Aggregator
Секретный код за лицами звёзд — раскрыта новая схема хакеров, использующая необычный трюк
Microsoft September 2025 Patch Tuesday – 81 Vulnerabilities Fixed Including 22 RCE
Microsoft has released its September 2025 Patch Tuesday updates, addressing a total of 81 security vulnerabilities across its product suite. The security patches cover a wide range of software, including Windows, Microsoft Office, Azure, and SQL Server. Among the fixes are 22 Remote Code Execution (RCE) vulnerabilities, making this a significant update for system administrators. […]
The post Microsoft September 2025 Patch Tuesday – 81 Vulnerabilities Fixed Including 22 RCE appeared first on Cyber Security News.
Apollo: первый боевой лазер НАТО, способный уничтожать десятки дронов в минуту
Plex tells users to change passwords due to data breach, pushes server owners to upgrade
Media streaming company Plex has suffered a data breach and is urging users to reset their account password and enable two-factor authentication. “An unauthorized third party accessed a limited subset of customer data from one of our databases. While we quickly contained the incident, information that was accessed included emails, usernames, securely hashed passwords and authentication data,” the company said in an announcement published on the company’s forums on Monday and sent out via email … More →
The post Plex tells users to change passwords due to data breach, pushes server owners to upgrade appeared first on Help Net Security.
Зачем кибершпионам сотни доменов? Масштаб инфраструктуры Salt Typhoon превзошёл все ожидания
Cyber resilience matters as much as cyber defence
Submit #639745: 北京宏景世纪软件股份有限公司 宏景HCM人力资源管理系统 未知 Use of Java I/O [Accepted]
Submit #639709: CMS Made Simple 2.2.22 Remote Code Execution [Duplicate]
Sen. King: Cyber domain is a ‘hellscape’ that will be made worse by cuts
US charges admin of LockerGoga, MegaCortex, Nefilim ransomware
Submit #639041: Seismic Software seismic(com.seismic.doccenter) 2.4.2 Task Hijacking [Accepted]
Submit #637921: ZhenShi Information Technology (Shanghai) Co., Ltd Mibro Fit(com.xiaoxun.xunoversea.mibrofit) 1.6.3.17499 Task Hijacking [Accepted]
Submit #636882: China Shanghai Lingdang Information Technology Lingdang CRM <= V8.6.5.4 Server-Side Request Forgery [Accepted]
Google 同意在韩国对敏感卫星地图进行模糊处理
Zero Trust's Next Phase: Agility, Identity, AI Risks
Zero trust is evolving beyond static controls and network segmentation. CISOs must prepare for dynamic, behavior-driven security models that incorporate real-time intelligence, enforce identity and data safeguards, and manage AI as both a threat vector and a security tool.
SecWiki News 2025-09-09 Review
更多最新文章,请访问SecWiki