Aggregator

A vulnerability was found in University of Washington wu-ftpd. It has been declared as critical. This vulnerability affects unknown code of the component PASV Handler. The manipulation leads to memory corruption. This vulnerability was named CVE-1999-0075. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Sun Solaris 2.0. Affected is an unknown function of the component WorkMan. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-1999-0277. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

Bij Nederlandse jongeren die dit jaar 17 jaar zijn of worden kan de zogenoemde Dienstplichtbrief elk moment op de mat vallen. Ze lezen hierin dat ze staan ingeschreven voor de militaire dienstplicht. Ook mensen jonger dan 35 jaar die (op)nieuw zijn ingeschreven als Nederlander krijgen de brief.

介绍CreateProcess注入的原理、框架和四种不同实现方式，最后给出了检测和对抗方案。

The rules have changed. Again. Artificial intelligence is bringing powerful new tools to businesses. But it's also giving cybercriminals smarter ways to attack. They’re moving quicker, targeting more precisely, and slipping past old defenses without being noticed. And here's the harsh truth: If your security strategy hasn’t evolved with AI in mind, you’re already behind. But you’re not alone—and

Бэкдор Auto-color проникает в госсистемы под видом графического инструмента.

Steam was the most imitated brands by phishers in the first quarter of 2025, followed by Microsoft and Facebook/Meta, Guardio researchers have revealed. “Historically, the #1 spot has been dominated by the usual suspects – big tech companies like Meta, Microsoft, or even USPS. But this quarter, it’s Steam, and by a significant margin. Scammers have been targeting the massive gaming community by impersonating Steam to warn users about supposed account issues, like payment failures … More →

The post Phishers are increasingly impersonating electronic toll collection companies appeared first on Help Net Security.

Submit #545830 / VDB-303152

攻击者可利用该漏洞实施拒绝服务（DoS）攻击，或在未经目标用户同意的情况下向其设备发送任意文件。

De landmacht heeft vandaag de Task Force Drones opgericht. Die is bedoeld om het vechten met én tegen drones versneld operationeel in te voeren. Landmachteenheden moeten zich goed kunnen beschermen tegen vijandelijke drones. Daarnaast worden eenheden zelf ook uitgerust met verschillende soorten drones. Op deze manier draagt de taakgroep bij aan de transformatie naar een landmacht die gereed is voor warfighting.

Submit #545792 / VDB-303147

Submit #545773 / VDB-303151

为庆祝微软成立 50 周年，比尔盖茨发布了他与保罗艾伦合作开发的 Altair BASIC 源代码，他表示这是自己写过的“最酷的代码”，这也是微软起步时的象征。源代码以 PDF 图片形式发布，共 150 页，感兴趣的人可以去阅读。盖茨称，他和艾伦在哈佛计算机实验室里为公司的第一款产品开发了代码。

Украденные SMS уходят к хакерам даже без доступа к интернету.

关键词恶意软件网络安全研究人员发现，一款名为 Hijack Loader 的恶意软件更新了其功能，采用了调用栈

关键词网络安全网络安全研究人员发现了一场复杂的恶意软件攻击活动，其利用了 KoiLoader 的一个新变种，K

关键词数据泄露英国皇家邮政集团正面临一场前所未有的数据安全危机。