Aggregator

"Broadside" is targeting a critical flaw in DVR systems to conduct command injection attacks, which can hijack devices to achieve persistence and move laterally.

Infoblox Threat Intel reports a campaign that used the Evilginx phishing kit to bypass Multi-Factor Authentication (MFA) and steal credentials from 18 US universities between April and November 2025.

全新的比赛模式，共同探索AI智能体攻防的无限可能

Масштабный взлом Upbit обнажил пробелы в регулировании: украдены миллиарды монет, но наказать биржу почти невозможно.

React RCE漏洞攻击“杀疯了”

关键词漏洞微软近日悄然缓解了一个被多支国家级黑客组织和网络犯罪团伙在零日攻击中积极利用的 Windows LN

关键词信息勒索英国大型医疗机构 Barts Health NHS Trust 近日发布公告称，其 Oracle

关键词信息泄露据韩联社今日报道，韩国移动运营商 LG U+ 的人工智能服务“ixi-O”发生用户通话内容外泄事

关键词计算机犯罪据公安部网安局消息，近日，江西吉安网警成功破获一起涉嫌提供侵入、非法控制计算机信息系统程序、工

Cybersecurity researchers have disclosed details of two new Android malware families dubbed FvncBot and SeedSnatcher, as another upgraded version of ClayRat has been spotted in the wild. The findings come from Intel 471, CYFIRMA, and Zimperium, respectively. FvncBot, which masquerades as a security app developed by mBank, targets mobile banking users in Poland. What's notable about the malware

Более 30 критических уязвимостей в AI-IDE показали, насколько легко обмануть LLM и заставить его выполнять вредоносные действия.

Critical security alerts have been issued for Firebox firewall devices due to serious ten vulnerabilities. The vulnerabilities in WatchGuard, disclosed on December 4, 2025, span multiple severity levels and attack vectors. With several requiring urgent patching to prevent unauthorized code execution and information disclosure. The most critical vulnerabilities enable authenticated attackers to execute arbitrary code […]

The post Critical WatchGuard Firebox Vulnerabilities Let Attackers Bypass Integrity Checks and Inject Malicious Codes appeared first on Cyber Security News.

Recommended profiles to securely configure TLS for the most common versions and scenarios, with additional guidance for managing older versions.

A critical React2Shell (CVE-2025-55182) RCE flaw in React and Next.js is being actively exploited by China-nexus threat groups, prompting urgent patching and global mitigations.

The post Cloudflare Forces Widespread Outage to Mitigate Exploitation of Maximum Severity Vulnerability in React2Shell  appeared first on Security Boulevard.

A Home Office report has revealed racial bias in facial recognition technology used by police

Инсталляция Beeple в виде стаи роботов с головами знаменитостей стала хитом коллекционеров.

360斩获"金智奖"双奖项

任何使用AI进行问题分类、PR标记、代码建议或自动回复的仓库，都面临提示注入、命令注入、密钥泄露、仓库泄露和上游供应链泄露的风险。

速修复

Новое поколение подводных аппаратов обещает быть трудно обнаруживаемым сонарами и меньше травмировать морскую экосистему.