Aggregator

一个以经济利益为驱动的俄语初始访问经纪人（IAB）被评估为名为 FortiBleed 的大规模凭证窃取行动的幕后黑手，该行动已针对全球超过 43 万台 FortiGate 防火墙。 该活动自 2026 年 2 月以来一直活跃，涉及收集凭证列表、搜索暴露的服务、暴力破解可访问的系统，以及在受感染的防火墙上部署定制嗅探器。 SOCRadar 在一份新报告中表示：“一旦部署，这些嗅探器会从流...

医疗科技公司 Xsolis 表示，在一次钓鱼攻击中，近 140 万人的敏感数据遭到泄露，该攻击使攻击者得以访问其网络。 尽管该公司未发现任何试图滥用已泄露信息的迹象，但它警告受影响个人保持警惕，防范潜在的有针对性的攻击。 Xsolis 是一家总部位于美国的医疗保健公司，开发由 AI 驱动的软件，被 600 多家医院和健康保险公司用于利用率管理、医疗必要性审查、患者状态判定、出院规划和报销决策。 其...

“Scattered Spider”网络犯罪集团的两名成员承认于 2024 年入侵伦敦交通局（TfL）系统。 这两名个人，Thalha Jubair（20 岁）和 Owen Flowers（18 岁），在 2024 年 8 月 31 日至 9 月 3 日期间侵入了伦敦交通服务系统的系统，造成了数百万英镑的损失。 Jubair 和 Flowers 此前否认参与该事件，但在 W...

Tata Electronics 在给 BleepingComputer 的一份声明中确认，它是一次网络攻击的目标，该攻击影响了其部分 IT 基础设施。 该公司强调其运营继续正常运行，未受该事件影响。 Tata Electronics 的一位发言人告诉 BleepingComputer：“几周前，Tata Electronics 发现我们部分系统上发生了一起网络安全事件。”...

据漏洞利用情报公司 Defused 称，影响 Cisco Unified Communications Manager（Unified CM）产品的一个最近修补的漏洞正在攻击中被利用。 Cisco 于 6 月 3 日宣布了针对该漏洞的补丁，该漏洞编号为 CVE-2026-20230。该公司表示，该关键安全漏洞可被未认证的远程攻击者利用，进行 SSRF 攻击、向底层操作系统写入任意文件，并将权限提升...

一位美国官员周二告诉美联社，Anthropic 的人工智能模型之一在一次测试演习中发现了高度敏感和安全的美国政府计算机系统中的漏洞。 这位不愿透露姓名的官员表示，Anthropic 已与美国情报机构合作，使用该公司的 Mythos 模型进行测试。该模型在数小时内识别出某些漏洞，但该官员表示，这并不意味着模型能够在那段时间内利用这些漏洞。 该官员表示，测试是通过 Anthropic 的一项名为&ld...

德国铁路网络周二晚上因 IT 故障而全国停运。凌晨一点国家铁路运营商 Deutsche Bahn 宣布问题已经解决，服务正在逐步恢复。铁路公司称问题是铁路网络内部通信使用的 GSM-R 数字通信系统出现全国故障导致的，它表示已查明原因但未具体说明。铁路公司在故障期间向乘客发放了出租车和酒店代金券，并在条件允许下，在车站提供可供旅客乘坐的列车。该公司就此次事故表示歉意。

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The vulnerability, tracked as CVE-2026-20230 (CVSS score: 8.6), is a case of improper input validation for specific HTTP requests that could allow an unauthenticated, remote

Кибергруппировка Icarus потребовала выкуп под угрозой опубликовать данные клиентов пострадавших компаний.

原计划本周在伦敦举行的极端高温会议《Extreme Heat: Improving governance and strengthening action around the world》因英国气象局宣布的极端高温红色预警而取消。根据气象局发布的罕见高温红色预警，伦敦、英格兰中部部分地区、威尔士东南部和英格兰南部受到影响，时间从周三 09:00 BST 持续到周四 21:00 BST ，气象局警告高温可能会有重病或死亡风险。预计英格兰南部气温将升至 37-38 摄氏度左右，周三最高气温甚至可能达到 39 摄氏度。

Пока одни мечтают о покорении Красной планеты, другие подсчитывают потенциальные убытки.

In this interview with Help Net Security, Jorge Aldegunde, Global Head of Railway Services at DNV, talks through what happens when old operational technology meets newer IT in monorail systems. He explains why open networks widened the attack surface, how teams decide whether to patch a signalling flaw without stopping trains, and who carries the liability. Aldegunde covers regulation like CRA and NIS2, training veteran engineers to think about threat actors, and spotting intruders who … More →

The post Where IT meets OT and railway cybersecurity gets harder appeared first on Help Net Security.

OpenAI and Broadcom introduce Jalapeño, a custom AI chip built for LLM inference to improve performance, efficiency, and scale across AI systems.

Self-Managed OAuth is now available to all developers on Cloudflare. Here's how we executed a zero-downtime migration of our core OAuth engine to make it happen.

A vulnerability identified as problematic has been detected in liquidjs up to 10.25.7. Affected is the function Context.spawn. The manipulation leads to protection mechanism failure. This vulnerability is listed as CVE-2026-44646. The attack may be initiated remotely. There is no available exploit.

A vulnerability labeled as problematic has been found in pragdave earmark up to 1.4.1. Impacted is an unknown function in the library lib/earmark/transform.ex. The manipulation results in improper neutralization of script in attributes in a web page. This vulnerability is reported as CVE-2026-48591. The attack requires a local approach. No exploit exists.

A vulnerability was found in Devolutions UniGetUI up to 2026.2.1. It has been declared as critical. This issue affects some unknown processing of the component Pinget Backend. Executing a manipulation can lead to incorrectly-resolved name. This vulnerability is tracked as CVE-2026-10696. The attack can be launched remotely. No exploit exists.

A vulnerability classified as problematic was found in SteeltoeOSS Steeltoe.Configuration.Abstractions up to 4.1.x. Affected by this issue is the function Path.GetTempPath. The manipulation results in cleartext storage of sensitive information. This vulnerability is known as CVE-2026-50267. Attacking locally is a requirement. No exploit is available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in CursorTouch Windows-MCP up to 0.7.4. This impacts an unknown function. Such manipulation leads to missing authentication. This vulnerability is listed as CVE-2026-48989. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in SteeltoeOSS Steeltoe.Management.Endpoint and Steeltoe.Management.EndpointCore up to 4.1.x. It has been declared as problematic. Affected is an unknown function of the file /actuator/env of the component Configuration Handler. Such manipulation leads to information disclosure. This vulnerability is referenced as CVE-2026-50200. It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.