Aggregator

TSA тестирует виртуальные прикосновения по VR.

阿里云服务的核心域名 aliyuncs.com 于 2026 年 6 月 6 日凌晨 02:57 出现域名解析异常，一度被重定向到非盈利安全组织 Shadowserver Foundation 的 sinkhole.shadowserver.org。阿里云官方称，4 点左右工程师初步确认导致域名解析出现异常的原因并正在紧急处理中。受影响的云产品主要有对象存储OSS、内容分发网络CDN、容器镜像服务ACR、云解析DNS等。9 点左右受影响云产品已全部恢复。但由于 DNS 缓存，客户的影响可能会持续更长时间。此次事故因涉及阿里云核心服务而影响范围极大，其 DNS 解析异常直接导致客户业务大面积停摆。其中 cnblogs 全国访问瘫痪，大量企业级应用陷入“404地狱”，影响甚至波及海外用户。

A vulnerability was found in Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408. It has been classified as critical. This affects an unknown part. The manipulation leads to missing authentication. This vulnerability is uniquely identified as CVE-2025-5192. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408 and classified as very critical. Affected by this issue is some unknown functionality. The manipulation leads to deserialization. This vulnerability is handled as CVE-2025-48780. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to missing authorization. This vulnerability is known as CVE-2025-48784. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408. Affected is an unknown function. The manipulation leads to file inclusion. This vulnerability is traded as CVE-2025-48783. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2025-48782. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic was found in Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408. This vulnerability affects unknown code. The manipulation leads to file inclusion. This vulnerability was named CVE-2025-48781. The attack can be initiated remotely. There is no exploit available.

腾讯云安全RASP2.0即将发布，欢迎扫码提前锁定免费体验官名额

6月14日，相约长沙与大咖面对面，共同揭开AI时代安全攻防的神秘面纱

Experts at Infosecurity Europe 2025 highlighted a range of major industry trends, from advanced social engineering techniques to vulnerability exploits

The U.S. offers up to $10M for info on state hackers linked to RedLine malware and its creator, Maxim Rudometov, tied to attacks on U.S. infrastructure. The U.S. Department of State offers a reward of up to $10 million for information nation-state actors linked to the RedLine infostealer and its alleged author, Russian national Maxim […]

蝉联霸榜！360多领域入选《2025网络安全产业图谱》

赛可达实验室认证：360EDR勒索病毒、挖矿病毒检测率达100%

Claude теперь работает на разведку США.

关键词网络攻击近日，NordVPN 联合威胁暴露管理平台 NordStellar 发布报告，披露暗网正在流通约