Aggregator

Operation Endgame seized around 50 domains and nearly 200 active IP-based servers associated with the infostealers

根据市场分析公司 Omdia 的数据，中国一季度 PC 出货量下滑 2%，平板电脑下滑 5%。PC 出货量降至 890 万台，平板电脑出货量降至 830 万台。笔记本电脑（含移动工作站）出货量同比下降 19%，而台式机（含台式工作站）出货量同比增长 41%，分别达到 530 万台和 360 万台。Omdia 称市场疲软的原因是组件成本上涨导致设备价格上涨，以及消费者补贴力度减弱。Omdia 预测 2026 年全年 PC 出货量将下降 14% 至 3600 万台，平板电脑出货量预计将下降 11% 至 3200 万台。最主要 PC 制造商包括联想、华为、苹果、软通动力和惠普。

Researchers warn GhostShell is using fake drone documents to target Ukrainian defence teams, stealing passwords and sensitive data in a new cyber campaign.

НИУ ВШЭ и Positive Technologies наградили проекты молодых учёных по оценке последствий кибератак.

The White House has issued a major executive order directing U.S. federal civilian agencies to migrate high‑value systems to post‑quantum cryptography (PQC), with firm deadlines of 2030 for key establishment and 2031 for digital signatures. The order, titled “Securing the Nation Against Advanced Cryptographic Attacks,” warns that large‑scale quantum computers could eventually break today’s widely […]

The post White House Orders Federal Agencies to Migrate Systems to Post-Quantum Cryptography appeared first on Cyber Security News.

A public proof-of-concept (PoC) exploit for the critical libssh2 remote code execution vulnerability tracked as CVE-2026-55200 is now available, significantly increasing the risk of real‑world attacks against unpatched systems. The flaw affects libssh2 versions up to and including 1.11.1 and resides in the ssh2_transport_read() function, which parses incoming SSH packets on the client side. The […]

The post PoC Exploit Released for libssh2 Remote Code Execution Vulnerability appeared first on Cyber Security News.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers actively exploiting flaws in Ubiquity UniFi OS and Lantronix serial-to-ethernet servers. [...]

Microsoft, Europol, and international partners have disrupted infrastructure used by the Amadey and StealC malware operations as part of Operation Endgame, which targets cybercriminal services and ransomware gangs. [...]

A newly identified attack campaign is using a sophisticated Browser-in-the-Browser (BitB) kit to trick users into downloading malware disguised as legitimate software installers. The technique combines convincing fake browser pop-ups with fabricated error messages to manipulate victims into taking actions they believe are routine and safe. The campaign marks a notable evolution in how phishing […]

The post Browser-in-the-Browser Kit Uses Fake Software Errors to Deliver Malware Installers appeared first on Cyber Security News.

A newly identified malware cluster known as GhostShell has been found actively targeting Ukraine’s drone operations and its broader defense supply chain. The campaign uses a sophisticated combination of techniques, including a mutual TLS implant and a Telegram-based dead-drop resolver, to quietly establish persistence inside targeted networks. The threat actor behind this operation has been […]

The post GhostShell Malware Uses mTLS Implant and Telegram Dead-Drop to Target Ukrainian Drone Operations appeared first on Cyber Security News.

Чем надёжнее защита, тем опаснее в ней ошибка...

A first-of-its-kind security analysis of 12 widely deployed agentic offensive-security tools reveals critical architectural flaws that allow adversaries to steal LLM API keys, establish persistent footholds, and achieve full host compromise even inside sandboxed containers. Security researchers from Cracken have published the first in-depth security analysis of agentic red-team systems, AI-powered tools designed to autonomously […]

The post Red-Team AI Tool Vulnerabilities Let Attackers Exfiltrate API Keys and Compromise Operators’ Systems appeared first on Cyber Security News.

Deutsche Bahn said a nationwide disruption of railway services was tied to a malfunction in its 2G-based GSM-R communications system.

Service desks have become a favored target for attackers seeking password resets, MFA changes, and access to corporate accounts. Specops Software breaks down how service desk social engineering attacks work and how organizations can defend against them. [...]

SentinelLabs found a North Korea-linked macOS backdoor using prompt injection on AI triage tools

StrikeShark атакует по всему миру, а кто за этим стоит — загадка.

2026 AWS 上海峰会观察

Frontier AI could drive a 10x surge in vulnerabilities. CTEM helps organizations continuously identify, prioritize, and reduce real cyber risk. Your vulnerability management program was not designed for what is coming next. More than 40,000 CVEs were reported in 2025, breaking yet another record. Today, security experts anticipate that frontier AI-powered systems could drive a […]

Злоумышленники взломали компанию и обнаружили, что внутри уже кто-то есть.