Aggregator

市面上 99% 聊「心流（Flow）」的文章，都在教你做一场充满仪式感的现代苦行：关掉手机、断网、冥想半小时、 […]

The latest attacks, which hit 37 PyPI wheels and 19 code packages, show a continued evolution of the persistent software supply chain threat.

A threat actor using the alias an0bixz has publicly released what they claim is a full dataset stolen from BRPDV Ltda., a Brazilian company (brpdv.com.br), after an extortion deadline reportedly expired with no payment.

Cybercriminals have found a new way to sneak malware past email security tools, and this time they are hiding behind a name that most systems trust without question. A recent malspam campaign has been caught using Google’s own DoubleClick ad-tracking infrastructure to route victims toward a fileless .NET loader, a type of malware that runs […]

The post Malspam Attack Uses Google DoubleClick Redirects to Deliver Fileless .NET Loader appeared first on Cyber Security News.

传统 EDR 让企业看见终端行为，XDR 让企业看见跨域攻击链，ADR 让企业看见 Agent 的意图、推理、工具调用和行为后果。Agent 越来越像一个独立工作的数字员工。既然企业会给员工配账号、权限、审计和行为风控，那么企业也必须给 Agent 配一套检测与响应体系。

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure.

The post AI brands as bait: How threat actors are using the AI hype in social engineering appeared first on Microsoft Security Blog.

陈修良曾是潘汉年地下工作期间的部下、战友。

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure.

The post AI brands as bait: How threat actors are using the AI hype in social engineering appeared first on Microsoft Security Blog.

今日暂未更新资讯~
更多最新文章，请访问SecWiki

Одного символа в заявке оказалось достаточно, чтобы чужой аккаунт получил повышенные права.

Attackers can chain three already fixed vulnerabilities in the Ubiquiti UniFi OS server to execute remote code with root privileges and without authentication. [...]

A vulnerability identified as problematic has been detected in SecureAge CatchPulse up to 10.9.3. Impacted is an unknown function in the library saappctl.sys of the component IOCTL Handler. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2026-11459. Local access is required to approach this attack. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did not respond in any way.

Assistive AI agents aren't always helpful—it all depends on who they're working on behalf of. 

Live phishing & scam threat intelligence - a real-time mirror of the PhishDestroy blocklist. Scan any domain and browse 150k+ known-malicious sites across crypto, wallet, and brand-impersonation scams.

A vulnerability was found in Bolt CMS up to 3.7.5. It has been declared as problematic. This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML Attribute Handler. Executing a manipulation of the argument style can lead to HTML injection. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is registered as CVE-2026-11511. It is possible to launch the attack remotely. Furthermore, an exploit is available. The GitHub repository was archived by the owner and is now read-only.

A vulnerability categorized as problematic has been discovered in wpzoom Recipe Card Blocks Lite Plugin up to 3.4.13 on WordPress. This vulnerability affects the function WPZOOM_Helpers::deserialize_block_attributes. The manipulation of the argument summary/notes results in cross site scripting. This vulnerability is cataloged as CVE-2026-3011. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Keycloak on Red Hat. Affected by this vulnerability is an unknown functionality of the file /admin/realms/{realm}/partialImport. Such manipulation leads to incorrect authorization. This vulnerability is uniquely identified as CVE-2026-11577. The attack can be launched remotely. No exploit exists.

A sophisticated cybercriminal group known as UNC3753 has been running an aggressive campaign against US law firms since early 2026, using phone calls, screen-sharing tricks, and remote monitoring software to break into corporate systems and steal sensitive files. The group is also tracked as Luna Moth, Chatty Spider, and Silent Ransom Group, and has been […]

The post UNC3753 Attacking US Law Firms Using Vishing and RMM Tools to Exfiltrate Data appeared first on Cyber Security News.

近期全球范围内出现了针对 AI 数据中心建设的社区抗议活动，公众关注的焦点集中在数据中心的能源消耗与环境影响。

Физики нашли точное объяснение сигналам из системы ASKAP J1745.