Aggregator

香蕉小队攻击超 60 个 GitHub 仓库投毒

快来开启《CTF训练营-Web篇》的学习之旅吧！

文末投递简历

看雪论坛作者ID：孤恒

Поприветствуйте нового интервьюера.

A sophisticated phishing campaign targeting employees with fake toll payment notices has been identified, combining government domain spoofing with social engineering tactics. The attackers craft messages claiming to be from TxTag, warning recipients that their accounts face suspension unless outstanding balances are paid immediately. This campaign leverages urgency and fear to compel victims into clicking […]

The post New TxTag Phishing Attack Leverages .gov Domain to Trick Employees appeared first on Cyber Security News.

Cloudflare on Thursday said it autonomously blocked the largest distributed denial-of-service (DDoS) attack ever recorded, which hit a peak of 7.3 terabits per second (Tbps). The attack, which was detected in mid-May 2025, targeted an unnamed hosting provider. "Hosting providers and critical Internet infrastructure have increasingly become targets of DDoS attacks," Cloudflare's Omer Yoachimik

Banana Squad создали маскировку атаки нового поколения.

Microsoft has announced a significant update to the security posture of its Windows 365 Cloud PCs, introducing new secure-by-default capabilities designed to fortify virtual desktop environments against modern cyber threats. These changes, set to roll out in the second half of 2025, reflect Microsoft’s ongoing commitment to its Secure Future Initiative (SFI) and the evolving […]

The post Microsoft Introduces Enhanced Security Defaults for Windows 365 Cloud PCs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

本文要点

• 20与25版具体事项对比

• 新增的判例清单

• 删除的判例清单

• 20、25版原文

近期，公安部发布了《网络安全等级保护测评高风险判定实施指引（试行）》。与20版本对比后，本文梳理出判例变化项40+，删减项20+，新增项40+，其中安全通用要求新增5项、云计算安全扩展要求新增13项、移动互联安全扩展要求新增10项、物联网安全扩展要求新增4项、工业控制系统安全扩展要求新增9项。

判例结构变化

版本

2025版本

2020版本

包含内容

标准要求

标准要求

适用范围

适用范围

问题描述

判例场景

可能的缓解措施

补偿因素

风险评价

具体事项差异对比

新增的判例清单

删除的判例清单

特别说明：因时间有限，若有不足之处，请以原文为准

参考资料：

《网络安全等级保护测评高风险判定实施指引(试行)》（2025）

《网络安全等级保护测评高风险判定指引》（2020）

来源：重庆信通设计院天空实验室

A vulnerability was found in matrix-js-sdk up to 23.x. It has been rated as critical. This issue affects some unknown processing of the component Event Handler. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution'). The identification of this vulnerability is CVE-2023-28427. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Mozilla Thunderbird up to 102.9 and classified as problematic. This vulnerability affects unknown code of the component OpenPGP Message Handler. The manipulation leads to denial of service. This vulnerability was named CVE-2023-29479. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 115.0. It has been declared as problematic. This vulnerability affects unknown code of the component Text Direction Override Unicode Character Handler. The manipulation leads to an unknown weakness. This vulnerability was named CVE-2023-3417. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Wireshark up to 3.6.16/4.0.8. It has been rated as problematic. Affected by this issue is some unknown functionality of the component RTPS Dissector. The manipulation leads to uncontrolled memory allocation. This vulnerability is handled as CVE-2023-5371. An attack has to be approached locally. There is no exploit available.

A vulnerability was found in Kubernetes up to 1.27.15/1.28.11/1.29.6/1.30.2 on Windows and classified as critical. This issue affects some unknown processing of the component kubelet. The manipulation leads to incorrect default permissions. The identification of this vulnerability is CVE-2024-5321. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Wireshark up to 3.6.13/4.0.5. This affects an unknown part of the component BLF File Parser. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2023-2857. An attack has to be approached locally. There is no exploit available.

A vulnerability classified as problematic has been found in Wireshark up to 3.6.13/4.0.5. Affected is an unknown function of the component BLF File Parser. The manipulation leads to denial of service. This vulnerability is traded as CVE-2023-2854. Attacking locally is a requirement. There is no exploit available.

A vulnerability classified as problematic has been found in dnsmasq 2.9. Affected is the function forward_query. The manipulation leads to integer overflow. This vulnerability is traded as CVE-2023-49441. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Mozilla Thunderbird up to 115.8.0 and classified as problematic. This vulnerability affects unknown code of the component Encrypted Subject Handler. The manipulation leads to information disclosure. This vulnerability was named CVE-2024-1936. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in OpenResty up to 1.25.3.1. It has been classified as problematic. This affects an unknown part of the file lj_str_hash.c of the component Request Handler. The manipulation leads to resource consumption. This vulnerability is uniquely identified as CVE-2024-39702. The attack can only be done within the local network. There is no exploit available.