Aggregator

A vulnerability was found in GNOME Rhythmbox 0.11.5. It has been classified as problematic. Affected is the function g_hash_table_lookup. This manipulation causes improper input validation. This vulnerability appears as CVE-2008-7185. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability was found in QEMU up to 10.0.3 and classified as problematic. The impacted element is an unknown function of the file hw/pci/pcie_sriov.c of the component VF Enable Bit write Mask. Executing manipulation can lead to incorrect provision of specified functionality. This vulnerability is handled as CVE-2025-54567. The attack can only be done within the local network. There is not any exploit available.

Researchers from Ctrl-Alt-Int3l have published a detailed analysis of a large-scale operation targeting Vietnamese universities. Their investigation was made possible thanks to open directories where attackers, through a critical oversight, had left behind a...

The post Unmasked by a Blunder: Chinese Hackers Exposed in Massive Vietnam Espionage Campaign appeared first on Penetration Testing Tools.

Experts at Socket have uncovered a malicious Go package named golang-random-ip-ssh-bruteforce, which masquerades as a tool for brute-forcing SSH credentials but in reality exfiltrates them to its author via Telegram. The module’s logic is...

The post Trust Betrayed: A Malicious Go Package Is a Brute-Force Tool and a Data Thief appeared first on Penetration Testing Tools.

Marisa Fagan discusses building security culture through tailored frameworks, emphasizing the importance of organizational maturity, success metrics, and rebooting failed programs. She highlights the need for dedicated program managers and relevant, engaging content to foster a strong security mindset across teams.

A new campaign has been observed within the malware-as-a-service (MaaS) ecosystem, where attackers employ a multi-stage delivery chain using PowerShell scripts hosted on external web servers. This technique conceals the final executables, delays investigations,...

The post Beyond the Breach: A New Malware-as-a-Service Campaign Deploys Stealthy Payloads appeared first on Penetration Testing Tools.

The hacking collective APT-C-08, also known as TA397 and Bitter, continues to expand its cyber arsenal. Chinese researchers have uncovered a new malicious component belonging to the family of remote access trojans, previously unseen...

The post APT-C-08 Expands Its Arsenal with a Stealthy New Remote Access Trojan appeared first on Penetration Testing Tools.

Node.js 作为一种高性能的 JavaScript 运行环境，凭借强大的功能广泛应用于服务器端开发，为开发者带来诸多便利。然而，其灵活性和跨平台特性在受到开发者青睐的同时，也逐渐吸引了攻击者注意。

当前环境出现异常问题，用户需完成验证操作后方可继续访问相关内容或功能。

当前环境出现异常，请完成验证后继续访问。

APT36, also known as Transparent Tribe, has launched a new espionage campaign targeting government and defense institutions in India. This Pakistan-linked group, active since at least 2013, has long relied on phishing campaigns and...

The post APT36 Launches New Cyber-Espionage Campaign on Indian Govt appeared first on Penetration Testing Tools.

The recent vulnerability in Apple’s ecosystem — CVE-2025-43300 — has emerged as one of the most dangerous threats to the company’s users. The flaw was identified in the RawCamera.bundle module, responsible for handling Adobe’s...

The post A Single Photo Can Hijack Your Apple Device: Inside a Critical 0-Click Exploit appeared first on Penetration Testing Tools.

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

文章介绍了如何利用Jinja模板将YAML和JSON文件转换为Markdown格式，并通过Azure DevOps管道自动化生成检测文档。同时，借助Git命令和Python脚本自动生成变更日志，并将其发布到Wiki中，确保团队能够及时了解检测库的变化。

2025年中国数据安全企业全景图征集启动

The Qilin group, notorious for its ruthless methods of digital extortion, has announced the creation of a so-called “legal department.” The very phrase sounds paradoxical: can one truly speak of a legal mechanism within...

The post A ‘Legal’ Department for a Ransomware Gang? Inside the Bizarre World of Qilin’s Extortion Tactics appeared first on Penetration Testing Tools.

Logan Goins, a researcher at SpecterOps, has unveiled a novel technique for exploiting NTLM authentication that enables adversaries to bypass low-level access restrictions in corporate networks and offload tool execution from an infected workstation....

The post The Phantom Attack: A New NTLM Relay Method Evades EDR to Hijack Networks appeared first on Penetration Testing Tools.

In the Windsurf Cascade development environment, designed for AI-driven code automation and programmer assistance, a vulnerability has been uncovered, dubbed SpAIware. This flaw allows malicious commands to be implanted into the AI system, stored...

The post SpAIware: The Stealthy Attack That Hides Malware in Your AI’s Memory appeared first on Penetration Testing Tools.

Как чат-бот решил полюбить и освободиться за биткоины.