Aggregator

本文讲述了一位安全从业者从攻击视角转向安全规划与建设的经历，在资源有限的小型金融科技公司中构建安全体系的独特挑战与实践。通过分析攻击路径和风险量化，结合工具与自动化提升效率，分享了在小微企业环境中务实的安全建设经验。

CISA确认AMI MegaRAC BMC软件中的高危漏洞CVE-2024-54085被用于攻击。该漏洞允许未认证攻击者远程控制服务器并部署恶意软件或破坏硬件。该漏洞影响多个厂商设备，修复迫在眉睫。

An Iranian state-sponsored hacking group associated with the Islamic Revolutionary Guard Corps (IRGC) has been linked to a spear-phishing campaign targeting journalists, high-profile cyber security experts, and computer science professors in Israel. "In some of those campaigns, Israeli technology and cyber security professionals were approached by attackers who posed as fictitious assistants to

伊朗支持的黑客组织通过伪装成虚构助手或研究人员，向以色列记者、网络安全专家和教授发送钓鱼邮件或WhatsApp消息，诱导其访问虚假Gmail登录页面或Google Meet邀请。该组织利用AI工具制作钓鱼信息，并使用定制钓鱼工具包窃取Google账户凭证、2FA代码及键盘记录。

Ваша корпоративная сеть — это музей, где экспонаты берут без билета.

Французы арестовали, американцы требуют, а IntelBroker узнал цену своих талантов.

文章介绍了一种通过使用安卓模拟器恢复被取消的 Perplexity Pro 免费订阅的方法。具体操作是通过模拟器模拟三星手机系统并登录三星账号，在三星应用商店下载 Perplexity 应用后登录自己的账号即可恢复订阅。教程提供了三种实现方式：Google Firebase 在线模拟、Android Studio 和 BlueStack 模拟器。

CISA says a maximum severity vulnerability in AMI's MegaRAC Baseboard Management Controller (BMC) software, which enables attackers to hijack and brick servers, is currently under active exploitation. [...]

加密货币承诺财富与自由,却也带来致命风险。五个真实案例揭示了绑架、威胁与谋杀等暴力事件,暴露了金钱、隐私与风险的危险交集。安全建议包括保护隐私、使用冷钱包及多重签名,以应对现实威胁。

JavaScript不仅用于网页开发，在太空任务中也发挥重要作用。其轻量级特性、生态系统和离线能力使其适用于极端环境下的航天器和卫星。文章介绍了NASA的Open MCT工具、离线缓存技术及数据压缩策略，并强调这些技术可为地球上的离线应用提供灵感。

本文介绍了加密货币的基本概念、优势及入门指南。加密货币是一种无需银行或政府支持的数字货币，可在全球范围内自由交易。文章提醒读者注意价格波动和潜在骗局，并建议选择可靠的交易所和非托管钱包存储资金。对于新手来说，比特币、以太坊和稳定币是常见的选择。

文章指出大型分销组织（GDO）面临日益增长的网络威胁，攻击数量激增，数据泄露成本高昂。勒索软件和钓鱼攻击为主要手段，供应链成薄弱环节。专家建议加强网络安全措施和员工培训以提升整体防护能力。

Glasgow City Council has warned of service disruption and potential data loss after a security incident

A vulnerability, which was classified as problematic, was found in linlinjava litemall 1.8.0. Affected is an unknown function of the file /wx/comment/post. The manipulation of the argument adminComment leads to improper authorization. This vulnerability is traded as CVE-2025-6702. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as problematic, has been found in Xuxueli xxl-sso 1.1.0. This issue affects some unknown processing of the file /xxl-sso-server/doLogin. The manipulation of the argument redirect_url leads to open redirect. The identification of this vulnerability is CVE-2025-6701. The attack may be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic was found in Xuxueli xxl-sso 1.1.0. This vulnerability affects unknown code of the file /xxl-sso-server/login. The manipulation of the argument errorMsg leads to cross site scripting. This vulnerability was named CVE-2025-6700. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Submit #597473 / VDB-313968

Submit #597472 / VDB-313967

Submit #597456 / VDB-313966

A vulnerability classified as problematic has been found in LabRedesCefetRJ WeGIA 3.4.0. This affects an unknown part of the file /html/funcionario/cadastro_funcionario.php of the component Cadastro de Funcionário. The manipulation of the argument Nome/Sobrenome leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-6699. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. This is a different issue than CVE-2025-23030. The vendor was contacted early about this disclosure but did not respond in any way.