Aggregator

Microsoft researchers reported that North Korea-linked APT tracked as Moonstone Sleet has employed the Qilin ransomware in limited attacks. Microsoft observed a North Korea-linked APT group, tracked as Moonstone Sleet, deploying Qilin ransomware in limited attacks since February 2025. The APT group uses Qilin ransomware after previously using custom ransomware. “Moonstone Sleet has previously exclusively […]

A vulnerability was found in Beijing Zhide Intelligent Internet Technology Modern Farm Digital Integrated Management System 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to files or directories accessible. This vulnerability is traded as CVE-2025-2147. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling. Multiple endpoints are affected. The vendor was contacted early about this disclosure but did not respond in any way.

SimSpace launched Stack Optimizer, designed to help organizations evaluate, test, and optimize their security and IT infrastructure. By leveraging SimSpace’s realistic simulated environments, organizations can perform comprehensive security performance benchmarking, validate detection engineering strategies, optimize operational workflows, and validate compliance readiness—enhancing overall cyber resilience and IT efficiency. Redefining security & it performance optimization Stack Optimizer provides a real-world testing environment, allowing organizations to measure their security technologies against simulated threats and operational stress tests. This … More →

The post SimSpace Stack Optimizer allows organizations to measure their security technologies appeared first on Help Net Security.

A vulnerability has been found in Mozilla Thunderbird up to 60.7.0 and classified as problematic. Affected by this vulnerability is the function icaltimezone_get_vtimezone_properties of the component iCal Handler. The manipulation as part of Email Message leads to incorrect type conversion. This vulnerability is known as CVE-2019-11706. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Starting April 2025, Swiss critical infrastructure organizations will have to report cyber-attacks to the country’s authorities within 24 hours of discovery

A vulnerability, which was classified as problematic, was found in WP Simple Booking Calendar Plugin up to 2.0.10 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-8663. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Essential Addons for Elementor Plugin up to 6.0.3 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component Filterable Gallery Widget. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-8742. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Avada Plugin up to 3.11.9 on WordPress and classified as problematic. Affected by this vulnerability is the function fusion_button of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-5628. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in NinjaTeam Header Footer Custom Code Plugin up to 1.1 on WordPress. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-6493. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in NinjaTeam Header Footer Custom Code Plugin up to 1.1 on WordPress. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-6617. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A critical vulnerability identified as CVE-2024-12297 has been discovered in Moxa’s PT series of network switches, affecting multiple models across different product lines. This security flaw involves an authorization logic disclosure that can be exploited to bypass authentication mechanisms, allowing malicious actors to gain unauthorized access to sensitive configurations, potentially disrupting network services. The vulnerability, […]

The post Critical Vulnerabilities in Moxa Switches Enable Unauthorized Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as critical was found in Agileco AgileBill 1.4.92. This vulnerability affects unknown code of the file index.php. The manipulation of the argument id leads to sql injection. This vulnerability was named CVE-2005-3827. The attack can be initiated remotely. Furthermore, there is an exploit available.

14位代表聚焦AI安全和数据安全两大方向。

14位代表聚焦AI安全和数据安全两大方向。

A collaborative initiative involving Microsoft’s Digital Crimes Unit (DCU), Fortra, and the Health Information Sharing and Analysis Center (Health-ISAC) has reported a major drop in the use of unauthorized versions of the cyber tool Cobalt Strike by hackers. Since the partnership began in 2023, these organizations have worked tirelessly to combat the misuse of Cobalt […]

The post Cobalt Strike Exploitation by Hackers Drops, Report Reveals appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Эксперимент, заставивший IT-гигантов срочно латать свои браузеры.

The SEC is getting serious about cybersecurity. Recent regulations and high-profile cases signal a new era of accountability for publicly listed companies. But how do you prepare? How do you protect your business and stay on the right side of the regulations? The key lies in understanding and defining your cybersecurity risk appetite.

The post SEC Compliance Requirements: Why Your Risk Appetite Matters appeared first on Security Boulevard.