Aggregator

JPCERT/CCは、「JSAC2026 開催レポート DAY 2」を公開しました。本稿では、DAY 2 Main Trackの講演について紹介しています。

A vulnerability was found in patrickjuchli basic-ftp up to 5.1.x and classified as critical. This affects the function downloadToDir. The manipulation results in path traversal. This vulnerability was named CVE-2026-27699. The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.

好，我需要帮用户总结这篇文章的内容，控制在100字以内。首先，文章讲的是李开复回应Anthropic关于中国公司“蒸馏”其AI模型的指控。李开复认为这种指控是小题大做，并指出Anthropic自己也有侵权的历史，曾非法抓取大量图书用于训练，还支付了巨额赔偿金。用户要求直接写描述，不需要开头。 接下来，我要提取关键信息：李开复、回应、蒸馏指控、小题大做、Anthropic侵权历史、非法抓取图书、集体诉讼、15亿美元和解金。然后把这些信息简洁地整合成一段话，不超过100字。 可能的结构是：李开复回应Anthropic的蒸馏指控，认为其小题大做，并指出Anthropic曾因非法抓取图书被起诉并支付巨额赔偿。 检查字数是否符合要求，确保信息准确且简洁。 李开复回应美国AI企业Anthropic对中国公司“蒸馏”其AI模型的指控，认为其“小题大做”，并指出Anthropic自身曾因非法抓取数百万册图书用于AI训练而面临集体诉讼并支付15亿美元和解金。

Tycoon 2FA was dismantled this week by law enforcement and industry partners including TrendAI™. The phishing-as-a-service platform offered MFA bypass services using adversary-in-the-middle (AitM) proxying.

GreyNoise intelligence is now available across the CrowdStrike Falcon platform, bringing internet-wide scanning context to SIEM queries, SOAR workflows, and AI-driven triage.

AI智能体的安全是一个“信任转移”问题。

This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a VMware Aria Operations vulnerability tracked as CVE-2026-22719 to its Known Exploited Vulnerabilities catalog, flagging the flaw as exploited in attacks. [...]

Facebook is experiencing a global outage since 4:15 PM ET, with users reporting they cannot access their accounts. Facebook users worldwide report problems while attempting to access their accounts. The outage started around 4:15 PM ET. Upon attempting to access their account, users are presented the following message: “Account Temporarily Unavailable. Your account is currently unavailable due […]

在为期三天的战斗中，伊朗军队袭击了位于巴林的美国海军第五舰队总部，以及位于埃尔比勒、科威特和迪拜的军事基地。

结合美国、以色列情报体系核心优势及以伊冲突、巴以冲突等实践经验，叠加最新行动披露细节，可完整推演美以联合猎杀哈梅内伊的全链条情报运作与行动逻辑，整个过程呈现 “长期潜伏渗透 + 技术精准锁定 + 协同突袭打击 + 认知战收尾” 的闭环特征。

The multinational Dutch paint company AkzoNobel has confirmed to BleepingComputer that hackers breached the network of one of its U.S. sites. [...]

A vulnerability, which was classified as critical, has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulation of the argument ST causes os command injection. This vulnerability only affects products that are no longer supported by the maintainer. The identification of this vulnerability is CVE-2026-3485. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability described as critical has been identified in Weintek cMT-3072XH2 easyweb 2.1.53. Impacted is an unknown function. Such manipulation leads to command injection. This vulnerability is traded as CVE-2024-55020. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical has been found in Weintek cMT-3072XH2 easyweb 2.1.53. This impacts an unknown function. The manipulation of the argument HMI Name leads to command injection. This vulnerability is traded as CVE-2024-55022. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Weintek cMT-3072XH2 easyWeb 2.1.53. Affected by this vulnerability is an unknown functionality of the file download_wb.cgi. This manipulation causes improper access controls. This vulnerability is handled as CVE-2024-55019. The attack can be initiated remotely. There is not any exploit available.

A vulnerability, which was classified as critical, was found in itsourcecode College Management System 1.0. This vulnerability affects unknown code of the file /admin/student-fee.php. Such manipulation of the argument roll_no leads to sql injection. This vulnerability is referenced as CVE-2026-3486. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability categorized as critical has been discovered in MediaTek MT2735, MT2737, MT6739, MT6761, MT6762, MT6762D, MT6762M, MT6763, MT6765, MT6765T, MT6767, MT6768, MT6769, MT6769K, MT6769S, MT6769T, MT6769Z, MT6771, MT6779, MT6781, MT6783, MT6785, MT6785T, MT6785U, MT6789, MT6833, MT6833P, MT6835, MT6835T, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6878, MT6878M, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6895TT, MT6896, MT6897, MT6899, MT6980, MT6980D, MT6983, MT6983T, MT6985, MT6985T, MT6989, MT6989T, MT6990, MT6991, MT8666, MT8667, MT8668, MT8673, MT8675, MT8676, MT8678, MT8755, MT8765, MT8766, MT8766R, MT8768, MT8771, MT8781, MT8786, MT8788, MT8788E, MT8789, MT8791, MT8791T, MT8792, MT8793, MT8795T, MT8797, MT8798, MT8863, MT8873, MT8883 and MT8893 LR12A/LR13/NR15/NR16/NR17. Affected is an unknown function of the component Base Station Handler. Such manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2026-20434. The attack may be launched remotely. There is no exploit available. A patch should be applied to remediate this issue.