Aggregator

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with self-spreading malware called GlassWorm that has been installed an estimated 35,800 times. [...]

Почему информацию об инциденте держали в секрете целых два месяца?

Pontarlier Hospital Hit by Ransomware Attack, Entire IT System Shut Down

Windows 10 于 10 月 14 日终止了主流支持，IT 管理公司 Lansweeper 发现其 3000 万个企业系统逾四成不支持 Windows 11，因为微软提高了操作系统的硬件需求，要求 PC 配备 Treacherous Platform Module 2.0。自由软件基金会（FSF）认为 Windows 10 终止支持是切换到 GNU/Linux 摆脱私有软件制造的计划报废循环的极佳机会。GNU/Linux 发行版尊重用户的自由，用户可以按自己想法运行自己的计算机，学习和修改源代码，重新发布副本，GNU/Linux 发行版无需更新合同，允许用户掌控一切。

Azure Blob Storage is a high-value target for threat actors due to its critical role in storing and managing massive amounts of unstructured data at scale across diverse workloads and is increasingly targeted through sophisticated attack chains that exploit misconfigurations, exposed credentials, and evolving cloud tactics.

The post Inside the attack chain: Threat activity targeting Azure Blob Storage appeared first on Microsoft Security Blog.

Azure Blob Storage is a high-value target for threat actors due to its critical role in storing and managing massive amounts of unstructured data at scale across diverse workloads and is increasingly targeted through sophisticated attack chains that exploit misconfigurations, exposed credentials, and evolving cloud tactics.

The post Inside the attack chain: Threat activity targeting Azure Blob Storage appeared first on Microsoft Security Blog.

Microsoft is rolling out a fix for Active Directory issues affecting some Windows Server 2025 systems after installing security updates released since September. [...]

第九届“强网杯”全国网络安全挑战赛初赛WriteUp by ourren

Tor匿名性漏洞：Trapper攻击 by ourren

更多最新文章，请访问SecWiki

In the first half of October 2025, we’ve seen zero-day exploits, source code theft, healthcare breaches, and attackers probing water utilities like they own the place. It’s a loud warning for defenders. Attackers are slipping past perimeters and moving laterally inside systems most people overlook, like medical devices, Salesforce environments, and engineering consoles. In this […]

The post Ransomware Protection: Source Code Stolen, Patients Exposed, and Utilities Breached appeared first on ColorTokens.

The post Ransomware Protection: Source Code Stolen, Patients Exposed, and Utilities Breached appeared first on Security Boulevard.

Askul’s LOHACO Halts Orders and Shipments After Ransomware Attack

近日，一份联邦搜查令的解封揭示了一个前所未有的案例：美国国土安全部（DHS）要求OpenAI交出ChatGPT

Chinese authorities accused the U.S. of compromising the National Time Service Center, a research institute responsible for providing timekeeping services in China for national security applications.

Порошковая еда из офисов оказалась опаснее, чем фастфуд.

Hardware attacks using lasers against silicon chips are difficult but possible. A fresh microchip protection approach aims to make it harder.

The judge also reduced the amount NSO Group would have to pay in punitive damages from $167.3 million to $4 million.

The post Judge forbids NSO Group from targeting WhatsApp users appeared first on CyberScoop.