Aggregator

在切断网络近三个月之后，伊朗逐步恢复全球联网。伊朗第一副总统 Mohammad Reza Aref 周二通过其 X 账号宣布了这一消息。网络监视组织 Netblocks 和 Kentik

Физики нашли редкое состояние тяжелой частицы, зарегистрировав превращение почти неуловимого фотона в электрон-позитронную пару.

Matrix 首页推荐 Matrix 是少数派的写作社区，我们主张分享真实的产品体验，有实用价值的经验与思考。我们会不定期挑选 Matrix 最优质的文章，展示来自用户的最真实的体验和观点。 文章代表

Spotify首席执行官为AI生成音乐辩护Spotify联席首席执行官亚历克斯·诺斯特罗姆为其公司拓展人工智能生成音乐的举措进行了辩护。他认为，与目前网络上泛滥的、缺乏监管的“AI垃圾”相比，“受控的

error code: 1003

美国电信巨头 Charter Communications 确认，在勒索组织 ShinyHunters 威胁除非支付赎金否则泄露被盗数据后，公司遭遇了数据泄露。 Charter Communications 是美国最大的宽带运营商之一，通过其 Spectrum 品牌为数千万家庭和企业客户提供服务。 在本周末分享的一份声明中，该公司表示，他们正在向当局通报这一事件，并且没有敏感的客户个人信息被盗。 ...

error code: 1003

黑客利用运行 KnowledgeDeliver 学习管理系统（LMS）的服务器中的一个关键零日漏洞，部署了 Godzilla Web Shell。 该缺陷是一个反序列化问题，被追踪为 CVE-2026-5426，可在无需身份验证的情况下被利用。其根源在于所有 KnowledgeDeliver 客户部署的 Web 门户配置中使用了共享的硬编码机器密钥（machine key）。 ViewS...

SonicWall Gen6系列SSL-VPN设备存在关键身份验证绕过漏洞CVE-2024-12802（CVSS 9.1），该漏洞自2026年2月起被Akira勒索软件即服务组织积极利用。

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

DataCon致力于打造一场“产学研”深度融合的巅峰盛宴。

error code: 1003

Check Point 报告显示，被追踪为 Nimbus Manticore 的伊朗 APT 在针对航空和软件公司的新一轮入侵中采用了新战术，并更新了其武器库。该组织也被称为 Bohrium、Smoke Sandstorm、TA455 和 UNC1549，至少从 2022 年开始活跃，被认为是 Charming Kitten（APT35）的一个子组织，与伊朗伊斯兰革命卫队（IR...

A vulnerability classified as critical was found in prompts.chat. This issue affects some unknown processing of the component Authorization Header Handler. The manipulation of the argument token results in server-side request forgery. This vulnerability is cataloged as CVE-2026-22664. The attack may be launched remotely. There is no exploit available. A patch should be applied to remediate this issue.

A vulnerability was found in Like Plugin 3.0.0 on MyBB. It has been classified as problematic. Affected by this issue is some unknown functionality of the component Post Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2018-25247. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability was found in OCS Inventory NG Server up to 2.12.3. It has been classified as problematic. This issue affects some unknown processing of the file /ocsinventory of the component HTTP Header Handler. Performing a manipulation of the argument User-Agent results in cross site scripting. This vulnerability is cataloged as CVE-2026-22675. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to install a patch to address this issue.

A vulnerability was found in Google Chrome. It has been declared as critical. This issue affects some unknown processing of the component WebRTC. Executing a manipulation can lead to use after free. The identification of this vulnerability is CVE-2026-5860. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability identified as critical has been detected in Google Chrome on macOS. Affected is an unknown function of the component ANGLE. Performing a manipulation results in improper access controls. This vulnerability is identified as CVE-2026-5879. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.

A vulnerability marked as problematic has been reported in Apache Tomcat up to 9.0.116/10.1.53/11.0.20. Affected by this vulnerability is an unknown functionality. The manipulation leads to missing encryption of sensitive data. This vulnerability is referenced as CVE-2026-34486. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability described as critical has been identified in NASM Netwide Assembler 3.02rc5. This impacts the function depend_file. Such manipulation leads to use after free. This vulnerability is documented as CVE-2026-6068. The attack needs to be performed locally. There is not any exploit available.