Aggregator
Jaguar Land Rover Halts Operations Longer Due to Cyberattack Impact
Jaguar Land Rover’s UK factories will remain closed until at least Wednesday as the company continues to recover from a cyberattack that struck its systems on 31 August. The carmaker shut down its IT networks in response to the breach, halting production at its Halewood and Solihull plants, Wolverhampton engine facility, and sites in Slovakia, […]
The post Jaguar Land Rover Halts Operations Longer Due to Cyberattack Impact appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Сверхбыстрый интернет, квантовые компьютеры и новые методы меддиагностики - одно открытие объединило будущее этих технологий
New Exploitation Method Discovered for Linux Kernel Use-After-Free Vulnerability
A new exploitation method has been discovered for the Linux kernel use-after-free (UAF) vulnerability tracked as CVE-2024-50264. The vulnerability was awarded the Pwnie Award 2025 for Best Privilege Escalation due to its complexity and impact on major Linux distributions. Researchers developed innovative techniques to bypass kernel slab allocator and race condition protections, making exploitation much more feasible than […]
The post New Exploitation Method Discovered for Linux Kernel Use-After-Free Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
如何有效防范网络钓鱼攻击
Signal adds secure backup option for chat history
Losing a phone can mean losing years of conversations. Signal is rolling out a new secure backup feature to help users keep their messages safe without giving up privacy. The problem with lost chats Signal has long avoided cloud backups because they create privacy risks. Storing chats on a company’s servers can expose personal data if that service is hacked or pressured by governments. Until now, Signal only allowed local backups stored on a user’s … More →
The post Signal adds secure backup option for chat history appeared first on Help Net Security.
CVE-2025-57785 | Hiawatha up to 11.7 XSLT show_index double free
CVE-2025-57784 | Hiawatha up to 11.7 Tomahawk handle_admin improper authentication
CVE-2025-57783 | Hiawatha up to 11.7 fetch_request request smuggling
Link11 European Cyber Report: DDoS attacks reach record levels in the first half of 2025
Link11 European Cyber Report: DDoS attacks reach record levels in the first half of 2025 – 225% more documented DDoS attacks and new attack tactics threaten critical infrastructure: 438 terabytes of attack volume – equivalent to over 7 years of Netflix streaming in 4K Increasingly precise Layer 7 attacks that mimic legitimate traffic Politically motivated […]
The post Link11 European Cyber Report: DDoS attacks reach record levels in the first half of 2025 appeared first on Link11.
CVE-2025-29824 在野 0day 漏洞利用样本研究
Dynatrace Data Breach Exposes Customer Information Stored in Salesforce
Dynatrace has confirmed that customer data stored in Salesforce was exposed following a third-party breach involving Salesloft’s Drift application. The incident, which occurred in August 2025, allowed unauthorized access to Salesforce CRM data across multiple companies. Both Salesloft and Salesforce responded by disabling the compromised integrations and notifying affected customers. Incident Overview The breach stemmed […]
The post Dynatrace Data Breach Exposes Customer Information Stored in Salesforce appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
CVE-2025-49461 | Zoom Workplace Desktop up to 6.4.x cross site scripting
CVE-2025-58131 | Zoom Workplace VDI Plugin prior 6.4.10 on macOS Universal Installer for VMware Horizon race condition
CVE-2025-49459 | Zoom Workplace up to 6.4.x on Windows authorization
CVE-2025-49460 | Zoom Workplace Desktop up to 6.4.x argument injection
CVE-2025-58134 | Zoom Workplace Desktop up to 6.4.x on Windows improper authorization
CVE-2025-58135 | Zoom Workplace Desktop up to 6.4.x on Windows information disclosure
CVE-2025-49458 | Zoom Workplace up to 6.4.x buffer overflow
Windows Defender Vulnerability Lets Hackers Hijack and Disable Services Using Symbolic Links
A newly demonstrated attack technique has revealed a flaw in how Windows Defender manages its update and execution mechanism. By exploiting symbolic links, attackers can hijack Defender’s service folders, gain full control over its executables, and even disable the antivirus entirely. How the Exploit Works Windows Defender stores its executables inside versioned folders under ProgramData\Microsoft\Windows Defender\Platform. […]
The post Windows Defender Vulnerability Lets Hackers Hijack and Disable Services Using Symbolic Links appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.