【安全圈】aaPanel(宝塔面板)数据库权限查询逻辑存在 SQL 注入漏洞
《网络安全标识管理办法》公开征求意见
Aggregator
【安全圈】华硕 1TB 数据遭窃:官方回应仅供应商受影响,未波及用户与内部系统
1 day 16 hours ago
《网络安全标识管理办法》公开征求意见
【安全圈】违规收集使用个人信息,虎牙直播、呷哺呷哺等 69 款 App 被通报
1 day 16 hours ago
《网络安全标识管理办法》公开征求意见
【安全圈】aaPanel(宝塔面板)数据库权限查询逻辑存在 SQL 注入漏洞
1 day 16 hours ago
《网络安全标识管理办法》公开征求意见
Skills Shortages Trump Headcount as Critical Cyber Challenge
1 day 16 hours ago
ISC2 report reveals 59% of global organizations have critical or significant skills shortages
Defensie stelt uit voorzorg tijdelijk schietverbod 120mm mortiergranaten in
1 day 16 hours ago
Tijdens een oefening van de multinationale battlegroup in Litouwen heeft zich afgelopen weekend een ernstig ongeval voorgedaan bij Belgische collega’s. Bij het vuren met een Belgisch 120mm mortiersysteem is een militair ernstig gewond geraakt en vervolgens aan zijn verwondingen overleden. De Belgische autoriteiten onderzoeken de oorzaak van dit tragische ongeval.
Apple не прогнулась – Индия сдала назад. Власти экстренно свернули программу «тотальной слежки» на смартфонах
1 day 16 hours ago
Индия отказалась от обязательной установки госприложения Sanchar Saathi на смартфоны после критики за возможную слежку.
Hackers Using Evilginx to Steal Session Cookies and Bypass Multi-Factor Authentication Tokens
1 day 16 hours ago
A sophisticated phishing toolkit known as Evilginx is empowering attackers to execute advanced attacker-in-the-middle (AiTM) campaigns with alarming success. These attacks are engineered to steal temporary session cookies, allowing threat actors to sidestep the critical security layer provided by multi-factor authentication (MFA). A concerning surge in this method has been observed, with a notable impact […]
The post Hackers Using Evilginx to Steal Session Cookies and Bypass Multi-Factor Authentication Tokens appeared first on Cyber Security News.
Tushar Subhra Dutta
清华大学 | 揭示电子邮件传输中间路径的依赖模式和集中化
1 day 16 hours ago
本文首次对电子邮件中间路径的生态系统开展了大范围测量研究。
React框架被曝最高危险等级漏洞,阿里云一键防护指南速览
1 day 16 hours ago
五部门意见印发:加快数字人才队伍建设
1 day 17 hours ago
360以产教融合作答数字人才“时代考题”
行业唯一 | 360大模型卫士获评首届“AI领航杯”技术创新奖
1 day 17 hours ago
领航AI技术,守护AI安全
New ‘Sryxen’ Stealer Bypasses Chrome Encryption via Headless Browser Technique
1 day 17 hours ago
A new information stealer called Sryxen has emerged in the underground malware market, targeting Windows systems with advanced techniques to harvest browser credentials and sensitive data. Sold as Malware-as-a-Service, this C++ based threat demonstrates how modern stealers are adapting to overcome browser security improvements, particularly Google Chrome’s recently implemented App-Bound Encryption protection. Sryxen operates as […]
The post New ‘Sryxen’ Stealer Bypasses Chrome Encryption via Headless Browser Technique appeared first on Cyber Security News.
Tushar Subhra Dutta
Qilin
1 day 17 hours ago
You must login to view this content
cohenido
登榜 2025 中国AI Agent 潜力榜!青藤领跑安全智能体赛道
1 day 17 hours ago
When ERP Systems Become the Attack Surface
1 day 17 hours ago
Skills Needed: Enterprise Architecture, Configuration and Vulnerability Management
When a critical vulnerability surfaces in ERP systems such as the Oracle E-Business Suite flaw, attackers can go well beyond a single compromised server. The flaw exposed the need for cyber professionals who understand enterprise architecture, secure configuration and vulnerability interpretation.
When a critical vulnerability surfaces in ERP systems such as the Oracle E-Business Suite flaw, attackers can go well beyond a single compromised server. The flaw exposed the need for cyber professionals who understand enterprise architecture, secure configuration and vulnerability interpretation.
Utilities Warn US Grid at Risk as Federal Cyber Funds Dry Up
1 day 17 hours ago
Federal Cuts Threaten Grid Security as Nation-State Hackings Escalate, Analysts Say
Cybersecurity leaders told Congress that U.S. energy systems are already compromised by state-backed actors - chiefly China - and warned that shrinking federal support for grid security programs threatens to worsen exposure as utilities face escalating threats with limited resources.
Cybersecurity leaders told Congress that U.S. energy systems are already compromised by state-backed actors - chiefly China - and warned that shrinking federal support for grid security programs threatens to worsen exposure as utilities face escalating threats with limited resources.
CISA Warns of Severe Flaws in Nuclear Med Tracking Software
1 day 17 hours ago
Mirion Medical Says Bugs Are Fixed in New Release of BioDose/NMIS Software
U.S. federal authorities are warning that several high-severity vulnerabilities discovered in Mirion Medical Co. inventory tracking software used by nuclear medicine departments could allow attackers to modify program executables and gain access to sensitive information.
U.S. federal authorities are warning that several high-severity vulnerabilities discovered in Mirion Medical Co. inventory tracking software used by nuclear medicine departments could allow attackers to modify program executables and gain access to sensitive information.
Phishing, privileges and passwords: Why identity is critical to improving cybersecurity posture
1 day 17 hours ago
Identity is effectively the new network boundary. It must be protected at all costs.
Advancing Innovation at the Akamai Greater China Partner Summit 2025
1 day 17 hours ago
Fiona Zhang