Aggregator
SonicWall 云备份所有用户的防火墙配置均被盗
175 Malicious npm Packages with 26,000 Downloads Used in Credential Phishing Campaign
175 Malicious npm Packages with 26,000 Downloads Used in Credential Phishing Campaign
Открыли страницу с Pull Request'ом — передали хакеру доступ к своим секретам. Теперь это реальность GitHub
七部门联合印发《实施意见》!360为“人工智能+交通运输”注入AI新动能
Мифы об анонимности. Почему VPN, Tor и режим инкогнито не делают вас невидимым — и какие ошибки перечеркивают всю защиту.
巧用异或绕过限制导致rce
【安全419视频号】直播预告|大模型与智能体时代,如何筑牢安全底座?
六大网络安全趋势重塑防御格局
Attackers are exploiting Gladinet CentreStack, Triofox vulnerability with no patch (CVE-2025-11371)
CVE-2025-11371, an unauthenticated Local File Inclusion vulnerability in Gladinet CentreStack and Triofox file-sharing and remote access platforms, is being exploited by attackers in the wild. While Gladinet is aware of the vulnerability and of its exploitation, a patch is still in the works. In the meantime, users can and should mitigate the flaw by disabling a handler within their installation’s Web.config file. “We have observed in-the-wild exploitation of this vulnerability impacting three customers so far,” … More →
The post Attackers are exploiting Gladinet CentreStack, Triofox vulnerability with no patch (CVE-2025-11371) appeared first on Help Net Security.
Red Pilling of Politics – Court Strikes Down California Law on Political Deepfakes
California’s AB 2655 aimed to fight AI-generated political deepfakes, but a federal court struck it down under Section 230, highlighting the clash between free speech and AI regulation.
The post Red Pilling of Politics – Court Strikes Down California Law on Political Deepfakes appeared first on Security Boulevard.