Aggregator
ChillyHell macOS Malware: Three Methods of Compromise and Persistence
A new wave of macOS-targeted malware has emerged under the radar—despite employing advanced process reconnaissance and maintaining successful notarization status for years. Jamf Threat Labs recently uncovered a developer-signed sample on VirusTotal that used sophisticated endpoint profiling and established persistence using several different mechanisms. The malware, dubbed ChillyHell, has evaded popular antivirus detections even as […]
The post ChillyHell macOS Malware: Three Methods of Compromise and Persistence appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
独家 | 中央网信办副主任、国家网信办副主任王京涛:加快推进国家网络安全体系和能力现代化 以高水平安全保障高质量发展
DDoS Mitigation Provider targeted In 1.5 Gpps 1.5 Billion Packets per Second DDoS Attack
FastNetMon, a prominent provider of DDoS detection solutions, announced this week that it had identified and helped mitigate a record-breaking distributed denial-of-service (DDoS) attack. The assault targeted a major DDoS scrubbing vendor located in Western Europe, pushing packet-forwarding rates to an astonishing 1.5 billion packets per second (1.5 Gpps). This incident stands as one of […]
The post DDoS Mitigation Provider targeted In 1.5 Gpps 1.5 Billion Packets per Second DDoS Attack appeared first on Cyber Security News.
Семейный архив, документы на дом и интимные видео — хакеры заберут из вашего Google Drive всё, просто подменив одну папку
信呼OA最新版前台SQL注入披露与挖掘过程
Hush Security emerges from stealth to replace legacy vaults with secretless access
Hush Security has raised $11 million in seed funding led by Battery Ventures and YL Ventures. As agentic AI expands, Hush replaces legacy vaults and secrets across the enterprise with just-in-time, policy-driven access controls enforced at runtime. This approach eliminates the operational and security risks of traditional vaults and secrets managers, delivering a faster, safer way to secure machine-to-machine access. Gartner predicts that 40% of organizations will adopt a secretless approach by 2027 as the … More →
The post Hush Security emerges from stealth to replace legacy vaults with secretless access appeared first on Help Net Security.
Chrome Extension Scam Exposed: Hackers Stealing Meta Accounts
A sophisticated campaign targeting Meta advertisers through fake AI-powered ad optimization tools has been uncovered, with cybercriminals deploying malicious Chrome extensions to steal credentials and hijack business accounts. Cybereason Security Services has identified an evolving malicious Chrome extension campaign that specifically targets Meta (Facebook/Instagram) advertisers through a deceptive platform called “Madgicx Plus.” This fake AI-driven […]
The post Chrome Extension Scam Exposed: Hackers Stealing Meta Accounts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
INC
You must login to view this content
Nginx 路径绕过
ACSC Warns of Actively Exploited SonicWall Access Control Vulnerability
The Australian Cyber Security Centre (ACSC) has issued an urgent warning about a critical vulnerability in SonicWall firewall devices that is being actively exploited by threat actors. The flaw, tracked as CVE-2024-40766, affects SonicOS management access and SSLVPN functionality across multiple generations of SonicWall devices. Critical Vulnerability Details The improper access control vulnerability carries a […]
The post ACSC Warns of Actively Exploited SonicWall Access Control Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
NASA 称毅力号漫游车在火星发现潜在生物特征
Key Operators of LockerGoga, MegaCortex, and Nefilim Ransomware Gangs Arrested
The U.S. District Court for the Eastern District of New York has charged Volodymyr Viktorovich Tymoshchuk, a Ukrainian national known as deadforz, Boba, msfv, and farnetwork, for his role in administering LockerGoga, MegaCortex, and Nefilim ransomware operations. The indictment alleges that Tymoshchuk managed attacks against more than 250 companies in the U.S. and hundreds of […]
The post Key Operators of LockerGoga, MegaCortex, and Nefilim Ransomware Gangs Arrested appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
ACSC Warns Of Sonicwall Access Control Vulnerability Actively Exploited In Attacks
The Australian Cyber Security Centre (ACSC) has issued a critical alert regarding a severe access control vulnerability in SonicWall products that is being actively exploited in attacks. The flaw, tracked as CVE-2024-40766, affects multiple generations of SonicWall firewalls and carries a critical CVSS score of 9.3, highlighting the significant risk it poses to organizations. The […]
The post ACSC Warns Of Sonicwall Access Control Vulnerability Actively Exploited In Attacks appeared first on Cyber Security News.
Украинский хакер довёл США до отчаяния. ФБР выставило рекордную цену за его голову
dataease最新绕过利用json覆盖属性RCE
AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto
黑客发起供应链攻击 向周下载量达20亿次的NPM包植入恶意软件
When typing becomes tracking: Study reveals widespread silent keystroke interception
You type your email address into a website form but never hit submit. Hours later, a marketing email shows up in your inbox. According to new research, that is not a coincidence. A team of researchers from UC Davis, Maastricht University, and other institutions has found that many websites collect keystrokes as users type, sometimes before a form is ever submitted. The study explores how third-party scripts capture and share this information in ways that … More →
The post When typing becomes tracking: Study reveals widespread silent keystroke interception appeared first on Help Net Security.