Aggregator

Western Sydney University (WSU) announced two security incidents that exposed personal information belonging to members of its community. [...]

Cyber-Physical Systems (CPS) are no longer the stuff of science fiction; they are woven into the fabric of our daily lives, organizations, and critical infrastructure. From smart grids managing our power to the connected cars we drive and the automated systems in our factories, CPS offers incredible benefits. But with great power comes great responsibility […]

The post Navigating New Cyber-Physical System Security Regulations appeared first on Viakoo, Inc.

The post Navigating New Cyber-Physical System Security Regulations appeared first on Security Boulevard.

Fortinet warns that threat actors use a post-exploitation technique that helps them maintain read-only access to previously compromised FortiGate VPN devices even after the original attack vector was patched. [...]

基于大模型的Fuzz Driver生成工具 by ourren

CCF发布计算领域高质量科技期刊分级目录(2025) by ourren

更多最新文章，请访问SecWiki

This week’s threat landscape reinforces the continuous evolution of threat actors and their increasingly advanced tactics. From targeted ransomware attacks […]

The post Weekly Threat Landscape Digest – Week 15 appeared first on HawkEye.

中国科学院古脊椎动物与古人类研究所团队在江西德安发现了志留纪盔甲鱼类新属种——隆平德安鱼（Deanaspis longpingi），属名“德安”取自化石的发现地江西九江市德安县，种名则献给故乡为德安的中国“杂交水稻之父”袁隆平院士。隆平德安鱼是一种无颌鱼类，体型非常小，头甲不足2厘米，生活在距今 4.36 亿年前的志留纪早期。该化石标本首现于 2002 年，是中国科学院南京地质古生物研究所研究员王怿在德安县志留纪地层寻找植物化石时意外发现所得。研究发现，德安鱼兼具了修水鱼类和真盔甲鱼类的镶嵌演化特征，例如纵长的中背孔、6对鳃囊以及鳃后区结构。

Alleged Database Leak of TheLotter Australia

A vulnerability classified as problematic has been found in Apple macOS up to 13. This affects an unknown part of the component File Handler. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2023-42983. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iOS and iPadOS. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sandbox issue. This vulnerability is known as CVE-2023-42977. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple macOS. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to sandbox issue. This vulnerability is handled as CVE-2023-42977. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple macOS up to 13. It has been classified as problematic. Affected is an unknown function of the component App. The manipulation leads to Local Privilege Escalation. This vulnerability is traded as CVE-2023-41076. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple iOS and iPadOS and classified as critical. This vulnerability affects unknown code. The manipulation leads to permission issues. This vulnerability was named CVE-2023-38614. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple macOS and classified as critical. This issue affects some unknown processing. The manipulation leads to permission issues. The identification of this vulnerability is CVE-2023-38614. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Apple iOS and iPadOS up to 16. This affects an unknown part of the component UI. The manipulation leads to Local Privilege Escalation. This vulnerability is uniquely identified as CVE-2023-42973. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in verbb formie up to 2.1.43 on CraftCMS. Affected by this issue is some unknown functionality. The manipulation of the argument label/handle leads to cross site scripting. This vulnerability is handled as CVE-2025-32427. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in verbb formie up to 2.1.43 on CraftCMS. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-32426. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Apple macOS up to 13. Affected is an unknown function. The manipulation leads to denial of service. This vulnerability is traded as CVE-2023-42982. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple macOS up to 13. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2023-42981. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Alleged Root Shell on Firewall access sale of U.S. Department of Energy

A vulnerability was found in Apple macOS. It has been declared as critical. This vulnerability affects unknown code of the component Caches Handler. The manipulation leads to sandbox issue. This vulnerability was named CVE-2023-42969. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.