weeks ago
新报告探讨生成式AI在骗局中的作用及其对易受骗社区的影响。报告指出,AI增强型诈骗不仅涉及财务和技术犯罪,还利用社会漏洞,并需结合技术与社会解决方案来应对。经济和文化变化使人们更易受骗或成为骗子。

Hackers Exploit Milesight Routers to Send Phishing SMS to European Users

The Hackers News
8 months 2 weeks ago
Unknown threat actors are abusing Milesight industrial cellular routers to send SMS messages as part of a smishing campaign targeting users in European countries since at least February 2022. French cybersecurity company SEKOIA said the attackers are exploiting the cellular router's API to send malicious SMS messages containing phishing URLs, with the campaigns primarily targeting Sweden, Italy,
The Hacker News

2025 Cybersecurity Reality Check: Breaches Hidden, Attack Surfaces Growing, and AI Misperceptions Rising

The Hackers News
8 months 2 weeks ago
Bitdefender’s 2025 Cybersecurity Assessment Report paints a sobering picture of today’s cyber defense landscape: mounting pressure to remain silent after breaches, a gap between leadership and frontline teams, and a growing urgency to shrink the enterprise attack surface. The annual research combines insights from over 1,200 IT and security professionals across six countries, along with an
The Hacker News

CVE-2023-24607 | Qt up to 5.15.12/6.2.7/6.4.2 SQL ODBC Driver Plugin denial of service (Nessus ID 266307)

Vuldb Updates
8 months 2 weeks ago
A vulnerability categorized as problematic has been discovered in Qt up to 5.15.12/6.2.7/6.4.2. This affects an unknown function of the component SQL ODBC Driver Plugin. The manipulation results in denial of service. This vulnerability is known as CVE-2023-24607. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-58066 | pendulum-project ntpd-rs up to 1.6.1 amplification (GHSA-4855-q42w-5vr4 / Nessus ID 266315)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in pendulum-project ntpd-rs up to 1.6.1. This vulnerability affects unknown code. This manipulation causes insufficient control of network message volume. This vulnerability appears as CVE-2025-58066. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.
vuldb.com

FunkSec’s FunkLocker: How AI Is Powering the Next Wave of Ransomware 

Anyrun
8 months 2 weeks ago

Editor’s note: The current article is authored by Mauro Eldritch, offensive security expert and threat intelligence analyst. You can find Mauro on X.  AI is part of our lives whether we like it or not. Even if you are not quite a fan, or not a user at all, you probably came across multiple AI-generated avatars, pictures, […]

The post FunkSec’s FunkLocker: How AI Is Powering the Next Wave of Ransomware  appeared first on ANY.RUN's Cybersecurity Blog.

Mauro Eldritch

New FlipSwitch Hooking Method Overcomes Linux Kernel Defenses

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
8 months 2 weeks ago

A novel rootkit hooking method dubbed FlipSwitch has emerged, circumventing the latest Linux 6.9 kernel dispatch safeguards and reigniting concerns over kernel-level compromise. By manipulating the machine code of the new syscall dispatcher rather than the deprecated sys_call_table, FlipSwitch restores the classic power of syscall hooking, enabling stealthy interception of critical system calls such as […]

The post New FlipSwitch Hooking Method Overcomes Linux Kernel Defenses appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

Managed ad