Aggregator

The UK Information Commissioner's Office (ICO) has fined Reddit £14.47 million (over $19.5 million) for collecting and using the personal information of children under 13 without adequate safeguards. [...]

全球最大加密货币交易所币安在 2023 年被美国罚款 43 亿美元，它承认违反了对伊朗实施的制裁规定，允许伊朗客户使用其平台。但在罚款之后币安未能阻止伊朗继续使用其平台。过去一年伊朗境内的用户访问了币安逾 1500 个账号，其中两个账号向伊朗组织转移了 17 亿美元。调查人员在发现问题账号之后立即上报，但数周内相关调查人员有至少四人遭到解雇或停职，理由是违反公司规定。币安代表 Rachel Conlan 声称受到纪律处分的调查人员是“未经授权披露客户机密信息”。

Wilmington, North America, 24th February 2026, CyberNewswire

The post Sendmarc Releases DMARCbis Fireside Chat Featuring Co-Editor Todd Herr appeared first on Security Boulevard.

Wilmington, North America, 24th February 2026, CyberNewswire

Защитные алгоритмы пасуют, когда вредоносный код имитирует человека.

Veeam Software announced Agent Commander, a unified solution to help organizations safely detect AI risk, protect AI systems, and undo AI mistakes, enabling them to proactively address AI-driven risks and securely scale AI agents everywhere. The first integration from Veeam’s acquisition of Securiti AI, Agent Commander combines the capabilities of both to give organizations visibility, control, and protection over their entire data and AI estate, with the ability to undo AI mistakes with precision and … More →

The post Veeam Agent Commander unifies AI risk detection, protection, and recovery appeared first on Help Net Security.

A vulnerability described as critical has been identified in Linux Kernel up to 6.0.2. Impacted is the function ath9k_htc_rx_msg. Such manipulation leads to uninitialized pointer. This vulnerability is listed as CVE-2022-50709. The attack must be carried out from within the local network. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 5.19.16/6.0.2. It has been rated as problematic. Impacted is the function ssip_pn_open of the component HSI. The manipulation leads to memory leak. This vulnerability is referenced as CVE-2022-50708. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.0.18/6.1.4. This impacts the function virtio_crypto_alg_skcipher_close_session of the component virtio-crypto. The manipulation results in memory leak. This vulnerability is reported as CVE-2022-50707. The attacker must have access to the local network to execute the attack. No exploit exists. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.219/5.10.149/5.15.74/5.19.16/6.0.2. It has been declared as problematic. This issue affects the function raw_sendmsg of the component ieee802154. Executing a manipulation can lead to privilege escalation. The identification of this vulnerability is CVE-2022-50706. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.15/6.1.1. It has been classified as critical. This vulnerability affects unknown code of the component Gadget Driver. Performing a manipulation results in use after free. This vulnerability was named CVE-2022-50704. The attack needs to be approached within the local network. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability has been found in Linux Kernel up to 6.0.2 and classified as critical. Affected by this vulnerability is the function qcom_smsm_probe. Performing a manipulation results in excessive iteration. This vulnerability is cataloged as CVE-2022-50703. The attack must originate from the local network. There is no exploit available. The affected component should be upgraded.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.15.89/6.0.2. This vulnerability affects unknown code of the component io_uring. Executing a manipulation can lead to state issue. This vulnerability is tracked as CVE-2022-50705. The attack is only possible within the local network. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.86/6.0.18/6.1.4. It has been rated as critical. This vulnerability affects the function vdpasim_net_init of the component vdpa_sim. The manipulation leads to memory leak. This vulnerability is uniquely identified as CVE-2022-50702. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is advised.

朝鲜勒索软件攻击的主要推动者之一是Lazarus组织的子组织Andariel，该组织大约在五年前开始涉足勒索软件攻击。现在正在使用 Medusa 勒索软件，并继续对美国医疗保健行业发起勒索攻击。  朝鲜长期以来一直参与勒索软件攻击，此前曾与 Maui 和 Play 勒索软件家族有关联合作情况。 证据表明，朝鲜攻击者曾使用Medusa勒索软件攻击中东地区的一个目标。 同一批攻击者还曾对美国一家医疗机构发起过一次未遂的攻击。  Medusa勒索软件由Spearwing网络犯罪集团运营，于2023年推出，以“勒索软件即服务”（RaaS）的形式运行，合作攻击者可以通过部署该勒索软件来换取一定比例的赎金，相关攻击者已声称使用Medusa勒索软件发动了超过366起攻击。图1 对 Medusa 泄露网站的分析显示，自 2025 年 11 月初以来，美国有四家医疗保健和非营利组织遭到攻击。 Lazarus 在使用Medusa勒索软件攻击活动中使用了一系列工具，其中包括： Comebacker：一款与 Lazarus 独家关联的定制后门和加载器。  Blindingcan：与 Lazarus 关联的远程访问木马 (RAT)。  ChromeStealer： 一款用于从 Chrome 浏览器中提取已存储密码的工具。 Curl：一个开源的命令行工具，用于使用各种网络协议传输数据。 Infohook：窃取信息的恶意软件。 Mimikatz：一款 公开可用的凭证导出工具。 RP_Proxy：一款自定义代理工具。 工具Hash列表 https://www.security.com/blog-post/lazarus-medusa-ransomware

A malicious NPM package named buildrunner-dev has been caught hiding .NET malware inside innocent-looking PNG images, using steganography to slip past antivirus tools and deliver a Remote Access Trojan onto Windows systems. Discovered in February 2026, this campaign signals a notable shift in supply chain attack methods, where the actual malicious code remains completely invisible inside what […]

The post Hackers Leverage Steganographic Images to Bypass Anti-Malware Scans and Deploy Malware Payloads appeared first on Cyber Security News.

Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks

Strengthen DDoS Readiness with proactive protection strategies, risk assessments, traffic monitoring, scalable defenses, and rapid response planning.

New Relic announced enterprise-grade Agentic Platform capabilities that enable organizations to build, deploy, and manage a full spectrum of AI agents and agentic workflows, from simple single-task automations to complex, multi-agent orchestrations. With an intuitive no-code builder for domain experts, New Relic’s Agentic Platform empowers enterprises to intelligently automate a wide range of processes, leading to a significant reduction in manual toil, faster incident resolution, and improved operational resilience. “As software complexity outpaces human ability … More →

The post New Relic Agentic Platform brings governance and scale to AI agents appeared first on Help Net Security.

A Russia-aligned threat actor has been observed targeting a European financial institution as part of a social engineering attack to likely facilitate intelligence gathering or financial theft, signaling a possible expansion of the threat actor's targeting beyond Ukraine and into entities supporting the war-torn nation. The activity, which targeted an unnamed entity involved in regional