Aggregator
【安全圈】迪奥中国确认客户数据泄露事件 官方启动紧急响应机制
9 months ago
关键词数据泄露法国奢侈品牌迪奥5月13日发布声明,确认其中国区客户数据遭到未授权访问。
Safepay
9 months ago
You must login to view this content
cohenido
Safepay
9 months ago
You must login to view this content
cohenido
Safepay
9 months ago
You must login to view this content
cohenido
CISO Survey Surfaces Shift in Application Security Responsibilities
9 months ago
A global survey of 200 CISOs suggests responsibility for application security is shifting more toward the teams building and deploying software.
The post CISO Survey Surfaces Shift in Application Security Responsibilities appeared first on Security Boulevard.
Michael Vizard
Deepfake Defense in the Age of AI
9 months ago
The cybersecurity landscape has been dramatically reshaped by the advent of generative AI. Attackers now leverage large language models (LLMs) to impersonate trusted individuals and automate these social engineering tactics at scale.
Let’s review the status of these rising attacks, what’s fueling them, and how to actually prevent, not detect, them.
The Most Powerful Person on the
The Hacker News
North Korean Konni APT Targets Ukraine with Malware to track Russian Invasion Progress
9 months ago
The North Korea-linked threat actor known as Konni APT has been attributed to a phishing campaign targeting government entities in Ukraine, indicating the threat actor's targeting beyond Russia.
Enterprise security firm Proofpoint said the end goal of the campaign is to collect intelligence on the "trajectory of the Russian invasion."
"The group's interest in Ukraine follows historical targeting
The Hacker News
APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq
9 months ago
A Türkiye-linked group used an Output Messenger zero-day to spy on Kurdish military targets in Iraq, collecting user data since April 2024. Since April 2024, the threat actor Marbled Dust (aka Sea Turtle, Teal Kurma, Marbled Dust, SILICON and Cosmic Wolf) has exploited a zero-day flaw (CVE-2025-27920) in Output Messenger to target Kurdish military-linked users […]
Pierluigi Paganini
CVE-2025-0868
9 months ago
Currently trending CVE - Hype Score: 16 - A vulnerability, that could result in Remote Code Execution (RCE), has been found in DocsGPT. Due to improper parsing of JSON data using eval() an unauthorized attacker could send arbitrary Python code to be executed via /api/remote endpoint.
This issue affects DocsGPT: from ...
CVE-2024-38475
9 months ago
Currently trending CVE - Hype Score: 14 - Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source ...
苹果修复iOS、macOS 平台上的多个严重漏洞
9 months ago
速修复
华硕修复严重的DriverHub 漏洞
9 months ago
速修复
苹果修复iOS、macOS 平台上的多个严重漏洞
9 months ago
速修复
华硕修复严重的DriverHub 漏洞
9 months ago
速修复
Introducing Linode Interfaces: Better Network Management (Open Beta)
9 months ago
Join the beta for Linode Interfaces, a new network management tool offering clearer configurations, better security, and smarter routing.
Prasoon Pushkar
网络安全信息与动态周报2025年第19期(5月5日-5月11日)
9 months ago
分享一篇文章。
【漏洞通告】F5 BIG-IP Appliance 模式命令执行漏洞(CVE-2025-31644)
9 months ago
2025年5月13日,深瞳漏洞实验室监测到一则F5-BIG-IP组件存在命令执行漏洞的信息,漏洞编号:CVE-2025-31644,漏洞威胁等级:高危。
【勒索防护】Mallox新变种再度来袭,正利用产品漏洞对国内企业实施攻击
9 months ago
近期,深信服应急响应团队和深盾终端安全实验室接到多起Mallox攻击溯源请求,基于该家族的攻击特点及情报内容抽取终端安全软件、行为日志、进程监控内容等多种日志利用AI技术进行综合分析攻击者画像和受害者画像。
INE Security Alert: Top 5 Takeaways from RSAC 2025
9 months ago
Cary, North Carolina, 13th May 2025, CyberNewsWire
The post INE Security Alert: Top 5 Takeaways from RSAC 2025 appeared first on Security Boulevard.
cybernewswire