Aggregator

MySQL 索引核心知识点总结 一、索引基本概念 二、索引类型 三、索引的优缺点 四、索引底层结构（B+树） […]

Android March 2025 security update addresses over 40 vulnerabilities, including two flaws actively exploited in attacks in the wild. Android March 2025 security update addressed over 40 vulnerabilities, including two flaws, respectively tracked as CVE-2024-43093 and CVE-2024-50302, which are actively exploited in attacks in the wild. “There are indications that the following may be under […]

Broadcom warned customers today about three VMware zero-days, tagged as exploited in attacks and reported by the Microsoft Threat Intelligence Center. [...]

Multinational engineering and technology services firm Tata Technologies has reportedly fallen victim to a significant cyberattack claimed by the ransomware group Hunters International. According to recent social media reports, the breach allegedly resulted in the theft of 1.4 terabytes of sensitive data, raising concerns about potential industrial espionage and operational disruptions for high-profile clients such […]

The post Hunters International Claims Tata Technologies Cyberattack appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

学习吉埃替（Git），拳打马化腾，脚踩史玉柱

学习吉埃替（Git），拳打马化腾，脚踩史玉柱

U.S. law enforcement announced the recovery of $31 million in cryptocurrency tied to the 2021 Uranium Finance exploit, marking one of the largest DeFi-related asset seizures.  The operation, spearheaded by the Southern District of New York (SDNY) and Homeland Security Investigations (HSI), culminated nearly four years after attackers drained $50 million from the Binance Smart […]

The post U.S. Seizes $31 Million Funds Drained from Crypto Exchange appeared first on Cyber Security News.

A vulnerability was found in Docusnap 13.0.1440.24261. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to use of default cryptographic key. This vulnerability is known as CVE-2025-26849. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

The exponential growth of government data requests to technology giants has transformed Silicon Valley into the backbone of modern surveillance infrastructure. Between 2014 and 2024, Apple, Google, and Meta collectively disclosed data from 3.16 million user accounts to U.S. authorities, representing a 530–675% surge in compliance rates. This escalation correlates with the explosive growth of […]

The post Google, Meta and Apple Fuel the World’s Largest Surveillance Machine appeared first on Cyber Security News.

台积电计划向追加投资美国千亿美元。台积电此前一直在推进在美国西部亚利桑那州设立 3 座尖端工厂的计划。台积电表示，现有工厂的投资总额达到 650 亿美元。如果追加 1000 亿美元，对美国的总投资将增加到 1650 亿美元。台积电将再新建3座半导体工厂。还将设立两个承担“尖端封装”工序的设施和研发(R&D)基地。预计在未来 4 年内，在建筑相关领域创造 4 万个工作岗位，在研发等高级人才方面创造数万个工作岗位。

U.S. authorities announced the seizure of $31 million tied to the 2021 Uranium Finance decentralized finance (DeFi) exploits. The coordinated effort between the U.S. Attorney’s Office for the Southern District of New York (SDNY) and Homeland Security Investigations (HSI) San Diego, aided by blockchain intelligence firm TRM Labs, represents one of the largest recoveries in […]

The post Authorities Seize $31 Million Linked to Crypto Exchange Hack appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Nisos has found six personas leveraging new and existing GitHub accounts to get developer jobs in Japan and the US

Researchers from Splunk have identified a sophisticated malware campaign targeting over 4,000 Internet Service Providers (ISPs) primarily located on the West Coast of the United States and in China. The campaign, which originated from Eastern Europe, uses a combination of credential brute force attacks and stealthy malware to establish persistent access while mining cryptocurrency and […]

The post Hackers Attacking 4000+ ISPs With New Malware for Remote Access appeared first on Cyber Security News.

Imagine a government that tracks your daily movements, monitors your communications, and catalogs your digital habits. While this conjures images of authoritarian regimes, a parallel reality exists in the United States, where law enforcement agencies leverage the vast data reservoirs of Big Tech companies to construct intrusive profiles of citizens. Over the past decade, Google, […]

The post Google, Meta, and Apple Power the World’s Biggest Surveillance System appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical information disclosure vulnerability in Docusnap, a widely used IT inventory management solution, allows attackers to decrypt sensitive system data collected from Windows hosts.  Designated as CVE-2025-26849, the flaw stems from the use of a static encryption key to protect inventory files, rendering the encryption effectively useless.  These files, intended to securely catalog installed […]

The post Docusnap for Windows Vulnerability Let Attackers Access Sensitive Data appeared first on Cyber Security News.

A vulnerability was found in VMware ESXi, Cloud Foundation, Telco Cloud Platform and Telco Cloud Infrastructure. It has been classified as critical. Affected is an unknown function of the component VMX Process. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2025-22225. Attacking locally is a requirement. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

新闻速览 •TikTok和Reddit等社交平台在英国受调查，涉嫌侵犯儿童隐私 •CISA漏洞目录竟成勒索攻击 […]

A vulnerability was found in VMware ESXi, Workstation, Cloud Foundation, Telco Cloud Platform and Telco Cloud Infrastructure and classified as critical. This issue affects some unknown processing of the component VMX Process. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2025-22224. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in VMware ESXi, Workstation, Fusion, Cloud Foundation, Telco Cloud Platform and Telco Cloud Infrastructure and classified as problematic. This vulnerability affects unknown code of the component HGFS. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-22226. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in gn_themes WP Shortcodes Plugin up to 7.3.3 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-0370. It is possible to initiate the attack remotely. There is no exploit available.