Aggregator

A vulnerability labeled as critical has been found in Com Newsfeeds on Joomla. The affected element is an unknown function of the file index.php of the component Newsfeed. The manipulation of the argument feedid results in sql injection. This vulnerability is known as CVE-2010-1739. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability was found in Ninjaforge NinjaMonials and classified as critical. This issue affects some unknown processing of the file index.php. Such manipulation of the argument Itemid leads to sql injection. This vulnerability is traded as CVE-2010-4991. The attack may be launched remotely. Furthermore, there is an exploit available.

8 月 20 日北京时间约 00:34 至 01:48 期间，中国 HTTPS 访问短暂受限。苹果报告 APP Store 在此期间遇到问题，但没有给出更多解释。分析显示，所有指向 TCP 443 端口的连接无条件注入伪造的 TCP RST+ACK 包，导致连接中断；无条件的 RST+ACK 注入仅发生在 TCP 443 端口（常用于 HTTPS），未见于其他常见端口（如 22、80、8443）；无条件注入同时扰乱了出入境双方向的连接，但触发机制不对称。

一、背景概述在网络安全与人工智能交汇的领域，一个引人深思的问题日益凸显：新一代网络攻击背后的“智能大脑”——一

シックス・アパート株式会社が提供するMovable Typeには、複数の脆弱性が存在します。

A vulnerability was found in IBM Engineering Requirements Management DOORS Next 7.0.2/7.0.3. It has been rated as critical. This affects an unknown part of the component Request Handler. The manipulation leads to time-of-check time-of-use. This vulnerability is referenced as CVE-2024-41787. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.

A vulnerability identified as problematic has been detected in Shenzhen Libituo Technology LBT-T300-T400 3.2. This affects the function tftp_image_check of the file rc. The manipulation leads to incorrect default permissions. This vulnerability is referenced as CVE-2025-29570. The attack can only be performed from a local environment. No exploit is available.

A vulnerability classified as problematic has been found in IBM Sterling Partner Engagement Manager 6.1.0/6.2.0/6.2.2. This affects an unknown function of the component Helm Chart. The manipulation leads to password in configuration file. This vulnerability is listed as CVE-2025-33093. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability labeled as problematic has been found in IBM 4769 Developers Toolkit up to 7.5.52. Impacted is an unknown function of the component Hardware Security Module. The manipulation results in uncontrolled memory allocation. This vulnerability is identified as CVE-2025-3632. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.

A vulnerability labeled as critical has been found in CodePhiliaX Chat2DB up to 0.3.7. This affects an unknown function of the file ai/chat2db/server/web/api/controller/data/source/DataSourceController.java of the component JDBC Connection Handler. The manipulation results in sql injection. This vulnerability is identified as CVE-2025-9148. The attack can be executed remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability described as critical has been identified in Surbowl dormitory-management-php up to 9f1d9d1f528cabffc66fda3652c56ff327fda317. Affected is an unknown function of the file /admin/violation_add.php?id=2. Such manipulation of the argument ID leads to sql injection. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is listed as CVE-2025-9150. The attack may be performed from a remote location. In addition, an exploit is available. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed.

A vulnerability classified as critical has been found in LiuYuYang01 ThriveX-Blog up to 3.1.7. Affected by this vulnerability is the function updateJsonValueByName of the file /web_config/json/name/web. Performing manipulation results in improper authorization. This vulnerability is cataloged as CVE-2025-9151. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in IBM App Connect Enterprise Certified Container. It has been classified as critical. This issue affects some unknown processing. This manipulation causes weak password requirements. This vulnerability is tracked as CVE-2025-1993. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.

HackerNews 编译，转载请注明出处： 在俄罗斯今年举行胜利日阅兵之际，支持克里姆林宫的黑客劫持了一颗为乌克兰提供电视服务的在轨卫星。乌克兰观众看到的不是常规节目，而是从莫斯科传输的阅兵画面：坦克、士兵和武器组成的洪流。这一威慑性信息表明，21世纪的战争不仅发生在陆地、海洋和空中，还延伸至网络空间和外层空间。 卫星：短期内的安全挑战 禁用卫星无需一枪一弹即可造成毁灭性打击——通过攻击卫星安全软件或干扰其与地球的信号传输即可实现。专注于供应链安全的网络安全公司NetRise首席执行官汤姆·佩斯（Tom Pace）指出：“若能阻碍卫星通信能力，就能引发重大混乱。”曾在能源部处理网络事务的海军陆战队退伍军人佩斯补充道：“想想全球定位系统（GPS），若民众失去它，混乱将难以想象。” 目前有超过1.2万颗运行中的卫星环绕地球，它们不仅在广播通信中扮演关键角色，还支撑着军事行动、GPS等导航系统、情报收集和经济供应链。卫星还是导弹发射早期预警的核心，对国家安全构成重大隐患，因而成为削弱对手经济或战备能力的主要目标。支持俄罗斯的黑客劫持乌克兰电视信号，正是此类心理威慑的典型案例。 攻击卫星的薄弱环节 黑客通常瞄准卫星或其与地球通信的软硬件中最脆弱的部分。尽管在轨设备本身可能安全，但过时的软件仍易被利用。2022年俄罗斯入侵乌克兰期间，黑客针对乌克兰政府和军方使用的美国卫星公司Viasat发起攻击。此次被基辅归咎于莫斯科的袭击，通过恶意软件感染数万台调制解调器，导致欧洲大片区域服务中断。 太空核武器威胁 美国国家安全官员透露，俄罗斯正在研发一种基于太空的核武器，旨在一次性摧毁几乎所有低地球轨道卫星。该武器结合物理攻击与核组件：物理冲击波将摧毁更多卫星，而核组件则烧毁其电子系统。美国俄亥俄州共和党众议员迈克·特纳（Mike Turner）公开警告该技术后，美方解密了相关信息。特纳强调，若部署此类武器将违反禁止在太空部署大规模杀伤性武器的国际条约，并可能使低地球轨道长达一年无法使用，导致美国及其盟友面临经济动荡甚至核打击风险。尽管中俄也将损失卫星，但两国对同类卫星的依赖度较低。 特纳将这种尚未部署的武器比作1957年开启太空时代的苏联卫星“斯普特尼克”，并警告：“若此类反卫星核武器进入太空，将是太空时代的终结。这堪比太空版的古巴导弹危机。” 月球资源争夺战 月球和小行星上发现的珍贵矿物可能引发未来冲突，各国正竞相开发新技术和能源。美国国家航空航天局（NASA）代理局长肖恩·达菲（Sean Duffy）本月宣布将向月球运送小型核反应堆，强调需“赶在中国或俄罗斯之前抵达”。月球富含氦-3，科学家认为其可用于核聚变产生巨量能源。伦敦网络安全专家约瑟夫·鲁克（Joseph Rooke）指出，尽管该技术需数十年成熟，但在此期间对月球的控制权将决定新兴超级大国的地位。 中俄已宣布未来几年在月球建设核电站的计划，而美国正推进登月及火星任务。人工智能和能源需求可能加速这场竞赛。俄罗斯驻美使馆未回应置评请求。中国驻美使馆发言人刘鹏宇表示，中国“反对任何地外军备竞赛”，并指责美国“持续扩张太空军力，企图将太空变为战场”。 美国的太空安全应对 各国正争相建立火箭和太空计划以减少对外国卫星的依赖。2019年成立的美国太空军旨在保护美国太空利益及卫星安全。尽管规模小于陆军、海军或空军，但其正在扩张。美军操作的无人驾驶太空飞机X-37B近期结束超过一年的在轨机密任务返回地球。太空军声明强调：“太空是作战域，太空军的职责是通过掌控该领域实现国家安全目标。” 美国在冷战后的太空主导地位如今面临中俄的新威胁。特纳表示，美国必须采取行动阻止中俄取得优势，避免太空武器的恐怖前景成为现实。“我们必须密切关注，防患于未然。”       消息来源： securityweek； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

可信数据空间作为全新的数据流通利用基础设施，正从政策理念的“规划图”落地成为全面建设的“施工图”。可信数据空间在实现数据资源的规模化流通、共享利用，以及支撑构建全国一体化数据市场等方面，发挥着重要的载体作用。

HackerNews 编译，转载请注明出处： 根据“我被挂了吗”（Have I Been Pwned）平台的最新数据，安联人寿（Allianz Life）7月遭遇的网络攻击导致约110万客户的个人信息泄露。此次攻击针对云端客户关系管理（CRM）系统，是广泛针对Salesforce托管数据库企业的大规模攻击活动的一部分。 安联人寿（德国安联集团美国子公司）表示，黑客获取了其140万客户中“大部分” 人员的数据，包括客户、金融专业人士及员工的信息。该公司确认攻击者窃取了个人详细资料，但当时未提供具体数字。 “我被挂了吗”平台披露的泄露数据类型包括： 姓名 出生日期 性别 电子邮箱地址 电话号码 家庭住址 安联人寿在向州政府提交的文件中还证实，社会安全号码（SSN） 同样被窃取。 “此次110万客户的敏感信息泄露影响重大，”ThreatAware首席执行官乔恩·阿博特（Jon Abbott）表示，“CRM工具存储的高价值信息正是攻击者的目标，这些数据可被其他犯罪分子用于身份盗窃和钓鱼攻击。” 攻击关联ShinyHunters组织 安全研究人员将事件归因于黑客组织ShinyHunters。该组织近期还入侵了谷歌、澳洲航空（Qantas）、Workday及多个零售品牌的Salesforce系统，以通过社会工程手段诱骗员工提供未授权访问而闻名。 “ShinyHunters等组织依赖快速推进的社会工程策略——通常通过致电或邮件威胁受害企业员工，若勒索未果则建立泄露网站施压支付赎金，”阿博特补充道。 调查显示，攻击者通过恶意OAuth应用渗透Salesforce实例后下载企业数据库。安联案例中，泄露文件据称包含数百万条记录，涉及投保人、顾问及合作机构。 企业响应与行业影响 安联人寿以调查仍在进行为由未回应最新发现，但承诺为受影响个人提供两年免费身份监控服务。 阿博特强调：“ShinyHunters的攻击模式凸显了基础安全措施的重要性，包括准确的资产清单、防篡改的身份验证和强化的服务台流程。” 安联人寿数据泄露是今年系列重大事件中的最新一起，加剧了金融和科技行业对广泛使用的云端系统安全性的担忧。       消息来源： infosecurity-magazine； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

A vulnerability was found in Intelbras InControl up to 2.21.59. It has been rated as problematic. The impacted element is an unknown function of the component Dispositivos Edição Page. The manipulation of the argument Senha de Comunicação leads to unprotected storage of credentials. This vulnerability is documented as CVE-2025-4286. The attack can be initiated remotely. Additionally, an exploit exists. According to the vendor this issue should be fixed in a later release.

A vulnerability has been found in Soosyze CMS 2.0 and classified as problematic. The impacted element is an unknown function of the file /user/login. The manipulation leads to improper restriction of excessive authentication attempts. This vulnerability is documented as CVE-2025-52392. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability was found in Dell OpenManage Enterprise up to 4.2. It has been declared as problematic. This vulnerability affects unknown code of the component Backup. Executing manipulation can lead to sensitive information in log files. This vulnerability appears as CVE-2025-38745. The attack may be performed from a remote location. There is no available exploit.

A vulnerability classified as critical has been found in Kubernetes Image Builder up to 0.1.44. Affected by this issue is some unknown functionality. This manipulation causes hard-coded credentials. This vulnerability is handled as CVE-2025-7342. The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.