Aggregator

Exchange和M365原生防护在中文钓鱼和BEC诈骗等本地化攻击中表现不佳，仅能拦截12%的威胁。主要问题包括检测能力有限、难以适配中国企业需求及缺乏实时监控。CACTER邮件安全网关通过双引擎和本地化情报库提升拦截率至99.8%，支持自定义规则，并实时更新情报以应对新型威胁。提供30天免费试用。

XCSSET是一种针对苹果开发者的恶意软件，通过感染Xcode项目传播。其新变种利用HackBrowserData窃取更多浏览器数据，并改进了剪贴板劫持技术以窃取加密货币地址。微软警告该威胁可能扩散，并建议开发者保持系统更新和谨慎处理第三方项目。

本篇文章将介绍绿盟可信数据空间、可信连接器中的核心技术之一——可信计算。

Volumetric DDoS attacks typically follow a clear pattern: a brief buildup followed by a sudden peak, often within seconds. The target is flooded with traffic until the attackers exhaust their resources, or a mitigation system takes over. However, in the incident described below, a different scenario unfolded. Over the course of several hours, one actor […]

The post An attack in waves: An unusual DDoS incident under the microscope appeared first on Link11.

Olymp Loader, a newly emerged Malware-as-a-Service (MaaS) offering, has rapidly gained traction across underground forums and Telegram since its debut on June 5, 2025. Developed by a trio of seasoned Assembly coders under the alias “OLYMPO,” the loader boasts fully Assembly-based modules, advanced evasion techniques, and built-in stealer functionality—features that appeal to low- and mid-tier […]

The post New Olymp Loader Malware-as-a-Service Promises Defender Bypass with Auto Certificate Signing appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Преступники научились прятать вирусы там, где их никто не ждёт.

上周关注度较高的产品安全漏洞(20250922-20250928)

国家信息安全漏洞共享平台（以下简称CNVD）本周共收集、整理信息安全漏洞427个，其中高危漏洞168个、中危漏洞226个、低危漏洞33个。

守护AI创新：360大模型安全卫士保障中国—东盟博览会圆满成功

告别加班内耗，360AI企业知识库让你提前“锁死”假期自由

Akira ransomware attacks on SonicWall SSL VPN appliances are bypassing its MFA for rapid deployment

iPhone 17系列采用OLED面板，因PWM技术导致低光下频闪问题。苹果新增DC调光选项（“显示脉冲平滑”），可减少频闪但影响颜色准确性。该功能与“减少白点”互斥，并可能引发鬼影现象。

Alan warns that cybersecurity is stuck in a “Maginot Line” mindset — clinging to outdated tools while attackers weaponize AI, supply chain compromises, and polymorphic malware. He argues for AI-native defenses, real agentic automation, and stronger supply chain vetting to keep pace with modern threats.

The post The Security Maginot Line: Fighting Tomorrow’s Cyber Attacks With Yesterday’s Tech appeared first on Security Boulevard.

当前网络安全面临严峻挑战，传统防御工具已无法应对AI驱动的供应链攻击和多态恶意软件等新型威胁。文章指出行业需摒弃“Maginot mentality”，转而采用AI原生防御、加速智能部署并加强供应链安全审查以应对未来威胁。

The cybersecurity landscape experienced a significant escalation in September 2025, when Cisco disclosed multiple critical zero-day vulnerabilities affecting its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) platforms. At the center of this security crisis lies CVE-2025-20333, a devastating remote code execution vulnerability with a CVSS score of 9.9, which sophisticated state-sponsored threat actors […]

The post Lesson From Cisco ASA 0-Day RCE Vulnerability That Actively Exploited In The Wild appeared first on Cyber Security News.

A vulnerability labeled as critical has been found in pip up to 25.2 on Python. Affected is an unknown function of the component TAR Archive Handler. Executing manipulation can lead to symlink following. This vulnerability is registered as CVE-2025-8869. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.

A vulnerability, which was classified as critical, was found in axboe fio up to 3.41. This impacts the function __parse_jobs_ini of the file init.c. Executing manipulation can lead to use after free. This vulnerability is registered as CVE-2025-10824. The attack needs to be launched locally. Furthermore, an exploit is available.

A vulnerability was found in Linux Kernel up to 6.0.7. It has been rated as critical. The affected element is the function rose_send_frame of the component rose. This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2022-49916. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability classified as critical was found in tcpreplay 4.5.1. This affects the function do_checksum_math_liveplay of the file tcpliveplay.c of the component PCAP File Handler. The manipulation results in heap-based buffer overflow. This vulnerability was named CVE-2025-51005. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in tcpreplay 2.c. It has been declared as problematic. Affected by this vulnerability is the function dlt_linuxsll2_cleanup of the file plugins/dlt_linuxsll2/linuxsll2.c of the component TCPrewrite. Such manipulation leads to double free. This vulnerability is documented as CVE-2025-51006. The attack needs to be performed locally. There is not any exploit available.