Aggregator

MiniMax 发 6 亿港元股票，员工熬满年限即可全额归属；68 岁孙正义推迟退休：再干 10-15 年，全力押注 AI；豆包专业版正式上线：最新 2.1 Pro 模型，包月 68 元起

菲律宾网络犯罪机构已暂时禁止在线电子游戏《GoreBox》，此前初步警方调查显示，据称涉及本周校园枪击事件的两名学生中有一人是该游戏的狂热玩家。“我们正在暂时屏蔽《GoreBox》，作为调查期间的一项

快来注册体验吧~

拒绝丢包！看万卡集群如何飙速。

Google is rolling out new privacy controls for Search services and Google Play, giving you more control over saved history and personalized recommendations. [...]

A 21-year-old using the alias "Snoopy" was sentenced to 18 months in prison for his role in hacking DraftKings accounts in the November 2022 cyberattack. [...]

New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026-20245 in zero-day attacks to create rogue root accounts on targeted devices. [...]

Researchers believe rogue peering was used to connect to the victim's SD-WAN devices to gain admin privileges and root-level access.

A new and stealthy backdoor named Mistic has been quietly targeting corporate networks since April 2026, disguising itself using the names and appearance of legitimate Microsoft endpoint security components. This clever camouflage helps it avoid detection, allowing attackers to maintain a persistent, low-profile foothold inside compromised environments. Security teams across multiple industries are now on […]

The post Mistic Backdoor Blends With Microsoft Endpoint Security Tooling to Evade Detection appeared first on Cyber Security News.

A malicious Microsoft Edge extension dubbed 'Edgecution' has been used in a ransomware attack to escape the browser sandbox and deploy a Python-based backdoor. [...]

Threat actors are once again exploiting the trust people place in everyday workplace tools. A newly discovered phishing campaign is using fake Microsoft Teams notifications to trick employees into downloading a remote access tool that gives attackers full control over their systems. The operation is carefully designed to look legitimate at every step, making it […]

The post Microsoft Teams Impersonation Campaign Enables Unauthorized Access Through RMM Abuse appeared first on Cyber Security News.

A dangerous Android banking trojan is once again spreading through the Google Play Store, hiding inside what appears to be a simple document reader app. The app has already been downloaded more than 100,000 times, putting a large number of Android users at serious risk of financial theft and personal data loss. The malware in […]

The post Fake Document Reader in The Google Play Store with 100K Downloads Deliver Android Malware appeared first on Cyber Security News.

Operation Endgame disrupts StealC malware infrastructure, seizing millions of stolen credentials and targeting servers used in global cybercrime campaigns.

Persistent cybercrime, social engineering, and infrastructure threats continue to plague the FIFA 2026 World Cup across the US, Canada, and Mexico.

Microsoft touted its latest action against malware infrastructure as a new approach aimed at the full cybercrime "supply chain." Europol said more than 300 servers were targeted.

Учёные получили устойчивую пространственно-временную структуру в материале, похожем на основу дисплеев.

A vulnerability marked as problematic has been reported in Apache Shiro. This issue affects some unknown processing of the component Remember-me Cookie Handler. This manipulation causes session expiration. This vulnerability is handled as CVE-2026-56130. The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Apache Shiro. This vulnerability affects unknown code of the component Guice-Web. The manipulation results in improper authentication. This vulnerability is known as CVE-2026-56091. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.

A vulnerability identified as critical has been detected in Google Chrome on macOS. This affects an unknown part of the component Bluetooth. The manipulation leads to use after free. This vulnerability is traded as CVE-2026-13035. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Google Chrome on Windows. Affected by this issue is some unknown functionality of the component Autofill. Executing a manipulation can lead to use after free. This vulnerability appears as CVE-2026-13038. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.