Aggregator

Hackers Actively Exploited CitrixBleed 2 Flaw Ahead of PoC Disclosure

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
7 months ago

Cybersecurity researchers have discovered that threat actors began exploiting the critical CitrixBleed 2 vulnerability nearly two weeks before a public proof-of-concept was released, highlighting the sophisticated nature of modern attack campaigns. The vulnerability, tracked as CVE-2025-5777, represents a significant security risk for organizations running Citrix NetScaler appliances. Early Exploitation Timeline GreyNoise security researchers observed the […]

The post Hackers Actively Exploited CitrixBleed 2 Flaw Ahead of PoC Disclosure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

Cisco Unified Intelligence Center Flaw Lets Remote Attackers Upload Arbitrary Files

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
7 months ago

A critical security vulnerability has been discovered in Cisco’s Unified Intelligence Center that allows authenticated remote attackers to upload arbitrary files to affected systems, potentially enabling complete system compromise. The flaw, tracked as CVE-2025-20274, carries a CVSS score of 6.3 and has been assigned a High security impact rating by Cisco due to the potential […]

The post Cisco Unified Intelligence Center Flaw Lets Remote Attackers Upload Arbitrary Files appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

CVE-2025-4302 | Stop User Enumeration Plugin up to 1.7.2 on WordPress REST API /wp-json/wp/v2/users/ information exposure

VulDB Recent Entries
7 months ago
A vulnerability was found in Stop User Enumeration Plugin up to 1.7.2 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /wp-json/wp/v2/users/ of the component REST API. The manipulation leads to information exposure through discrepancy. This vulnerability is known as CVE-2025-4302. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Weaponizing SVG: How Threat Actors Embed Malicious JavaScript in Vector Files

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
7 months ago

Cybersecurity researchers have identified an emerging attack campaign where threat actors are weaponizing Scalable Vector Graphics (SVG) files to deliver sophisticated JavaScript-based redirect attacks. This technique exploits the inherent trust placed in image formats, allowing malicious actors to embed obfuscated JavaScript within seemingly harmless vector graphics files that execute automatically when opened in web browsers. […]

The post Weaponizing SVG: How Threat Actors Embed Malicious JavaScript in Vector Files appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Aman Mishra

Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom Backdoors

The Hackers News
7 months ago
The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three previously undocumented Chinese state-sponsored threat actors. "Targets of these campaigns ranged from organizations involved in the manufacturing, design, and testing of semiconductors and integrated circuits, wider equipment and services supply chain entities within this sector, as well
The Hacker News

UNC6148 deploys Overstep malware on SonicWall devices, possibly for ransomware operations

Security Affairs
7 months ago
UNC6148 targets SonicWall devices with Overstep malware, using a backdoor and rootkit for data theft, extortion, or ransomware. Google’s Threat Intelligence Group warns that a threat actor tracked as UNC6148 has been targeting SonicWall SMA appliances with new malware dubbed Overstep. Active since at least October 2024, the group uses a backdoor and user-mode rootkit […]
Pierluigi Paganini

SpaceX 的 Falcon 9 火箭发射了亚马逊的 24 颗宽带卫星

Solidot
7 months ago
美国时间周三凌晨 2:30 (06:30 UTC),SpaceX 在佛罗里达州卡纳维拉尔角太空军基地使用 Falcon 9 火箭发射了亚马逊的 24 颗宽带卫星,亚马逊的宽带卫星网络 Project Kuiper 设计与 SpaceX 的宽带卫星 Starlink 进行竞争,不过 Starlink 在轨卫星已有数千颗,而 Project Kuiper 至今只有 78 颗。完整的 Project Kuiper 网络将有 3232 颗。Kuiper 卫星造价昂贵,预计项目总费用 165-200 亿美元,其中发射一项将耗费 100 亿美元,亚马逊已经预定了超过 80 次发射合同,迫不得已它只能求助于竞争对手 SpaceX。

0-Day RCE Flaw in SonicWall SMA Devices Exploited to Launch OVERSTEP Ransomware

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
7 months ago

Google’s Threat Intelligence Group (GTIG) has uncovered a sophisticated cyberattack campaign targeting end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances, where threat actors are exploiting previously stolen credentials and deploying a new rootkit called OVERSTEP. The financially motivated group, tracked as UNC6148, has been operating since at least October 2024 and is suspected of […]

The post 0-Day RCE Flaw in SonicWall SMA Devices Exploited to Launch OVERSTEP Ransomware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Aman Mishra

Managed ad