Aggregator
Hackers Reap Minimal Gains from Massive npm Supply Chain Breach
On September 8th, 2025, at approximately 9AM EST, the npm ecosystem faced an acute supply chain attack. A threat actor leveraged social engineering techniques to compromise the account of well-known npm developer Qix, subsequently publishing malicious releases for several widely-used packages, most notably debug, chalk, and dozens of related dependencies. Within two hours of the […]
The post Hackers Reap Minimal Gains from Massive npm Supply Chain Breach appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
进程映像伪装常见手法
Submit #642812: DaveGamble/cJSON cJSON 1.5.0/1.7.18 Memory Corruption [Duplicate]
Submit #642716: opendcim 23.04 Cross Site Scripting [Accepted]
CVE-2025-10252 | SEAT Queue Ticket Kiosk up to 20250827 Java RMI Registry deserialization
How attackers weaponize communications networks
In this Help Net Security interview, Gregory Richardson, Vice President, Advisory CISO Worldwide, at BlackBerry, talks about the growing risks to communications networks. He explains why attackers focus on these networks and how their motivations range from corporate espionage to geopolitical influence. The discussion also covers practical ways to secure networks and maintain reliable communication. Which types of communications networks are most attractive to attackers, and what are the primary motivations driving these attacks, such … More →
The post How attackers weaponize communications networks appeared first on Help Net Security.
Ideco NGFW Novum: новый уровень сетевой безопасности
CVE-2025-10251 | FoxCMS up to 1.24 Images.php batchCope ids sql injection
Submit #642598: SEAT Queue Ticket Kiosk Java Application no version found Java RMI Registry Expose [Accepted]
CVE-2025-9910 | jsondiffpatch up to 0.7.1 HtmlFormatter::nodeBegin cross site scripting (SNYK-JS-JSONDIFFPATCH-10369031)
Submit #642476: 贵州黔狐科技股份有限公司 foxcms v1.24 SQL Injection [Accepted]
CVE-2025-10250 | DJI Mavic Spark/Mavic Air/Mavic Mini 01.00.0500 Telemetry Channel hard-coded key
独家 | 中央网信办副主任、国家网信办副主任王京涛:加快推进国家网络安全体系和能力现代化 以高水平安全保障高质量发展
«Он просто играл с ним, и он взорвался». Флагманский смартфон Xiaomi 13 вспыхнул во время просмотра видео.
SECUROTROP New Threat Actor
You must login to view this content
Submit #639757: DJI DJI Mavic Mini 01.00.0500 Cryptographic Issues [Accepted]
SECUROTROP
You must login to view this content
SECUROTROP
You must login to view this content
SECUROTROP
You must login to view this content