Aggregator

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 92

2 weeks 6 days ago

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Thirty-Six Malicious npm Strapi Packages Deploy Redis RCE, Database Theft, and Persistent C2 Malicious LNK Files Distributing a Python-Based Backdoor and Changes in Distribution Techniques (Kimsuky Group) Hackers Are Attempting to Turn ComfyUI Servers Into a […]

Pierluigi Paganini

第163篇：借助AI + Claude + Skills 构建 APK 自动化安全分析工作流

希潭实验室

2 weeks 6 days ago

19 Billion Passwords Leaked: Protect Yourself from Cyber Threats

Security Boulevard

2 weeks 6 days ago

Discover the implications of the 19 billion passwords leaked in the RockYou2024 breach. Learn essential actions to secure your accounts now!

The post 19 Billion Passwords Leaked: Protect Yourself from Cyber Threats appeared first on Security Boulevard.

MojoAuth Blog - Passwordless Authentication & Identity Solutions

Компании потратили миллионы на ИИ — а получили дорогой генератор чепухи. Snowflake знает почему

Securitylab.ru

2 weeks 6 days ago

Ваш ИИ-агент тупит. Не потому что плохой. Потому что вы не знаете, где у вас вообще лежат данные.

KRYBIT

Dark Feed IO

2 weeks 6 days ago

You must login to view this content

cohenido

FBI Atlanta and Indonesian National Police Take Down W3LLSTORE Phishing Marketplace

Hack Read

2 weeks 6 days ago

FBI Atlanta and Indonesian National Police dismantle W3LLSTORE phishing market linked to $20M fraud, seizing domains and detaining developer.

Waqas

CVE-2024-52012

CVE Trends

2 weeks 6 days ago

Currently trending CVE - Hype Score: 1 - Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API. Commonly known as a "zipslip", maliciously constructed ZIP files can use ...

【安全圈】欧洲铁路公司 Eurail 数据泄露，30 万人受影响

安全圈

2 weeks 6 days ago

关键词黑客欧洲铁路旅行公司Eurail正在通知超过30万人，其个人信息在2025年12月的数据泄露事件中被盗。

【安全圈】研究人员发现绕过 Apple Intelligence 安全机制的新方法

安全圈

2 weeks 6 days ago

关键词漏洞RSAC研究人员发现一种高成功率绕过苹果Apple Intelligence AI安全协议的方法。

【安全圈】知名电脑检测软件 CPU-Z、HWMonitor 被入侵！安装包被投毒开发者回应

安全圈

2 weeks 6 days ago

关键词恶意木马玩 PC 硬件的人，几乎没人不用 CPU-Z 和 HWMonitor。

Ваш пароль украли? Ну и ладно. Google придумала, как сделать похищенные куки браузера бесполезными

Securitylab.ru

2 weeks 6 days ago

Инфостилеры, теневые базы и чужие аккаунты. Как работала кража сессий и почему больше это не работает.

[AI安全论文] (49)JNCA24 网络威胁狩猎演化技术综述

娜璋AI安全之家

2 weeks 6 days ago

网络威胁情报狩猎综述，希望您喜欢！

Купили камеру для безопасности, а она «дудосит» Пентагон. Ирония эпохи интернета вещей

Securitylab.ru

2 weeks 6 days ago

Ваш умный дом стал послушным солдатом в чужих руках.

纪念我那跌宕起伏的2025，也是工作三年多的小结

Hurricane618(风之栖息地)

2 weeks 6 days ago

前言

没想到吧，等来的不是我的工作总结大论文，而是一篇小结（主要是没想到阿里的试用期压力真的大，各位看官 6.30 应该没问题的，先把饼子画上）。

hurricane618

Why Anthropic’s Mythos Is a Systemic Shift for Global Cybersecurity

Security Boulevard

2 weeks 6 days ago

With the release of Anthropic’s Project Glasswing and Claude Mythos, how should CISOs navigate the arrival of automated exploit chaining, collapsing patch cycles and the inevitable rise of adversarial AI?

The post Why Anthropic’s Mythos Is a Systemic Shift for Global Cybersecurity appeared first on Security Boulevard.

Lohrmann on Cybersecurity

Pàlcam Cybergames 2026

CTF Time

2 weeks 6 days ago

Name: Pàlcam Cybergames 2026 (an Pàlcam CyberGames event.)
Date: April 10, 2026, 10 a.m. — 11 April 2026, 23:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://palcamcg2026.soterctf.com/
Rating weight: 0
Event organizers: Pàlcam ASIX

Cybersplash 2026

CTF Time

2 weeks 6 days ago

Name: Cybersplash 2026 (an SECPlayground CTF event.)
Date: April 11, 2026, 2 a.m. — 12 April 2026, 02:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://lobby-ctf.secplayground.com/lobby/8c09ae30-a668-448b-b6dc-b777b1e62521
Rating weight: 0.00
Event organizers: SECPlayground

KAALCHAKRA CTF Finals

CTF Time

2 weeks 6 days ago

Name: KAALCHAKRA CTF Finals (an KAALCHAKRA CTF event.)
Date: April 11, 2026, 4:30 a.m. — 11 April 2026, 11:30 UTC [add to calendar]
Format: Jeopardy
On-site
Location: National Forensic Sciences University, Goa Campus
Offical URL: https://kaalchakractf.com/
Rating weight: 0.00
Event organizers: TH3_RANG3RS

Хакеры взломали CPUID и подменили ссылки на загрузку CPU-Z и HWMonitor

Securitylab.ru

2 weeks 6 days ago

Вместо привычных CPU-Z и HWMonitor пользователи получали пакеты с вредоносной DLL и удалённым доступом.

INC

Dark Feed IO

2 weeks 6 days ago

You must login to view this content

cohenido

Aggregator

Managed ad