Aggregator

速修复

Phantom Stealer version 3.5 has emerged as a serious threat to users worldwide, capable of extracting sensitive information including passwords, browser cookies, credit card details, and cryptocurrency wallet data. This sophisticated malware operates through deceptive packaging, often disguised as legitimate Adobe software installers, making it difficult for unaware users to identify the danger before infection […]

The post Phantom Stealer Attacking Users to Steal Sensitive Data like Passwords, Browser Cookies, Credit Card Data appeared first on Cyber Security News.

丹麦 IT 部长向交通部移交了首台没有安装任何微软软件的 Linux 笔记本电脑。交通部是名为 SIA Open 的试点项目的首个客户，最终目标是让 1.5 万用户使用开源替代，避免过度依赖微软等私有软件供应商，掌控系统和数据的主权。交通部门的负责人 Stefan Søsted 表示要确保自己知道重要的信息储存在什么地方。相比私有软件，开源替代并不逊色且价格更低。微软丹麦分公司回应称，微软的解决方案定价合理且具有竞争力，兼具高安全性、创新性和高效协作性，微软欢迎竞争，开源与微软产品之间并不存在矛盾。

Microsoft has confirmed that recent Windows updates trigger RemoteApp connection failures on Windows 11 24H2/25H2 and Windows Server 2025 devices in Azure Virtual Desktop environments. [...]

Лазерный канал на 7,4 км через турбулентный городской воздух выдержал 2 Тбит/с — и это мировой рекорд для мини-терминалов.

ESET Research has identified a previously undocumented China-aligned advanced persistent threat group that uses Windows Group Policy to deploy malware and move through victim networks. The group, tracked as LongNosedGoblin, has targeted government institutions in Southeast Asia and Japan with a toolset built for long-term surveillance. Group Policy is widely used with Active Directory to manage settings and permissions across Windows environments. The group leverages that trust to distribute malware at scale once access is … More →

The post Group Policy abuse reveals China-aligned espionage group targeting governments appeared first on Help Net Security.

满10人开班～

车载芯片曝高危漏洞，汽车中控屏或遭远程劫持。

看雪论坛作者ID：教教我吧~

该公司发表声明否认

叮～双旦限定快乐已加载ing！ 安全无小事，责任大于天，但守护安全也可以很有“元气”～

A vulnerability categorized as problematic has been discovered in nodemailer. The impacted element is an unknown function of the component Email Address Header Handler. Executing manipulation can lead to improper check or handling of exceptional conditions. This vulnerability is handled as CVE-2025-14874. The attack can be executed remotely. There is not any exploit available. It is best practice to apply a patch to resolve this issue.

A vulnerability was found in Checkmk up to 2.3.0p41/2.4.0p16. It has been rated as problematic. The affected element is an unknown function of the component REST API. Performing manipulation results in improper handling of insufficient permissions or privileges. This vulnerability is known as CVE-2025-64997. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.

CISOs are often blamed after ransomware attacks, yet most breaches stem from organizational gaps, budget tradeoffs, and staffing shortages. This analysis explores why known risks remain unfixed and how security leaders can break the cycle.

The post How CISOs Can Beat the Ransomware Blame Game  appeared first on Security Boulevard.