Aggregator
成果分享|[USENIX Security 2025] CHAINFUZZ: 精准引爆软件供应链深层漏洞,告别安全警报“狼来了”
10年转瞬即逝:发布于2015年的Windows 10今起正式结束支持 不再提供安全更新
Dire Wolf
You must login to view this content
Dire Wolf
You must login to view this content
CVE-2025-61605 | LabRedesCefetRJ WeGIA up to 3.4.x /pet/profile_pet.php id_pet sql injection (Duplicate CVE-2025-62359 / GHSA-8963-9833-gpx7)
Russian Cybercrime Market Hub Transferring from RDP Access to Malware Stealer Logs to Access
A new evolution is underway in the Russian cybercrime ecosystem: market operators and threat actors are rapidly shifting from selling compromised Remote Desktop Protocol (RDP) access to trading malware stealer logs for unauthorized system entry. This transition marks a significant change in both tactics and impact within the underground forums, affecting organizations and individuals worldwide. […]
The post Russian Cybercrime Market Hub Transferring from RDP Access to Malware Stealer Logs to Access appeared first on Cyber Security News.
What if your privacy tools could learn as they go?
A new academic study proposes a way to design privacy mechanisms that can make use of prior knowledge about how data is distributed, even when that information is incomplete. The method allows privacy guarantees to stay mathematically sound while improving how much useful information can be shared. Researchers from KTH Royal Institute of Technology in Sweden and Inria Saclay in France developed the framework using a measure called pointwise maximal leakage, or PML. Their approach … More →
The post What if your privacy tools could learn as they go? appeared first on Help Net Security.
Argentina’s AI opportunity
国家网络安全通报中心发布重点防范境外恶意网址和恶意IP
XCSSET macOS恶意软件现新变种 新增浏览器攻击与剪贴板劫持功能
国家网络安全通报中心发布重点防范境外恶意网址和恶意IP
XCSSET macOS恶意软件现新变种 新增浏览器攻击与剪贴板劫持功能
CVE-2000-0442 | Qualcomm Qpopper 2.52/2.53 euidl from format string (EDB-19955 / Nessus ID 37275)
CVE-2000-0447 | Network Associates WebShield SMTP 4.5.44 Configuration memory corruption (Nessus ID 10425 / ID 38061)
CVE-2000-0446 | Marty Bochane MDBMS 0.9 Xbx memory corruption (EDB-19966 / Nessus ID 10422)
阿里云(中国)对部分国际地域ECS服务器下调价格 平均按月/按年订阅降价10%
Один рецептор — один запах. Швейцарские учёные поставили под сомнение нобелевскую теорию обоняния
Hackers Attacking macOS Users With Spoofed Homebrew Websites to Inject Malicious Payloads
A sophisticated campaign targeting macOS users has emerged through spoofed Homebrew installer websites that deliver malicious payloads alongside legitimate package manager installations. The attack exploits the widespread trust users place in the popular Homebrew package manager by creating pixel-perfect replicas of the official brew[.]sh installation page, complete with deceptive clipboard manipulation techniques. Security researchers have […]
The post Hackers Attacking macOS Users With Spoofed Homebrew Websites to Inject Malicious Payloads appeared first on Cyber Security News.