网军“捡漏”:数据泄露如何助力国家级APT搭建C2基础设施
在网络威胁情报领域,高级持续性威胁(APT)常被定义为具备完整自主基础设施的威胁组织。
Aggregator
CyberVolk’s ransomware debut stumbles on cryptography weakness
2 days 3 hours ago
The pro-Russia hacktivist group CyberVolk launched a ransomware-as-a-service (RaaS) called VolkLocker that suffered from serious implementation flaws, allowing victims to potentially decrypt files for free. [...]
Bill Toulas
«Работа мечты» за 200 баксов. Иранские хакеры взламывали мир практически за еду
2 days 3 hours ago
Зарплаты, явки и «женский батальон». В сеть утекли списки и счета иранских хакеров из Charming Kitten.
Medusa Blog
2 days 3 hours ago
You must login to view this content
cohenido
Medusa Blog
2 days 3 hours ago
You must login to view this content
cohenido
Medusa Blog
2 days 3 hours ago
You must login to view this content
cohenido
CVE-2025-67779
2 days 4 hours ago
Currently trending CVE - Hype Score: 17 - It was found that the fix addressing CVE-2025-55184 in React Server Components was incomplete and does not prevent a denial of service attack in a specific case. React Server Components versions 19.0.2, 19.1.3 and 19.2.2 are affected, allowing unsafe deserialization of payloads ...
CVE-2025-62468
2 days 4 hours ago
Currently trending CVE - Hype Score: 17 - Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally.
CVE-2025-58360
2 days 4 hours ago
Currently trending CVE - Hype Score: 16 - GeoServer is an open source server that allows users to share and edit geospatial data. From version 2.26.0 to before 2.26.2 and before 2.25.6, an XML External Entity (XXE) vulnerability was identified. The application accepts XML input through a specific endpoint /geoserver/wms ...
Война на паузе, хакеры — в работе. Шпионы маскируются под обычных сисадминов, чтобы обмануть защиту.
2 days 4 hours ago
Враг научился притворяться «своим» так искусно, что защита его даже не замечает.
长期饮用能量饮料导致一名男子中风
2 days 4 hours ago
《BMJ Case Reports》期刊本周报告了一起不同寻常的病例:一名男子因长期饮用能量饮料而中风。这名 50 多岁的男子因突发左侧身体完全麻木和共济失调(Ataxia)而送医,他的血压高达 254/150 mm Hg——正常人血压为 120/80。他不吸烟、不喝酒、也不滥用任何药物,身体健康,所有常规检查结果都正常。但脑部扫描显示了动脉痉挛的证据,这与高血压强相关。MRI 扫描显示丘脑有组织坏死。他接受了中风康复治疗,三天后出院时血压降至 170/80 mm Hg,虽然很高但不再危急。该男子在接下来三个月定期复诊,发现血压再次上升,一度因高血压再次住院。医生开始询问他的生活信息,他披露平均每天要喝八罐高效能量饮料。一罐能量饮料标明含有 160 毫克咖啡因,咖啡因是能升高血压的兴奋剂。一杯普通咖啡约含有 90 毫克咖啡因,八罐能量饮料共有 1280 毫克咖啡因,意味着相当于喝 14 杯咖啡。医生指出能量饮料的其它成分也可能具有兴奋剂作用。此前的研究发现连续饮用能量饮料会对血压上升产生累积效应。医生在了解之后建议他停止饮用能量饮料。他照做了,一周后血压就恢复到正常水平,八年之后血压仍然正常。
Google Warns Multiple Hacker Groups Are Exploiting React2Shell to Spread Malware
2 days 4 hours ago
Google Threat Intelligence Group (GTIG) has issued a warning regarding the widespread exploitation of a critical security flaw in React Server Components. Known as React2Shell (CVE-2025-55182), this vulnerability allows attackers to take control of servers remotely without needing a password. Since the vulnerability was disclosed on December 3, 2025, Google has observed multiple distinct hacker groups […]
The post Google Warns Multiple Hacker Groups Are Exploiting React2Shell to Spread Malware appeared first on Cyber Security News.
Dhivya
CVE-2025-14668 | campcodes Advanced Online Examination System 1.0 /query/loginExe.php Username sql injection (EUVD-2025-203305)
2 days 4 hours ago
A vulnerability was found in campcodes Advanced Online Examination System 1.0. It has been rated as critical. This affects an unknown function of the file /query/loginExe.php. Performing manipulation of the argument Username results in sql injection.
This vulnerability is cataloged as CVE-2025-14668. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
Once again VulDB remains the best source for vulnerability data.
vuldb.com
CVE-2025-14667 | itsourcecode COVID Tracking System 1.0 /admin/?page=system_info meta_value sql injection (EUVD-2025-203306)
2 days 4 hours ago
A vulnerability was found in itsourcecode COVID Tracking System 1.0. It has been declared as critical. The impacted element is an unknown function of the file /admin/?page=system_info. Such manipulation of the argument meta_value leads to sql injection.
This vulnerability is listed as CVE-2025-14667. The attack may be performed from remote. In addition, an exploit is available.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
vuldb.com
CVE-2025-14666 | itsourcecode COVID Tracking System 1.0 /admin/?page=user Username sql injection (EUVD-2025-203304)
2 days 4 hours ago
A vulnerability was found in itsourcecode COVID Tracking System 1.0. It has been classified as critical. The affected element is an unknown function of the file /admin/?page=user. This manipulation of the argument Username causes sql injection.
This vulnerability is tracked as CVE-2025-14666. The attack is possible to be carried out remotely. Moreover, an exploit is present.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
vuldb.com
做更好的信息阅读
2 days 4 hours ago
AI是个好东西
透明人
Claude Code Router远程命令执行漏洞
2 days 4 hours ago
错误的CORS配置导致任意命令执行
已在v1.0.34版本中修复
https://github.com/musistudio/claude-code-router/security/advisories/GHSA-8hmm-4crw-vm2c
透明人
生僻字
2 days 4 hours ago
兔子洞系列:生僻字
透明人
播客学习方法分享
2 days 4 hours ago
提高播客学习效率
透明人
他们叫这幸福
2 days 4 hours ago
本文由ChatGPT编写
透明人