Aggregator

A vulnerability identified as problematic has been detected in Mozilla Firefox up to 147. This impacts an unknown function of the component GC. This manipulation causes race condition. This vulnerability is tracked as CVE-2026-2802. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.

A vulnerability labeled as critical has been found in Mozilla Firefox up to 147. Affected is an unknown function of the component WebAssembly. Such manipulation leads to improper check for unusual conditions. This vulnerability is listed as CVE-2026-2801. The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.

A vulnerability, which was classified as problematic, has been found in Mozilla Firefox up to 147 on Android. This issue affects some unknown processing of the component WebAuthn. This manipulation causes an unknown weakness. This vulnerability appears as CVE-2026-2800. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability has been found in Mozilla Firefox up to 147 and classified as critical. This vulnerability affects unknown code of the component HTML. This manipulation causes use after free. This vulnerability is handled as CVE-2026-2799. The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.

A vulnerability was found in Mozilla Firefox up to 147. It has been classified as critical. Impacted is an unknown function of the component HTML. Performing a manipulation results in use after free. This vulnerability was named CVE-2026-2798. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability was found in Mozilla Firefox up to 147. It has been rated as critical. The impacted element is an unknown function of the component GC. The manipulation leads to use after free. This vulnerability is referenced as CVE-2026-2797. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.

A vulnerability identified as very critical has been detected in Juniper Junos OS Evolved. Impacted is an unknown function. The manipulation leads to incorrect permission assignment. This vulnerability is referenced as CVE-2026-21902. Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.

A vulnerability has been found in FasterXML jackson-core up to 2.14.x and classified as critical. This issue affects some unknown processing. Performing a manipulation results in stack-based buffer overflow. This vulnerability is identified as CVE-2025-52999. The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.

破解战备训练难题：ACTE平台让美国空军网络训练告别传统靶场束缚

黑客成功控制了卫星波束和直播信号，并显示了与频道内容无关的文字信息

本周，互联网网络安全态势整体评价为良。

Злоумышленники провели «сложную операцию» против систем Roberts Space Industries.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Qualcomm and Broadcom VMware Aria Operations flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: In […]

ACI Worldwide has launched ACI Connetic for Cards, an integrated card payments suite within ACI Connetic, its cloud-native payments hub. The platform brings together account-to-account payments, card payments, and fraud prevention in one system. ACI’s acquiring, issuing, and ATM and self-service banking solutions process more than 300 billion card transactions each year. ACI Connetic for Cards builds on this capability by bringing these functions onto a unified cloud-native platform. The modular suite supports the full … More →

The post ACI Connetic for Cards unifies card, A2A payments and fraud management on one platform appeared first on Help Net Security.

Иран остался почти без интернета, зато с армией злых хактивистов.

好，我需要帮用户总结这篇文章的内容，控制在100字以内。首先，文章主要讲的是Anthropic公司为他们的编程助手Claude Code添加了语音模式功能。这个功能可以让开发者通过语音指令来操作，比如重构代码或者生成函数。这标志着编程流程向更免提、对话式的方向发展。 接下来，我需要提取关键信息：Claude Code是面向开发者的AI编程助手，新增了语音模式；该功能目前向5%的用户开放，计划在未来几周内推广；启用方法是输入/voice并说出指令。 然后，我要把这些信息浓缩成简洁的句子，确保不超过100字，并且直接描述内容，不需要开头语。例如：“Anthropic为开发者AI编程助手Claude Code添加语音模式功能，用户可通过语音指令操作。目前向5%用户开放，计划推广。”这样既涵盖了主要信息，又符合字数要求。 最后，检查一下是否遗漏了重要细节，并确保语言流畅自然。 Anthropic为开发者AI编程助手Claude Code添加语音模式功能，用户可通过语音指令操作。目前向5%用户开放，计划推广。

ArmorCode has announced AI Exposure Management (AIEM), delivered on the ArmorCode Agentic AI Platform, as the newest solution in its unified exposure management suite. ArmorCode AIEM is a system of action that provides enterprises with comprehensive visibility and control over AI usage across heterogeneous environments while establishing ownership and enforceable governance. ArmorCode AIEM helps organizations accelerate AI adoption with auditable controls and eliminate shadow AI risk. AI adoption is expanding across applications, agents, cloud environments … More →

The post ArmorCode AI Exposure Management identifies, governs, and reduces shadow AI risk appeared first on Help Net Security.

2026年2月28日，美国与以色列联手发动精确打击，伊朗最高领袖阿里·哈梅内伊在德黑兰市中心的官邸被导弹与无

开源情报（OSINT）是指利用公开可获取的信息来源，对特定事件或目标进行情报搜集与研判的方法。