Aggregator

BRICKSTORM backdoor exposed: CISA warns of advanced China-backed intrusions

Security Affairs
4 weeks ago
CISA details BRICKSTORM, a China-linked backdoor used by China-linked APTs to secure long-term persistence on compromised systems. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has disclosed technical details on BRICKSTORM, a backdoor used by China state-sponsored threat actors to gain and maintain long-term persistence on compromised systems, highlighting ongoing PRC cyber-espionage activity. “The Cybersecurity […]
Pierluigi Paganini

China-Nexus Hackers Exploiting VMware vCenter Environments to Deploy Web Shells and Malware Implants

Cyber Security News
4 weeks ago

A new sophisticated threat actor has emerged in the cybersecurity landscape, targeting critical infrastructure across the United States. The adversary, operating under the name WARP PANDA, has demonstrated remarkable technical capabilities in infiltrating VMware vCenter environments at legal, technology, and manufacturing organizations. This group’s emergence marks a significant escalation in cloud-based cyberattacks, with particular focus […]

The post China-Nexus Hackers Exploiting VMware vCenter Environments to Deploy Web Shells and Malware Implants appeared first on Cyber Security News.

Tushar Subhra Dutta

最新实验不支持第四种中微子假说

Solidot
4 weeks ago
《自然》发表了两项研究,再次对长期困扰物理学界的惰性中微子假说进行了检验。结果显示,相关实验并未发现任何额外类型中微子的证据,测量结果与标准模型预测基本一致,从而削弱了存在第四种类型的中微子——惰性中微子的可能性。中微子是宇宙中数量仅次于光子的基本粒子,已知分为电子、缪子和τ三种类型,其能够在这三种类型之间来回“变身”,即发生振荡。过去几十年的洛斯阿拉莫斯实验、MiniBooNE 实验以及多项“镓异常”实验都曾给出难以解释的结果:有的观测到电子中微子数量“过多”,有的观测到“偏少”。这些异常曾被解读为存在一种或多种惰性中微子的可能证据。美国费米国家加速器实验室最新的 MicroBooNE 实验显示,观测到的电子中微子数量与标准模型预期基本一致,没有出现 MiniBooNE 所报告的异常多出的现象。这一结果以 95% 的置信度排除了包含单一惰性中微子的理论模型。另一项研究来自德国卡尔斯鲁厄氚中微子质量实验。该实验以测量氚衰变末端电子能谱为核心,间接推算出中微子质量,同时检验是否存在惰性中微子。理论上,惰性中微子会在能谱中留下可测量的异常信号。然而,该实验最新数据并未发现任何与惰性中微子相关的特征。

NVIDIA Triton Vulnerability Let Attackers Trigger DoS Attack Using Malicious Payload

Cyber Security News
4 weeks ago

Critical security updates have been released to fix two high-severity flaws in the Triton Inference Server that let attackers crash systems remotely from NVIDIA. Both flaws received a CVSS score of 7.5, indicating they are high-priority threats requiring immediate patching. The first vulnerability (CVE-2025-33211) involves improper validation of input quantity. An attacker can exploit this […]

The post NVIDIA Triton Vulnerability Let Attackers Trigger DoS Attack Using Malicious Payload appeared first on Cyber Security News.

Abinaya

Hackers Actively Exploiting ArrayOS AG VPN Vulnerability to Deploy Webshells

Cyber Security News
4 weeks ago

Attackers are actively exploiting a serious vulnerability in Array Networks’ ArrayOS AG series to gain unauthorized access to enterprise networks. The flaw exists in the DesktopDirect function, a feature designed to provide remote desktop access to administrators. Security researchers have discovered that this command injection vulnerability allows attackers to execute arbitrary commands on affected systems […]

The post Hackers Actively Exploiting ArrayOS AG VPN Vulnerability to Deploy Webshells appeared first on Cyber Security News.

Tushar Subhra Dutta

长江存储 NAND 市场份额突破 10%

Solidot
4 weeks ago
调查公司香港 Counterpoint 的数据显示,长江存储在全球 NAND 出货量中所占的份额在 2025 年 1~3 月首次达到 10%。2025 年 7~9 月同比增长 4 个百分点达到 13%,份额直逼世界第 4 位的美国美光。全年市场份额有望超过 1 成。长江存储的目标是在 2026 年底之前获得 15 %的销量份额。将在中国武汉市周边推进工厂投资。目前正在实施的投资完成后,长江存储将占全球供应量的约 2 成。这一规模超过了日本铠侠,直逼韩国 SK 海力士。长鑫存储在 DRAM 领域居世界第 4 位。但份额远低于三星、SK 海力士和美光。

Managed ad