Aggregator

A vulnerability was found in Eveo URVE Web Manager 27.02.2025. It has been rated as critical. Affected by this issue is some unknown functionality of the file /_internal/redirect.php of the component Endpoint. The manipulation leads to server-side request forgery. This vulnerability is handled as CVE-2025-36845. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Eveo URVE Web Manager 27.02.2025. It has been declared as critical. Affected by this vulnerability is the function shell_exec of the file /_internal/pc/vpro.php of the component Endpoint. The manipulation leads to os command injection. This vulnerability is known as CVE-2025-36846. The attack needs to be initiated within the local network. There is no exploit available.

A vulnerability was found in PHProxy up to 1.1.1. It has been classified as critical. Affected is an unknown function of the component URL Handler. The manipulation of the argument _proxurl leads to server-side request forgery. This vulnerability is traded as CVE-2025-52362. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in IBM Cognos Analytics Mobile up to 1.1.22 on iOS and classified as problematic. This issue affects some unknown processing. The manipulation leads to inadequate encryption strength. The identification of this vulnerability is CVE-2025-36106. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Traditional security testing tools can’t keep pace with modern threats—or prove which vulnerabilities truly matter. Discover how Adversarial Exposure Validation (AEV) bridges the gap by continuously simulating real-world attacks to reveal exploitable exposures, prioritize risk, and empower smarter security decisions. Learn why AEV is the missing link in your CTEM strategy and how BreachLock is leading the way.

Tom Leighton of Akamai Wants to End Cloud Bloat and Secure AI From Inside Out
The cloud was meant to be cheaper, but it's not. A bold new vision is emerging: one that slashes costs, decentralizes AI and secures APIs at the edge. From inference to firewalls, a reimagined internet is challenging hyperscaler dominance.

Attackers Modify File-Transfer Server Software to Display Patched Version Number
Managed file-transfer software developer CrushFTP said a zero-day vulnerability in its tool's web interface is being actively exploited to gain admin-level access to servers. The company urged immediate updating, saying all versions of its software released since July 1 are patched.

Leaders of the Russian Military Intelligence Units of the GRU Also Targeted
The U.K. government on Friday sanctioned three Russian Military Intelligence Service units 29155, 26165 and 74455 in the United Kingdom and Ukraine. The sanctions also targeted 18 Russian officials for their role in GRU cyber operations dating back to 2013.

Seqrite Labs APT-Team has uncovered a persistent threat entity, UNG0002 (Unknown Group 0002), orchestrating espionage-driven operations across Asian jurisdictions, including China, Hong Kong, and Pakistan. Active since at least May 2024, this South-East Asia-based cluster has demonstrated a high degree of adaptability and technical prowess, targeting critical sectors such as defense, civil aviation, electrotechnical engineering, […]

The post UNG0002 Deploys Weaponized LNK Files with Cobalt Strike and Metasploit to Target Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A red teamer is publishing research next month about how weaknesses in modern security products lay the groundwork for stealthy implants in AI-powered applications.

As the state responded to a pro-Iranian attack, officials tell CyberScoop that it avoided reaching out to the federal agency, partly because it has been “politicized and weakened” under the president.

The post After website hack, Arizona election officials unload on Trump’s CISA appeared first on CyberScoop.

The popular file transfer company CrushFTP has discovered a previously unknown vulnerability being exploited by hackers.

A new wave of cyber-attacks has emerged, exploiting Windows shortcut files (.LNK) combined with legitimate system utilities collectively known as Living-off-the-Land Binaries and Scripts (LOLBin/S) to deliver the DeerStealer infostealer through highly obfuscated multi-stage chains. Recent campaigns begin with phishing emails or fraudulent file shares containing weaponized .LNK files camouflaged as seemingly benign documents, often […]

The post DeerStealer Malware Spread Through Weaponized .LNK and LOLBin Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Новое исследование предлагает реалистичную модель для космических условий.

Threat actors have leveraged a phishing campaign targeting npm package maintainers, resulting in the compromise of widely used JavaScript tooling libraries. The campaign, first reported on July 18, 2025, utilizes a typosquatted domain, npnjs.com, to mimic legitimate npm communications and trick developers into surrendering their authentication tokens. This multi-stage operation begins with automated emails scraped […]

The post Threat Actors Compromise Popular npm Packages to Steal Maintainers’ Tokens appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability, which was classified as problematic, was found in LedgerSMB. Affected is an unknown function. The manipulation leads to clickjacking. This vulnerability is traded as CVE-2021-3731. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in LedgerSMB. It has been rated as problematic. Affected by this issue is some unknown functionality of the component URL Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2021-3693. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in LedgerSMB. This affects an unknown part of the component Error Message Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2021-3694. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

An developer recently came across a highly advanced phishing email that spoofs the [email protected] address in order to impersonate npm, the Node.js package registry. The email directed recipients to a malicious link on npnjs.com, a domain cleverly typosquatted to mimic npmjs.com by swapping ‘m’ for ‘n’. This fake site hosted a complete clone or proxy […]

The post Beware of npm Phishing Emails Targeting Developer Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.