Aggregator

Cloudflare’s latest DDoS Threat Report for the second quarter of 2025 reveals that the company autonomously mitigated the largest-ever recorded distributed denial-of-service (DDoS) attacks, peaking at an unprecedented 7.3 terabits per second (Tbps) and 4.8 billion packets per second (Bpps). These hyper-volumetric assaults, which surged dramatically, underscore the relentless evolution of attack vectors targeting critical […]

The post Massive DDoS Attack Slams Internet with 7.3 Tbps and 4.8 Billion Packets Per Second appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

文章推荐了2024年十三张值得聆听的华语乐坛好专辑，涵盖独立与主流音乐人作品，展现了多样化的音乐风格与创作才华。

CyCognito research finds that a third of education sector APIs, web apps and cloud assets are exposed to attack

当前环境出现异常，需完成验证后方可继续访问。

安全筑基金融信任，合规保障科技落地。

A vulnerability was suspected in libsoup. This issue was flagged as a false-positive. Please consult the sources mentioned and consider not using this entry at all.

A vulnerability was found in RVC-Boss GPT-SoVITS up to 20250228v3. It has been rated as critical. This issue affects the function open_slice of the file webui.py. The manipulation leads to command injection. The identification of this vulnerability is CVE-2025-49833. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical has been found in RVC-Boss GPT-SoVITS up to 20250228v3. Affected is the function open_denoise of the file webui.py. The manipulation leads to command injection. This vulnerability is traded as CVE-2025-49834. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as critical was found in RVC-Boss GPT-SoVITS up to 20250228v3. Affected by this vulnerability is the function open_asr of the file webui.py. The manipulation leads to command injection. This vulnerability is known as CVE-2025-49835. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in RVC-Boss GPT-SoVITS up to 20250228v3. Affected by this issue is the function uvr of the file bsroformer.py. The manipulation of the argument model_choose leads to deserialization. This vulnerability is handled as CVE-2025-49839. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in RVC-Boss GPT-SoVITS up to 20250228v3. This affects the function change_label of the file webui.py. The manipulation leads to command injection. This vulnerability is uniquely identified as CVE-2025-49836. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability has been found in RVC-Boss GPT-SoVITS up to 20250228v3 and classified as critical. This vulnerability affects the function uvr of the file vr.py. The manipulation of the argument model_choose leads to deserialization. This vulnerability was named CVE-2025-49837. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in RVC-Boss GPT-SoVITS up to 20250228v3 and classified as critical. This issue affects the function uvr of the file vr.py. The manipulation of the argument model_choose leads to deserialization. The identification of this vulnerability is CVE-2025-49838. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in RVC-Boss GPT-SoVITS up to 20250228v3. It has been declared as critical. Affected by this vulnerability is the function change_gpt_weights of the file inference_webui.py. The manipulation of the argument GPT_dropdown leads to deserialization. This vulnerability is known as CVE-2025-49840. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in RVC-Boss GPT-SoVITS up to 20250228v3. It has been rated as critical. Affected by this issue is the function load_sovits_new of the file process_ckpt.py. The manipulation of the argument SoVITS_dropdown leads to deserialization. This vulnerability is handled as CVE-2025-49841. The attack may be launched remotely. There is no exploit available.

欧盟《数据法案》旨在加强数据经济，促进公平竞争和创新市场，明确工业数据使用权并提升可访问性。该法案于2023年12月通过，2025年9月生效，要求企业确保设备生成的数据可访问、共享，并符合GDPR等规定。违规将面临高额罚款。企业需调整合同、政策和技术以确保合规。

当前环境出现异常，请完成验证后继续访问。

Google on Tuesday rolled out fixes for six security issues in its Chrome web browser, including one that it said has been exploited in the wild. The high-severity vulnerability in question is CVE-2025-6558 (CVSS score: 8.8), which has been described as an incorrect validation of untrusted input in the browser's ANGLE and GPU components. "Insufficient validation of untrusted input in ANGLE and

Social engineering attacks have entered a new era—and they’re coming fast, smart, and deeply personalized. It’s no longer just suspicious emails in your spam folder. Today’s attackers use generative AI, stolen branding assets, and deepfake tools to mimic your executives, hijack your social channels, and create convincing fakes of your website, emails, and even voice. They don’t just spoof—they

Cybersecurity researchers have discovered a new, sophisticated variant of a known Android malware referred to as Konfety that leverages the evil twin technique to enable ad fraud. The sneaky approach essentially involves a scenario wherein two variants of an application share the same package name: A benign "decoy" app that's hosted on the Google Play Store and its evil twin, which is