CTEM's Core: Prioritization and Validation 尽管投入大量资源和时间，现代网络安全系统仍频繁失败。问题不在于安全团队缺乏信息，而是警报过多且大部分无关紧要。传统漏洞管理方法已无法应对动态威胁环境。Gartner提出的持续威胁暴露管理（CTEM）通过优先化和验证关键风险点来解决这一问题，并结合对抗性暴露验证（AEV）技术（如攻击模拟和自动化渗透测试），帮助团队聚焦真正威胁并提升防御能力。... 2025-9-25 11:49:0 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com exposure security adversarial bas ctem

Threatsday Bulletin: Rootkit Patch, Federal Breach, OnePlus SMS Leak, TikTok Scandal & More 本周网络安全周报涵盖固件更新、权限绕过漏洞、供应链攻击及勒索软件等多起事件，揭示了网络威胁的多样性和复杂性。... 2025-9-25 11:48:0 | 阅读: 31 | 收藏 | The Hacker News - thehackernews.com security sma remote network attackers

Tech Overtakes Gaming as Top DDoS Attack Target, New Gcore Radar Report Finds 2025年上半年DDoS攻击激增41%，峰值达2.2 Tbps，超越历史记录。攻击规模与复杂性双升，持续时间延长且策略多层化。科技行业取代游戏成为最大目标，金融服务业风险加剧。应用层攻击占比升至38%，多向量战术频发。... 2025-9-25 11:30:0 | 阅读: 27 | 收藏 | The Hacker News - thehackernews.com tbps network floods gcore defenses

Malicious Rust Crates Steal Solana and Ethereum Keys — 8,424 Downloads Confirmed read file error: read notes: is a directory... 2025-9-25 07:59:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com crates solana malicious mainnet security

Cisco Warns of Actively Exploited SNMP Vulnerability Allowing RCE or DoS in IOS Software read file error: read notes: is a directory... 2025-9-25 06:30:0 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com software attacker affects network snmpv3

Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike read file error: read notes: is a directory... 2025-9-24 16:36:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com rednovember pantegana security spark cobalt

UNC5221 Uses BRICKSTORM Backdoor to Infiltrate U.S. Legal and Technology Sectors read file error: read notes: is a directory... 2025-9-24 14:33:0 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com brickstorm security victim appliances unc5221

Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models Wondershare RepairIt被发现存在两个高危漏洞（CVE-2025-10643和CVE-2025-10644），CVSS评分分别为9.1和9.4。这些漏洞可能导致认证绕过、供应链攻击以及用户数据和AI模型的泄露。研究人员指出该应用违反隐私政策，收集并泄露了用户数据。尽管Trend Micro于2025年4月负责任地披露了这些问题，但尚未收到厂商的回应。... 2025-9-24 13:55:0 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com security mcp cloud malicious

How One Bad Password Ended a 158-Year-Old Business read file error: read notes: is a directory... 2025-9-24 11:58:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com knp security ransomware specops

New YiBackdoor Malware Shares Major Code Overlaps with IcedID and Latrodectus read file error: read notes: is a directory... 2025-9-24 11:28:0 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com yibackdoor analysis icedid latrodectus zloader

iframe Security Exposed: The Blind Spot Fueling Payment Skimmer Attacks read file error: read notes: is a directory... 2025-9-24 11:3:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com security iframes attackers monitoring stripe

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials 云安全公司Wiz发现Linux工具Pandoc存在安全漏洞CVE-2025-51591，被用于针对亚马逊AWS实例元数据服务（IMDS）的攻击。该漏洞利用服务器端请求伪造（SSRF），通过构造HTML iframe元素窃取IAM凭证。尽管攻击因IMDSv2保护失败，但凸显云环境面临的风险。建议使用特定选项防止Pandoc渲染iframe，并升级至IMDSv2以增强防护。... 2025-9-24 07:15:0 | 阅读: 68 | 收藏 | The Hacker News - thehackernews.com imds ssrf ec2 wiz cloud

State-Sponsored Hackers Exploiting Libraesva Email Security Gateway Vulnerability read file error: read notes: is a directory... 2025-9-24 06:24:0 | 阅读: 33 | 收藏 | The Hacker News - thehackernews.com libraesva esg security hostile believed

Two New Supermicro BMC Bugs Allow Malicious Firmware to Evade Root of Trust Security Supermicro BMC固件存在两个中等严重漏洞（CVE-2025-7937和CVE-2025-6198），因加密签名验证不当导致攻击者可绕过验证步骤上传恶意固件。Binarly公司发现并报告了这些漏洞，并指出修复不充分可能仍存在风险。建议定期更新签名密钥以提升安全性。... 2025-9-23 18:0:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com firmware bmc supermicro digest security

Eurojust Arrests 5 in €100M Cryptocurrency Investment Fraud Spanning 23 Countries 欧洲执法机构逮捕五名嫌疑人涉及加密货币投资诈骗案,涉案金额超1亿欧元,受害者来自四国。通过虚假平台承诺高回报诱骗投资,并转移至立陶宛洗钱。美国2024年欺诈损失创纪录达125亿美元,其中投资诈骗占比最高。Chainalysis案例显示快速行动成功追回资金,首尔警方亦破获类似案件,涉案金额约3千万美元,受害者包括企业高管等高净值人士。... 2025-9-23 17:13:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com funds chainalysis investment venus attacker

U.S. Secret Service Seizes 300 SIM Servers, 100K Cards Threatening U.S. Officials Near UN 美国特勤局捣毁纽约三州地区一电子设备网络，该网络用于匿名威胁政府官员并可能瘫痪通信设施。发现300余SIM服务器及10万张SIM卡，涉及国家背景威胁行为者。... 2025-9-23 15:48:0 | 阅读: 4 | 收藏 | The Hacker News - thehackernews.com york network threats officials nations

SolarWinds Releases Hotfix for Critical CVE-2025-26399 Remote Code Execution Flaw read file error: read notes: is a directory... 2025-9-23 12:46:0 | 阅读: 21 | 收藏 | The Hacker News - thehackernews.com exploited desk security 28988 26399

Lean Teams, Higher Stakes: Why CISOs Must Rethink Incident Remediation 大型企业通过裁员和AI提升效率，但安全团队资源减少导致风险加剧。硬编码密钥等安全盲点难以管理，修复成本高昂且耗时。自动化工具和流程优化是解决之道。... 2025-9-23 11:30:0 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com security costs workforce lean developers

ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service read file error: read notes: is a directory... 2025-9-23 11:26:0 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com security shadowv2 c2 python lasted

GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security GitHub为应对针对npm生态系统的供应链攻击（如Shai-Hulud攻击），宣布将推出新的安全措施，包括双重认证、短期令牌和可信发布功能。可信发布通过OpenID Connect实现安全包发布，并生成加密证明以增强供应链信任。此外，恶意npm包fezbox利用二维码技术窃取浏览器密码。... 2025-9-23 09:20:0 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com publishing qr github payload worm