Aggregator

拆解多种常见的混淆手法、分析多种优秀开源混淆器的实现

WordPress插件漏洞致超万网站面临管理员被劫持风险

看雪论坛作者ID：Brinmon

Open MPIC is an open-source framework designed to help Certificate Authorities (CAs) meet new Multi-Perspective Issuance Corroboration (MPIC) requirements from the CA/Browser Forum. Developed with contributions from Princeton and Sectigo, it helps mitigate BGP hijack risks through globally distributed validation, quorum logic, and flexible deployment options. Open MPIC is a practical, evolving solution that advances the resilience of the WebPKI.

The post Open MPIC: The open-source path to secure Multi-Perspective Issuance Corroboration appeared first on Security Boulevard.

Cybersecurity leaders aren’t just dealing with attacks—they’re also protecting trust, keeping systems running, and maintaining their organization’s reputation. This week’s developments highlight a bigger issue: as we rely more on digital tools, hidden weaknesses can quietly grow.  Just fixing problems isn’t enough anymore—resilience needs to be built into everything from the ground up.

A reliable VMware environment reporting tool, RVTools, was momentarily infiltrated earlier this week on May 13, 2025, to disseminate the sneaky Bumblebee loader virus, serving as a sobering reminder of the vulnerabilities present in software supply chains. This incident, detected by a security operations team through a high-confidence alert from Microsoft Defender for Endpoint, revealed […]

The post Hackers Exploit RVTools to Deploy Bumblebee Malware on Windows Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

报告人：杨晨源（伊利诺伊大学厄巴纳-香槟分校） 报告时间：5月23日 周五下午 15:00

Methaphone: когда нет телефона, но хочется достать что-то из кармана.

微软今年迎来了成立五十周年。过去五十年，微软的 Windows 操作系统已成为数字基础设施的一部分，以至于世界很多地方仍然依赖于早就过时的 Windows 版本和旧电脑。弗吉尼亚理工大学研究旧技术维护的副教授 Lee Vinsel 表示，某种程度上 Windows 是终极基础设施，是比尔盖茨如此富有的原因，Windows 系统融入到生活的方方面面，证明了微软的成功和神奇之处。ATM 专家 Elvis Montiero 称，很多 ATM 机器仍然运行 Windows XP 甚至 Windows NT，升级系统的困难在于硬件兼容性、合规和重写私有软件相关的高昂成本。微软在 2014 年终止支持 XP，但旧系统的可靠性、稳定性以及与银行基础设施的集成，以至于今天的 ATM 机器仍然依赖它。2024 年德国铁路仍然在招聘精通 Windows 3.11 和 MS-DOS 的 IT 管理员。

Currently trending CVE - Hype Score: 33 - Next.js is a React framework for building full-stack web applications. By sending a crafted HTTP request, it is possible to poison the cache of a non-dynamic server-side rendered route in the pages router (this does not affect the app router). When this crafted request is sent ...

Currently trending CVE - Hype Score: 33 - Next.js is a React framework for building full-stack web applications. Versions prior to 14.2.24 and 15.1.6 have a race-condition vulnerability. This issue only affects the Pages Router under certain misconfigurations, causing normal endpoints to serve `pageProps` data instead ...

QDoctor专为应急处置而生，可以极大提高应急处置效率、有效降低从业人员专业能力门槛要求，专家级用户使用此工具亦可以处置各种疑难问题，QDoctor同时也兼顾了二次开发需求，使您可以从容应对应急处置过程中的各种需求。

An Alabama man has been sentenced to 14 months for hacking the SEC’s X account

A vulnerability classified as problematic was found in GNOME libsoup. This vulnerability affects the function soup_multipart_new_from_message. The manipulation leads to integer underflow. This vulnerability was named CVE-2025-4948. Access to the local network is required for this attack. There is no exploit available.

A vulnerability classified as critical has been found in GNOME libsoup. This affects an unknown part of the component Cookie Expiration Date Handler. The manipulation leads to integer overflow. This vulnerability is uniquely identified as CVE-2025-4945. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Appleple A-Blog CMS up to 3.0.47/3.1.43. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2025-32999. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Appleple A-Blog CMS. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to server-side request forgery. This vulnerability is known as CVE-2025-36560. The attack can be launched remotely. There is no exploit available.