Aggregator

黎巴嫩移动设备爆炸案犹如一记警钟，敲醒了我们对网络安全形势的新认识。在网络攻击从数字空间向现实物理世界扩展的大 […]

新闻速览 •股票竞价交易出现异常，上交所发布公告称正在排查原因 •印尼税务局遭遇大规模数据泄露，总统等政要个人 […]

快来报名～

A vulnerability, which was classified as critical, was found in Cadpage 1.7.44. This affects an unknown part of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is uniquely identified as CVE-2014-7043. The attack needs to be done within the local network. There is no exploit available.

近日，有安全研究人员发现起亚汽车经销商门户网站存在一个关键漏洞，黑客只需使用目标车辆的车牌，就能定位并窃取数百万辆 2013 年后生产的起亚汽车。 大约在2022 年，安全研究员和漏洞赏金猎人萨姆-库里等人发现了影响十多家汽车公司的其他关键漏洞，这些漏洞可以让犯罪分子远程定位、禁用启动器、解锁和启动法拉利、宝马、劳斯莱斯、保时捷和其他汽车制造商生产的 1500 多万辆汽车。 今天，库里透露称起亚门户网站漏洞最早是在今年6月被发现的，黑客利用该漏洞能在 30 秒内控制任何配备远程硬件的起亚汽车，无论其是否有激活的起亚互联订阅。 这些漏洞还暴露了车主的敏感个人信息，包括姓名、电话号码、电子邮件地址和实际地址，并可能使攻击者在车主不知情的情况下将自己添加为目标车辆的第二用户。 为了进一步证明这一问题，研究小组制作了一个工具，展示攻击者如何输入汽车牌照，并在 30 秒内远程锁定或解锁汽车、启动或停止汽车、按喇叭或定位车辆。 研究人员在起亚的 kiaconnect.kdealer.com 经销商门户网站上注册了一个经销商账户，以获取这些信息。 通过身份验证后，他们生成了一个有效的访问令牌，该令牌允许他们访问后端经销商 API，从而获得车主的重要详细信息和对汽车遥控器的完全访问权限。 他们发现，攻击者可以利用后台经销商 API完成以下操作，包括： 生成经销商令牌并从 HTTP 响应中获取该令牌 访问受害者的电子邮件地址和电话号码 使用泄露的信息修改车主的访问权限 将攻击者控制的电子邮件添加到受害者的车辆上，从而实现远程命令 HTTP 响应包含车主的姓名、电话号码和电子邮件地址。库里表示：我们能够使用正常的应用程序凭证和修改后的通道头验证进入经销商门户。 从那里，攻击者可以通过 API 输入车辆的 VIN（车辆识别码），并在车主不知情的情况下远程跟踪、解锁、启动或鸣笛。 起亚门户网站的漏洞允许在未经授权的情况下隐秘地访问车辆，因为正如库里解释的那样，从受害者的角度来看，他们的车辆被访问后没有任何通知，他们的访问权限也没有被修改。 库里补充道：这些漏洞后来都得到了修复，这个工具也从未发布过，起亚团队已经证实这从未被恶意利用过。     转自Freebuf，原文链接：https://www.freebuf.com/news/411878.html 封面来源于网络，如有侵权请联系删除

一位罹患 1 型糖尿病的 25 岁女子在移植重编程干细胞不到 3 个月后恢复产生胰岛素。这位不愿透露名字的天津女子说，她现在可以吃糖了，在手术一年多时间后，她能享受任何食物了，尤其是火锅。研究报告发表在《Cell》期刊上。糖尿病影响全球近 5 亿人，其中大多数人是 2 型糖尿病，人体无法产生足够的胰岛素或使用胰岛素的能力下降。而 1 型糖尿病的免疫系统会攻击胰腺胰岛细胞。胰岛移植可治疗糖尿病，但没有足够捐赠者满足日益增长的需求，而且移植还面临排斥反应。在最新研究中，北京大学的研究人员从患者身上提取细胞重编程为干细胞，然后生成 3D 胰岛簇。2023 年 6 月他们将约 150 万胰岛注射到患者腹部肌肉。

Cybersecurity researchers have uncovered a significant vulnerability in Kia vehicles that allowed hackers to remotely control key functions using nothing more than a car’s license plate. This breach, discovered on June 11, 2024, exposed the potential for unauthorized access to personal information and vehicle control, raising serious concerns about automotive cybersecurity. The Discovery According to […]

The post Hacking Kia Cars Remotely with a License Plate appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Популярный мессенджер на грани блокировки в РФ.

A vulnerability classified as problematic was found in Google Chrome up to 55.0. Affected by this vulnerability is an unknown functionality. The manipulation leads to an unknown weakness. This vulnerability is known as CVE-2016-9652. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Optergy Proton and Enterprise and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2019-7273. The attack can be launched remotely. Furthermore, there is an exploit available.

总结推荐本周的热点资讯、安全事件、一周好文和省心工具，保证大家不错过本周的每一个重点！

A vulnerability was found in Linux Kernel up to 6.1.94/6.6.34/6.9.5 and classified as critical. Affected by this issue is the function btrfs_load_zone_info. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-39496. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Google Go. It has been rated as problematic. This issue affects some unknown processing of the component encoding-gob. The manipulation leads to uncontrolled recursion. The identification of this vulnerability is CVE-2024-34156. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.96/6.6.34/6.9.5. It has been classified as critical. Affected is an unknown function of the component ima. The manipulation leads to use after free. This vulnerability is traded as CVE-2024-39494. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.16.14 and classified as critical. This issue affects the function port100_send_complete of the component NFC. The manipulation leads to use after free. The identification of this vulnerability is CVE-2022-48857. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.16.16. This issue affects the function dev_uevent of the component USB Handler. The manipulation leads to use after free. The identification of this vulnerability is CVE-2022-48838. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in PHP up to 8.1.28/8.2.19/8.3.7 on Windows and classified as critical. Affected by this vulnerability is an unknown functionality of the component Unicode Character Handler. The manipulation leads to argument injection. This vulnerability is known as CVE-2024-4577. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

过去几年勒索软件引发的保险费飙升似乎正在趋于平稳，而欧盟法规鼓励更多企业考虑投保。

7 月 19 日的 CrowdStrike 蓝屏死机事件影响了全世界数百万台 PC，无数公司发现他们无法再使用计算机，只能回到传统的笔和纸。现在专家建议企业在制定 IT 故障应急计划时重新训练使用笔和纸。以防万一发生类似规模的 IT 故障时，员工能无缝切换到笔和纸。挪威公司 Norsk Hydro 在 2019 年遭到勒索软件攻击，愈 2 万台 PC 被锁定，公司负责人决定拒绝支付赎金，因此该公司的数万名员工只能切换到笔和纸，使业务能继续进行下去。公司发言人说，这次事件之后他建议公司保留公司关键信息的打印文本。灾难恢复公司 Databarracks 的 Chris Butler 建议企业培训员工使用笔和纸。笔和纸系统的最大问题是缺乏可扩展性，难以协调位于不同办公地点的数千名员工。当然对于 IT 系统而言异地备份或隔离数据至关重要。

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。