INJ3CTOR3 Deploys JOMANGY Webshell in Advanced FreePBX Attacks
Researchers at Cyble Research & Intelligence Labs (CRIL) have uncovered an advanced cyber c
Aggregator
赛博领鸡蛋:古墓丽影、纪念碑谷3 等6款游戏[5.22~5.28]
3 weeks 6 days ago
Data poisoning nei modelli AI: rischi e soluzioni di remediation
3 weeks 6 days ago
Per condurre con successo un attacco di data poisoning su un modello di machine learning non è neces
欧洲巨石文化社会存在遗传亲缘关系
3 weeks 6 days ago
新石器时代晚期(约公元前 4500 至公元前 2800 年),巨石遗迹(即大型石质建筑结构)在欧洲各地出现。这些建筑作品既反映了当地的传统,同时也暗示了相隔遥远的人群之间存在着影响深远的社会、文化或祖源联系。根据发表在《科学》期刊上的一项研究,研究人员分析了中欧多个相距遥远的巨石文化遗址个体的基因组数据,发现他们之间存在着深厚且持续的生物学关联,表明当时存在着偶尔的跨越大范围地理区域的人口流动、通婚或文化交流。但中欧巨石文化与位于今天的英国以及北欧的巨石文化人群缺乏密切的基因学纽带关系。这表明巨石传统很可能是通过文化(而非通过生物学网络)传播的。
Настроили 2FA и думаете, что спаслись? Подростку из Одессы это не помешало похитить 28 тысяч аккаунтов
3 weeks 6 days ago
Злоумышленники сделали ставку на файлы, о которых пользователи редко вспоминают.
伊朗史上最长断网重创国内经济
3 weeks 6 days ago
伊朗人正遭遇该国有史以来持续最久、程度最剧烈的全面断网,在去年12月全国性抗议已然引发经济危机的情况下,伊朗经济又遭受进一步冲击。近三个月来,企业与客户和供应商的联系被迫切断。商家在与长期合作的国际伙
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Governments
3 weeks 6 days ago
The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker.
Alexander Culafi
【已复现】cPanel&WHM 任意文件读取漏洞(CVE-2026-29205)安全风险通告
3 weeks 6 days ago
致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。
每周高级威胁情报解读(2026.05.15~05.21)
3 weeks 6 days ago
VELVET CHOLLIMA 利用交易应用程序作为诱饵进行信息窃取活动;FrostyNeighbor:新鲜的恶作剧和数字恶作剧;Kazuar:国家级僵尸网络的剖析;Lazarus组织追踪系列——解析OtterCookie
每周高级威胁情报解读(2026.05.15~05.21)
3 weeks 6 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
Роботы научились течь, как живая материя. Инженеры Корнелла создали рой, который сам собирается и распадается — без единого компьютера
3 weeks 6 days ago
Ученые показали роботов, которыми управляет не код, а собственная форма.
微信官方解释为何只能撤回2分钟内的消息
3 weeks 6 days ago
微信官方解释为何只能撤回2分钟内的消息微信官方账号 “微信派” 发文解释了微信消息撤回功能的设计逻辑。文中明确,不同类型消息的撤回时限不同:文字、语音、图片以及视频等消息可在发送后 2 分钟内撤回;而
UK Cybersecurity Innovation SilentGlass Goes Global After Licensing Deal
3 weeks 6 days ago
The UK government has officially licensed SilentGlass, a government-developed cyber securit
【课程】图片拍摄地点分析方法与技术7-10(含视频)
3 weeks 6 days ago
本版块昨天漏发了一个视频,今天补充后重新发送一次。地标(Landmark)的定义与情报价值“如果给你一张没有任何文字信息的图片,你会优先寻找什么来定位?
【课程】图片拍摄地点分析方法与技术11-13(含视频)
3 weeks 6 days ago
地形地貌分析当我们拿到一张没有任何地理标注的自然景观照片时,最先映入眼帘的是什么?
TabulaBili-Plus – 让 B 站暂时忘记你是谁[Chrome]
3 weeks 6 days ago
Cross-Platform NPM Stealer, (Fri, May 22nd)
3 weeks 6 days ago
I found a Node.js stealer that looked pretty well obfuscated. The file was not running out-of-the-b
CVE-2026-40379 | Microsoft Enterprise Security Token Service information disclosure (WID-SEC-2026-1419 / CNNVD-202605-1459)
3 weeks 6 days ago
A vulnerability categorized as problematic has been discovered in Microsoft Enterprise Security Token Service. Affected is an unknown function. Executing a manipulation can lead to information disclosure.
This vulnerability is registered as CVE-2026-40379. It is possible to launch the attack remotely. No exploit is available.
vuldb.com
CVE-2026-43466 | Linux Kernel up to 6.19.8 mlx5e mlx5e_reset_txqsq_cc_pc privilege escalation
3 weeks 6 days ago
A vulnerability was found in Linux Kernel up to 6.19.8. It has been declared as problematic. This impacts the function mlx5e_reset_txqsq_cc_pc of the component mlx5e. Such manipulation leads to privilege escalation.
This vulnerability is listed as CVE-2026-43466. The attack must be carried out from within the local network. There is no available exploit.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-43467 | Linux Kernel up to 6.12.77/6.18.18/6.19.8 do_user_addr_fault denial of service (Nessus ID 313466)
3 weeks 6 days ago
A vulnerability was found in Linux Kernel up to 6.12.77/6.18.18/6.19.8. It has been rated as critical. This vulnerability affects the function do_user_addr_fault. This manipulation causes denial of service.
The identification of this vulnerability is CVE-2026-43467. The attack needs to be done within the local network. There is no exploit available.
Upgrading the affected component is advised.
vuldb.com