FBI warns of Salesforce attacks by UNC6040 and UNC6395 groups FBI警告网络犯罪团伙UNC6040和UNC6395针对Salesforce平台发起攻击，通过钓鱼、社会工程等手段窃取数据并实施勒索。建议企业加强安全措施以应对威胁。... 2025-9-13 19:24:52 | 阅读: 11 | 收藏 | Security Affairs - securityaffairs.com salesforce unc6395 unc6040 malicious extortion

HybridPetya ransomware bypasses UEFI Secure Boot echoing Petya/NotPetya HybridPetya 勒索软件通过绕过 UEFI 安全启动感染 EFI 分区，并利用 CVE-2024-7344 漏洞攻击旧系统。与 Petya/NotPetya 类似但支持解密功能，其技术能力突出且未来威胁监测重要。... 2025-9-13 12:6:42 | 阅读: 12 | 收藏 | Security Affairs - securityaffairs.com hybridpetya efi bootkit notpetya petya

Cisco fixes high-severity IOS XR flaws enabling image bypass and DoS Cisco修复了多个高危IOS XR漏洞，包括图像验证绕过、DoS攻击和管理接口ACL绕过问题。... 2025-9-12 14:17:36 | 阅读: 8 | 收藏 | Security Affairs - securityaffairs.com bypass software attacker tracked

Samsung fixed actively exploited zero-day Samsung修复了 CVE-2025-21043 远程代码执行漏洞，该漏洞被用于针对 Android 设备的零日攻击。该漏洞涉及 libimagecodec.quram.so 中的内存越界写入问题。Meta 和 WhatsApp 于 8 月 13 日报告该问题。Samsung 已发布补丁修复错误实现。WhatsApp 提醒部分用户可能受到间谍软件攻击，并建议更新设备以减少风险。该攻击无需用户交互，通常与资源丰富的威胁行为者相关。... 2025-9-12 11:44:35 | 阅读: 34 | 收藏 | Security Affairs - securityaffairs.com exploited samsung remote attackers security

UK train operator LNER (London North Eastern Railway) discloses a data breach 英国火车运营商LNER因第三方供应商的数据泄露事件，导致客户联系方式及部分旅行记录外泄。未涉及银行信息或密码。公司提醒客户警惕钓鱼攻击，并建议避免回应可疑请求。... 2025-9-12 09:25:27 | 阅读: 39 | 收藏 | Security Affairs - securityaffairs.com london lner eastern railway north

Apple issues spyware warnings as CERT-FR confirms attacks Apple警告用户遭遇间谍软件攻击,法国网络安全机构CERT-FR证实至少四起针对iCloud设备的攻击,通过邮件、短信和iCloud登录提醒潜在威胁,目标多为高风险群体,建议用户采取安全措施应对威胁。... 2025-9-12 08:3:48 | 阅读: 16 | 收藏 | Security Affairs - securityaffairs.com spyware paganini imessage receipt

U.S. CISA adds Dassault Systèmes DELMIA Apriso flaw to its Known Exploited Vulnerabilities catalog 美国网络安全机构CISA将达索系统DELMIA Apriso软件的高危反序列化漏洞（CVE-2025-5086）加入已知被利用漏洞目录，并要求联邦机构在10月2日前修复。该漏洞影响多个版本软件，可致远程代码执行。... 2025-9-12 05:58:8 | 阅读: 14 | 收藏 | Security Affairs - securityaffairs.com catalog delmia apriso exploited

Akira Ransomware exploits year-old SonicWall flaw with multiple vectors Akira 勒索软件正利用 SonicWall 一年前修复的 CVE-2024-40766 漏洞进行攻击，可能通过三种攻击向量获取初始访问权限。该漏洞涉及 SonicOS 管理访问的不当控制，允许未经授权的访问。尽管 SonicWall 已修复漏洞并否认零日攻击的存在，但部分用户因未更改密码仍面临风险。专家建议加强账户安全、启用多因素认证并限制虚拟办公室门户访问以应对威胁。... 2025-9-11 20:12:0 | 阅读: 7 | 收藏 | Security Affairs - securityaffairs.com ransomware akira rapid7 sslvpn security

Google fixes critical Chrome flaw, researcher earns $43K Google修复了Chrome浏览器中的两个关键漏洞（CVE-2025-10200和CVE-2025-10201），分别涉及Serviceworker组件的use-after-free问题和Mojo框架的不当实现。研究人员Looben Yang、Sahan Fernando及匿名专家因此获得总计73,美元奖励。更新版本为Windows 1468、macOS 666及Linux 666。目前未报告相关漏洞被野利用。... 2025-9-11 14:7:54 | 阅读: 14 | 收藏 | Security Affairs - securityaffairs.com chrome 10201 7339 addressed

Kosovo man pleads guilty to running online criminal marketplace BlackDB 科索沃男子Liridon Masurica承认运营网络犯罪市场BlackDB.cc，该平台自2018年起活跃，出售被盗凭证和个人信息用于欺诈活动。Masurica于2024年12月被捕并引渡至美国，面临最长55年监禁。FBI与科索沃警方合作调查此案。同时，另一网络犯罪市场Rydox被 seizure，涉及多名管理员被捕。... 2025-9-11 10:57:15 | 阅读: 6 | 收藏 | Security Affairs - securityaffairs.com kosovo masurica marketplace blackdb arrested

Attackers abuse ConnectWise ScreenConnect to drop AsyncRAT Hackers exploit ConnectWise ScreenConnect to deploy AsyncRAT via scripted loaders, using fileless malware techniques to steal data and maintain persistence through a fake Skype updater.... 2025-9-11 09:31:59 | 阅读: 18 | 收藏 | Security Affairs - securityaffairs.com memory asyncrat connectwise updater

Jaguar Land Rover discloses a data breach after recent cyberattack Jaguar Land Rover遭遇网络攻击导致工厂停产及数据泄露，影响生产和零售活动。公司称部分数据受影响，并已通知监管机构。黑客组织声称对此负责。... 2025-9-11 07:49:44 | 阅读: 18 | 收藏 | Security Affairs - securityaffairs.com jlr jaguar rover cyberattack retail

Critical flaw SessionReaper in Commerce and Magento platforms lets attackers hijack customer accounts read file error: read notes: is a directory... 2025-9-10 20:54:2 | 阅读: 10 | 收藏 | Security Affairs - securityaffairs.com magento p7 alpha2 attacker

Google Pixel 10 adds C2PA to camera and Photos to spot AI-generated or edited images read file error: read notes: is a directory... 2025-9-10 18:17:27 | 阅读: 7 | 收藏 | Security Affairs - securityaffairs.com c2pa verifiable security hardware spot

KillSec Ransomware is Attacking Healthcare Institutions in Brazil read file error: read notes: is a directory... 2025-9-10 08:38:18 | 阅读: 25 | 收藏 | Security Affairs - securityaffairs.com healthcare brazil ransomware killsec

Microsoft Patch Tuesday security updates for September 2025 fixed two zero-day flaws read file error: read notes: is a directory... 2025-9-10 07:48:55 | 阅读: 20 | 收藏 | Security Affairs - securityaffairs.com microsoft tuesday windows remote

SAP September 2025 Patch Day fixed 4 critical flaws read file error: read notes: is a directory... 2025-9-9 20:38:4 | 阅读: 6 | 收藏 | Security Affairs - securityaffairs.com netweaver tracked p4 security

Supply chain attack targets npm, +2 Billion weekly npm downloads exposed read file error: read notes: is a directory... 2025-9-9 18:26:47 | 阅读: 3 | 收藏 | Security Affairs - securityaffairs.com security phishing junon malicious attackers

LunaLock Ransomware threatens victims by feeding stolen data to AI models LunaLock 勒索软件团伙通过窃取艺术作品并威胁将其用于 AI 模型训练来实施网络勒索。该团伙入侵 Artists&Clients 网站，窃取数字艺术并要求赎金 5 万美元。若不支付赎金，将公开数据并提交艺术品用于训练大型语言模型 (LLMs)。专家警告此举可能为其他勒索团伙树立危险先例。艺术家已采取措施保护作品免受黑客和 AI 抓取威胁。... 2025-9-9 05:48:39 | 阅读: 36 | 收藏 | Security Affairs - securityaffairs.com lunalock ransomware artists extortion zhao

Hackers breached Salesloft ’s GitHub in March, and used stole tokens in a mass attack read file error: read notes: is a directory... 2025-9-8 19:20:56 | 阅读: 15 | 收藏 | Security Affairs - securityaffairs.com salesloft drift github breached