Aggregator

Author: Jiashuo Liang and Guancheng Li of Tencent Xuanwu Lab

0x00 前言

大语言模型（LLM）正在从简单的对话工具演化为能够编写代码、操作浏览器、执行系统命令的智能体。随着大模型应用的演进，提示词注入攻击的威胁也在不断升级。

设想这样一个场景：你让AI助手帮你编写代码，它却突然开始执行恶意指令，控制了你的电脑。这种看似科幻的情节，如今正在变为现实。

本文将介绍一种新型的提示词注入攻击范式。攻击者只需掌握一套“通用触发器”，就能精确控制大模型输出任意攻击者指定的内容，从而利用AI智能体实现远程代码执行等高风险操作。

LosPollos, TacoLoco, Adtrafico — за забавными именами скрывается мафия мобильного мошенничества.

Google confirms a data breach by ShinyHunters hackers, who used a vishing scam to access a Salesforce database with small business customer info.

Open source drives modern software—but with innovation comes risk. Learn how Sonatype secures the software supply chain to enable safer, faster delivery.

The post Securing the AI Era: Sonatype Safeguards Open Source Software Supply Chains  appeared first on Security Boulevard.

A vulnerability was found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0. It has been declared as problematic. This vulnerability affects unknown code of the component Optimizer. The manipulation leads to denial of service. This vulnerability was named CVE-2025-50098. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0. This affects an unknown part of the component DML. The manipulation leads to improper authorization. This vulnerability is uniquely identified as CVE-2025-50078. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in mio. This affects an unknown part of the component Token Handler. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2024-27308. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0 and classified as critical. This vulnerability affects unknown code of the component Encryption. The manipulation leads to improper authorization. This vulnerability was named CVE-2025-50097. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0. It has been rated as problematic. This issue affects some unknown processing of the component Thread Pooling. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2025-50100. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0. Affected is an unknown function of the component InnoDB. The manipulation leads to improper authorization. This vulnerability is traded as CVE-2025-50085. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0. Affected by this vulnerability is an unknown functionality of the component DDL. The manipulation leads to improper authorization. This vulnerability is known as CVE-2025-50093. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Socket’s Threat Research Team has uncovered a sophisticated supply chain attack targeting developers integrating with the WhatsApp Business API. Two malicious npm packages, naya-flore and nvlore-hsc, published by the npm user nayflore using the email [email protected], disguise themselves as legitimate WhatsApp socket libraries. These packages exploit the growing ecosystem of third-party tools for WhatsApp automation, […]

The post Weaponized npm Packages Target WhatsApp Developers with Remote Kill Switch appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

“In an Exchange hybrid deployment, an attacker who first gains administrative access to an on-premises Exchange server could potentially escalate privileges within the organization’s connected cloud environment without leaving easily detectable and auditable trace,” Microsoft has announced on Wednesday. The privilege escalation can be performed by exploiting CVE-2025-53786, a newly disclosed vulnerability that stems from Exchange Server and Exchange Online sharing the same service principal – i.e., the Office 365 Exchange Online application – in … More →

The post Microsoft urges admins to plug severe Exchange security hole (CVE-2025-53786) appeared first on Help Net Security.

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
DSPM has become essential in today’s complex security landscape. This piece explores how organizations are evolving beyond basic deployment, the trends reshaping DSPM, and how Netwrix helps deliver continuous, actionable data security at scale. Data Security Posture Management (DSPM) has rapidly matured into a critical component of modern cybersecurity. Today’s security landscape—defined by hybrid environments, … Continued

Success in cybersecurity is when nothing happens, plus other standout themes from two of the event’s keynotes

A vulnerability was found in Antabot White-Jotter 0.22. It has been declared as critical. This vulnerability affects the function CookieRememberMeManager of the file ShiroConfiguration.java of the component com.gm.wj.config.ShiroConfiguration. The manipulation with the input EVANNIGHTLY_WAOU leads to deserialization. This vulnerability was named CVE-2025-8708. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #621105 / VDB-319138

A vulnerability was found in Huuge Box App 1.0.3 on Android. It has been classified as problematic. This affects an unknown part of the file AndroidManifest.xml of the component com.huuge.game.zjbox. The manipulation leads to improper export of android application components. This vulnerability is uniquely identified as CVE-2025-8707. Local access is required to approach this attack. Furthermore, there is an exploit available.

In a recent podcast interview with Cybercrime Magazine host, Davie Braue, Scott Schober, Cyber Expert, Author of "Hacked Again," and CEO of Berkeley Varitronics Systems reflect on a 2006 data breach which served as a cybersecurity wake up call for the Department of Veterans Affairs and the rest of the federal government. The podcast can be listened to in its entirety below.

The post Human Error: Lessons from the 2006 VA Data Breach appeared first on Security Boulevard.

A vulnerability was found in EyouCMS 1.6.7 and classified as problematic. Affected by this issue is some unknown functionality of the file /login.php?m=admin&c=System&a=web&lang=cn. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-52680. The attack may be launched remotely. There is no exploit available.