Aggregator

A vulnerability was found in OpenClaw up to 2026.2.13. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation results in server-side request forgery. This vulnerability is cataloged as CVE-2026-28476. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability categorized as problematic has been discovered in OpenClaw up to 2026.2.13. This affects an unknown part of the component OAuth Call Handler. Such manipulation leads to cross-site request forgery. This vulnerability is documented as CVE-2026-28477. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability identified as critical has been detected in OpenClaw up to 2026.2.1. This vulnerability affects unknown code of the component Matrix Plugin. Performing a manipulation results in improper authentication. This vulnerability is reported as CVE-2026-28471. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.

A vulnerability identified as critical has been detected in OpenClaw up to 2026.2.13. Affected by this vulnerability is an unknown functionality of the component Publicly Reachable Webhook Endpoint. This manipulation causes missing authentication. This vulnerability appears as CVE-2026-29606. The attack may be initiated remotely. There is no available exploit. You should upgrade the affected component.

The Cybersecurity and Infrastructure Security Agency (CISA) gave all federal civilian agencies until Thursday to patch CVE-2025-26399 — a critical vulnerability impacting the popular SolarWinds Web Help Desk.

A vulnerability described as critical has been identified in Schneider Electric EcoStruxure Power Monitoring Expert and EcoStruxure Power Operation Advanced Reporting and Dashboards Module 2022/2023/2024. This affects an unknown part. The manipulation results in deserialization. This vulnerability is identified as CVE-2025-11739. The attack is only possible with local access. There is not any exploit available. It is advisable to implement a patch to correct this issue.

A vulnerability marked as critical has been reported in Vaadin Flow up to 14.14.0/23.6.6/24.9.8/25.0.2. Affected by this issue is some unknown functionality of the file Node.js of the component ZIP Handler. The manipulation leads to path traversal. This vulnerability is referenced as CVE-2026-2741. The attack can only be performed from a local environment. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Vaadin Flow up to 14.14.0/23.6.6/24.9.7/25.0.1. Affected by this vulnerability is an unknown functionality of the file /vaadin of the component Endpoint. Executing a manipulation can lead to improper access controls. The identification of this vulnerability is CVE-2026-2742. The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability identified as critical has been detected in Tubitak Bilgem Liderahenk up to 3.3.x. Affected is an unknown function. Performing a manipulation results in missing authentication. This vulnerability was named CVE-2026-2339. The attack may be initiated remotely. There is no available exploit. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Schneider Electric EcoStruxure IT Data Center Expert. This impacts an unknown function of the component SOCKS Proxy. Such manipulation leads to hard-coded credentials. This vulnerability is uniquely identified as CVE-2025-13957. The attack can be launched remotely. No exploit exists. Applying a patch is advised to resolve this issue.

Даже ИИ в среде разработки не спас от профи из КНДР.

好的，我现在需要帮用户总结一篇文章的内容，控制在100字以内，并且直接写描述，不需要特定的开头。首先，我得通读整篇文章，抓住主要观点。 文章主要讨论了企业在采用大型语言模型（LLMs）时面临的数据隐私和安全问题。特别是敏感信息在模型训练或推理过程中被泄露的风险。文章提到“推理保护”（Inference protection）是一种预防措施，通过在数据进入模型前进行脱敏处理，防止敏感信息被模型学习或存储。 接下来，文章讨论了传统软件系统与LLMs在数据处理上的不同之处，指出一旦敏感数据被模型处理，就无法有效删除或控制。这给合规性和数据治理带来了挑战。作者强调了遵守GDPR、HIPAA等法规的重要性，并提出通过预防措施确保敏感数据不进入模型是解决这些问题的最佳方法。 文中还提到了Tonic Textual提供的解决方案，即在数据流程的早期进行自动化的脱敏处理，从而让企业能够安全地使用LLMs。这种方法不仅减少了合规风险，还简化了审计流程，并支持数据删除和访问控制等监管要求。 总结起来，文章的核心在于强调推理保护的重要性，并介绍了一种有效的解决方案来应对LLMs带来的隐私和合规挑战。因此，在总结时需要涵盖这些关键点：推理保护的概念、其重要性、带来的好处以及具体的解决方案。 最后，确保语言简洁明了，控制在100字以内，并且直接描述内容，不使用“这篇文章”之类的开头。 文章探讨了企业在采用大型语言模型（LLMs）时面临的数据隐私和安全挑战。通过“推理保护”技术，在敏感信息进入模型前进行脱敏处理，防止其被学习或存储。这种方法不仅降低了隐私风险和合规负担，还为负责任的AI应用奠定了基础。

An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems, Aryaka researchers have discovered. By avoiding analysis environments and leveraging a specialized module designed to kill antivirus and endpoint detection software, the Russian-speaking attacker(s) behind this campaign have managed to keep their activity largely under the radar. “We currently lack telemetry to determine how widespread the campaign is,” Aditya K. Sood, Aryaka’s VP of Security Engineering & AI Strategy, told Help … More →

The post HR, recruiters targeted in year-long malware campaign appeared first on Help Net Security.

A serious security flaw in Ivanti Endpoint Manager has caught federal attention after the Cybersecurity and Infrastructure Security Agency (CISA) added it to the Known Exploited Vulnerabilities (KEV) catalog on March 9, 2026. Tracked as CVE-2026-1603, this authentication bypass vulnerability affects all versions of Ivanti Endpoint Manager prior to the 2024 SU5 release and enables […]

The post CISA Warns of Ivanti Endpoint Manager Authentication Bypass Vulnerability Exploited in Attacks appeared first on Cyber Security News.

Microsoft is changing the default behavior in Windows Autopatch so that hotpatch security updates are enabled automatically for eligible devices managed through Microsoft Intune or the Microsoft Graph API starting with the May 2026 Windows security update. Windows Autopatch is a Microsoft-managed service that automates updates for Windows and Office. It also lets IT administrators pause updates and roll them back if devices fail to meet performance targets after installation. Introduced about a year ago, … More →

The post Microsoft flips Windows Autopatch to default hotpatch security updates appeared first on Help Net Security.

A campaign by Russian-speaking cyberattackers hijacks workflows to deliver security-busting malware, allowing attackers to steal data without detection.

好的，我现在需要帮用户总结一篇文章的内容，控制在100个字以内，而且不需要用“文章内容总结”之类的开头。首先，我得仔细阅读这篇文章，理解它的主要观点。 文章开头提到生成式AI（GenAI）让网络攻击变得更快更猛烈，MIT的IC3联盟警告说AI被用于制造恶意软件、钓鱼活动和深度伪造等攻击手段。接着提到这些攻击现在可以大规模应用到企业环境中，因为AI的算法自动化能力让攻击更容易突破防御系统。 然后文章转向防御方面，介绍了ColorTokens的创新解决方案Xshield AI Agent。这个工具利用大语言模型来帮助企业快速生成微分段策略，对抗AI驱动的攻击。用户可以通过自然语言提问，系统自动生成策略模板，并测试效果后部署。 最后，文章强调Xshield简化了微分段的实施过程，降低了学习曲线和错误率，使得更多人能够有效使用这种安全措施。 总结起来，文章主要讲的是AI如何加剧网络威胁，并介绍了一种基于AI的微分段解决方案来应对这些威胁。我需要把这些要点浓缩到100字以内，确保涵盖关键点：AI驱动的攻击、Xshield的作用、以及它如何帮助企业防御。 可能会这样组织：首先说明AI带来的网络威胁增加，然后介绍Xshield如何通过AI辅助微分段策略来应对这些攻击，并提到其优势如快速生成策略和降低学习成本。 检查一下字数是否在限制内，并确保语言简洁明了。 文章指出，生成式人工智能（GenAI）正在加剧网络安全威胁，包括恶意软件、钓鱼攻击和深度伪造等。针对这些威胁，ColorTokens推出Xshield AI Agent解决方案，利用人工智能辅助微分段策略设计与部署，帮助企业快速识别和应对新兴威胁。该方案通过自然语言查询环境并自动生成防护策略，在简化操作的同时提升企业安全防护能力。

A vulnerability identified as critical has been detected in OpenClaw up to 2026.2.1. This affects an unknown function of the component Webhook Endpoint. The manipulation of the argument ID leads to insufficient verification of data authenticity. This vulnerability is traded as CVE-2026-28454. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability labeled as critical has been found in OpenClaw up to 2026.2.13. This impacts an unknown function of the component Skill Handler. The manipulation results in path traversal. This vulnerability is known as CVE-2026-28457. Attacking locally is a requirement. No exploit is available. The affected component should be upgraded.

A vulnerability marked as critical has been reported in OpenClaw up to 2026.2.12. Affected is an unknown function of the file /trace/stop of the component Browser Control API. This manipulation causes path traversal. This vulnerability is handled as CVE-2026-28462. The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.