Aggregator

美国特勤局在纽约查获300台SIM服务器及10万张SIM卡，用于短信诈骗和网络钓鱼。这些设备由中国的犯罪服务集团通过Telegram推广销售，价格低廉且易于获取。 SIM卡供应充足，部分来自专门的社交媒体群组。此外，Telegram创始人提供匿名eSIM服务以支持此类活动。

FightFraudCon2025议题解读

当前环境出现异常，需完成验证后方可继续访问。

当前环境出现异常，需完成验证后才能继续访问。

Singapore, Singapore, 29th September 2025, CyberNewsWire

文章介绍了Linux系统中隐藏文件的特点及其与Windows的区别，解释了以点开头的文件为何隐藏，并提到通过特殊命令可显示这些文件，同时指出每个目录包含当前和父目录的条目。

Cyberattackers are using generative AI to draft polished spam, create malicious code and write persuasive phishing lures. They are also learning how to turn AI systems themselves into points of compromise. Recent findings highlight this shift. Researchers from Columbia University and the University of Chicago studied malicious email traffic collected over three years. Barracuda Research has also tracked attackers exploiting weaknesses in AI assistants and tampering with AI-driven security tools. AI in email-based attacks Messages … More →

The post How attackers poison AI tools and defenses appeared first on Help Net Security.

ThreatBook ATI是一款全球高级威胁情报解决方案，专注于亚太地区网络安全威胁检测与响应。每天分析140亿次攻击记录，提供高精度情报和本地化视角，助力组织提升安全能力。

Singapore, Singapore, 29th September 2025, CyberNewsWire

The post ThreatBook Launches Best-of-Breed Advanced Threat Intelligence Solution appeared first on Security Boulevard.

快速浏览！2025.9.22—9.28安全动态回顾。

FileFix是ClickFix攻击家族的新变种，这类攻击均通过社会工程学手段，欺骗用户将恶意命令粘贴到操作系统对话框中，谎称这些命令是解决问题的“修复方案”。

キヤノン製のプロダクション/オフィス/スモールオフィス向け複合機およびレーザービームプリンターの一部のプリンタドライバには、複数の脆弱性が存在します。

当前环境异常，需完成验证后才能继续访问。

当前环境异常需完成验证后方可继续访问。点击去验证按钮进行操作。

浏览器不支持音频元素导致无法播放音频内容,提示信息由SpeedVoice呈现。

A vulnerability was found in ABB Terra AC Wallbox up to 1.8.33. It has been rated as critical. Impacted is an unknown function. This manipulation causes heap-based buffer overflow. This vulnerability is handled as CVE-2025-10504. It is possible to launch the attack on the local host. There is not any exploit available.

A vulnerability was found in Canon Generic Plus PCL6 Printer Driver, Generic Plus UFR II Printer Driver, Generic Plus LIPS4 Printer Driver, Generic Plus LIPSLX Printer Driver and Generic Plus PS Printer Driver. It has been declared as problematic. This issue affects some unknown processing. The manipulation results in incorrect behavior order. This vulnerability is known as CVE-2025-9904. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Canon Generic Plus PCL6 Printer Driver, Generic Plus UFR II Printer Driver, Generic Plus LIPS4 Printer Driver, Generic Plus LIPSLX Printer Driver and Generic Plus PS Printer Driver. It has been classified as critical. This vulnerability affects unknown code. The manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2025-9903. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Canon Generic Plus PCL6 Printer Driver, Generic Plus UFR II Printer Driver, Generic Plus LIPS4 Printer Driver, Generic Plus LIPSLX Printer Driver and Generic Plus PS Printer Driver and classified as problematic. This affects an unknown part. Executing manipulation can lead to out-of-bounds read. This vulnerability appears as CVE-2025-7698. The attack may be performed from remote. There is no available exploit.