Aggregator
DASCTF 2025下半年赛 Writeup by Mini-Venom
1 month 1 week ago
[webapps] Pluck 4.7.7-dev2 - PHP Code Execution
1 month 1 week ago
Pluck 4.7.7-dev2 - PHP Code Execution
AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows
1 month 1 week ago
In this blog entry, Trend™ Research provides a comprehensive breakdown of GhostPenguin, a previously undocumented Linux backdoor with low detection rates that was discovered through AI-powered threat hunting and in-depth malware analysis.
Aliakbar Zahravi
护航船舶智造:构建工控系统网络安全新防线
1 month 1 week ago
为“海洋强国”战略筑牢安全基石。
OpenAI denies rolling out ads on ChatGPT paid plans
1 month 1 week ago
ChatGPT is allegedly showing ads to those who pay $20 for the Plus subscription, but OpenAI says this is an app recommendation feature, not an ad. [...]
Mayank Parmar
Alleged Data Breach of K3G Solutions LTDA in Brazil
1 month 1 week ago
Alleged Data Breach of K3G Solutions LTDA in Brazil
Dark Web Informer
CVE-2025-33183
1 month 1 week ago
Currently trending CVE - Hype Score: 7 - NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Python component, where an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data ...
Lockbit
1 month 1 week ago
You must login to view this content
cohenido
Lockbit
1 month 1 week ago
You must login to view this content
cohenido
Submit #702426: code projects Daily Time Recording System V4.5.0 SQL Injection [Accepted]
1 month 1 week ago
Submit #702426 / VDB-334672
chaste
Submit #702119: SourceCodester Inventory Management System 1.0 CSV Injection [Accepted]
1 month 1 week ago
Submit #702119 / VDB-334671
Amit_singh
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 74
1 month 1 week ago
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Analysis of ShadowPad Attack Exploiting WSUS Remote Code Execution Vulnerability (CVE-2025-59287) Shai-Hulud 2.0 Supply Chain Attack: 25K+ npm Repos Exposed Spyware Allows Cyber Threat Actors to Target Users of Messaging Applications Morphisec Thwarts Russian-Linked […]
Pierluigi Paganini
Sinobi
1 month 1 week ago
You must login to view this content
cohenido
Security Affairs newsletter Round 553 by Pierluigi Paganini – INTERNATIONAL EDITION
1 month 1 week ago
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs Maximum-severity XXE vulnerability discovered in Apache […]
Pierluigi Paganini
Вифлеемская звезда была кометой, атаковавшей Землю в лоб? NASA разгадало 2000-летнюю загадку Рождества
1 month 1 week ago
Что, если на самом деле волхвов вел объект из Облака Оорта?
Submit #701949: Yealink T21P_2E 52.84.0.15 Cross Site Scripting [Accepted]
1 month 1 week ago
Submit #701949 / VDB-334670
cccll
Submit #701826: Philip Okugbe Simple-PHP-Blog v1.0 SQL Injection [Accepted]
1 month 1 week ago
Submit #701826 / VDB-334669
xiaofeifei
从网络安全工程师视角学习LLM提示词注入攻击&AI大模型“越狱 ”
1 month 1 week ago
本篇文章前期主要是给师傅们介绍LLM提示词注入攻击&AI大模型“越狱”的相关知识点,后期主要是给师傅们拿本地大模型演示如何进行大模型提示词注入和“越狱”相关安全问题操作的。
这篇文章很大的弥补了网上很多文章只有理论,但是没有想过大模型提示词注入和“越狱”的实操了,也是很多师傅们问我说这个方向很空洞的一个原因。所以这次我带了很多案例,师傅们也是很容易看的懂的操作。
Атомы рубидия стали детекторами невозможного: квантовые антенны освобождают «слепой» диапазон для связи будущего
1 month 1 week ago
Пока мир охлаждает квантовые системы до абсолютного нуля, поляки поймали терагерц при 20°C.