Aggregator
观点 | 加快构建数字领域涉外法治体系
通知 | 网安标委2026年41项网络安全国家标准项目立项
李艳:借鉴网络治理经验,实现跨域风险管控
专题·原创 | 人工智能供应链安全治理现状与挑战
CVE-2026-22753 | Vmware Spring Security up to 7.0.4 improper authorization (WID-SEC-2026-1221)
CVE-2026-22748 | Vmware Spring Security up to 6.3.14/6.4.14/6.5.9/7.0.4 JWT Decoding NimbusJwtDecoder/NimbusReactiveJwtDecoder (WID-SEC-2026-1221)
CVE-2026-22751 | Vmware Spring Security up to 6.4.15/6.5.9/7.0.4 One-Time Token Login toctou (EUVD-2026-24227 / WID-SEC-2026-1221)
CVE-2026-22746 | Vmware Spring Security up to 7.0.4 DaoAuthenticationProvider UserDetails information disclosure (WID-SEC-2026-1221)
CVE-2026-22747 | Vmware Spring Security up to 7.0.4 x.509 Certificate certificate validation (WID-SEC-2026-1221)
New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands
New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands
Hackers Exploit SonicWall SMA1000 Zero-Days to Execute Commands as Root
Hackers are actively exploiting two zero-day vulnerabilities in the SonicWall SMA 1000 Series remote access appliances. They are chaining a critical server-side request forgery flaw with a local code injection bug to execute commands with root privileges. Rapid7’s Managed Detection and Response team detected targeted attacks before SonicWall publicly disclosed these vulnerabilities on July 14, […]
The post Hackers Exploit SonicWall SMA1000 Zero-Days to Execute Commands as Root appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
been trying to crack this keepass db hash, for some reason john and hashcat are not recognising it
Zoom security advisory (AV26-707)
New Framework Redefines AI Penetration Testing Around Prompt Injection and Behavioral Objective Violations
A newly proposed framework argues that AI penetration testing must move beyond conventional infrastructure compromise and assess whether an adversary can make an AI-enabled system act against its intended operational purpose. Traditional penetration testing typically measures compromise through outcomes such as unauthorized access, privilege escalation, data theft, service disruption, or persistence. Those outcomes remain critical […]
The post New Framework Redefines AI Penetration Testing Around Prompt Injection and Behavioral Objective Violations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.