Aggregator

A vulnerability classified as critical has been found in Microsoft Office and OneNote. This affects an unknown part. The manipulation leads to improper restriction of names for files and other resources. This vulnerability is uniquely identified as CVE-2025-21402. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in NeoMutt and classified as problematic. Affected by this issue is some unknown functionality of the component Header Field Handler. The manipulation of the argument In-Reply-To leads to insufficient verification of data authenticity. This vulnerability is handled as CVE-2024-49394. The attack may be launched remotely. There is no exploit available.

奇安信集团漏洞补丁运营团队文档信息奇安信集团最新补丁库（V6版本：2025.01.15.1，V10版本：2025.01.15.1000）已发布，本次更新推送了34个微软安全补丁，修复了142个安全漏洞

宁波城市大模型创新联合体成立，360引领城市发展新纪元

Сервисы корпорации под угрозой из-за рекламы нарушающих правил приложений.

HP Wolf highlighted novel techniques used by attackers to bypass email protections, including embedding malicious code inside images and utilizing GenAI

IT-Harvest launched HarvestIQ.ai, a platform featuring two AI assistants designed to redefine how professionals navigate the cybersecurity landscape. The Analyst AI provides access to IT-Harvest’s comprehensive database of 4,070 cybersecurity vendors, offering users instant insights into market players, trends, and innovations. Meanwhile, the Architect AI empowers users with tailored guidance on cybersecurity products, leveraging IT-Harvest’s in-depth analysis of over 11,300 products to help organizations make informed decisions about their cybersecurity strategies. “HarvestIQ.ai is a game-changer … More →

The post HarvestIQ.ai provides actionable insights for cybersecurity professionals appeared first on Help Net Security.

A vulnerability classified as critical has been found in Azzaroco WP SuperBackup Plugin up to 2.3.3 on WordPress. This affects an unknown part. The manipulation leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2024-56064. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Минобороны ФРГ покидает X на фоне политического конфликта.

网络安全是一个知识密集型行业，对每一个行业从业者来说，都需要通过不断学习，及时获取国内外最新的网络安全动态，了解先进安全技术发展趋势。为了回馈广大读者一直以来对安全牛的关注和支持，我们在2025年新年

新闻速览•六部门印发《关于完善数据流通安全治理 更好促进数据要素市场化价值化的实施方案》•TikTok在美关停在即，特朗普有意挽救•CISA发布人工智能网络安全协作手册•勒索软件新伎俩曝光：90分钟内

该组织缺乏经验，预计难以长期存活

关注我们带你读懂网络安全据安全厂商披露，FunkSec勒索软件组织使用AI支撑多项事情，如生成代码、自主运营等；据分析，FunkSec的成员缺乏经验，依赖于被重复使用的攻击战术，技术能力有限，预计很难

关注我们带你读懂网络安全腾讯称具体情况正在沟通核实；为避免用户损失，已先行全额补偿。正在新闻热点组1月12日晚6点48分，贵州网友张兰（化名）微信收到“到店刷脸支付开通成功”和“微信支付成功”的通知。

登录 注册

英国、日本和意大利在 2022 年宣布联合研制第六代战斗机，预计 2035 年前服役，2025 年度末着手制造试制机。新一代的战斗机预计将具有隐身能力、集成 AI 技术，以及遥控无人机群的能力。参与新战斗机研制的公司包括日本三菱重工、英国 BAE 系统公司，以及意大利的 Leonardo SpA，三国将分摊研发费用。按照分工，三菱重工将负责制造机身，参与 F35 战斗机项目的 BAE 负责机载系统，Leonardo 负责包括 AI 在内的机身控制。

Regula has updated its Regula Document Reader SDK. Now, the software fully supports the new Digital Travel Credential (DTC) format, aligned with the International Civil Aviation Organization (ICAO) standards. This enhancement enables governments, airlines, and border control authorities worldwide to process travel documents with security, efficiency, and ease—whether on-site or remotely. The DTC is a secure digital solution that streamlines travel experiences. It consolidates key personal information into a single virtual document that travelers can … More →

The post Regula updates Document Reader SDK with full support for Digital Travel Credentials appeared first on Help Net Security.