Posts of last 24 hours
据威胁情报公司 Defused 称,攻击者已开始利用 Oracle E-Business Suite (EBS) 财务应用程序中的一个关键漏洞(追踪为 CVE-2026-46817)。该安全缺陷存在于 EBS 的 Oracle Payments 产品的 File Transmission 组件中,使未经身份验证、具有 HTTP 网络访问权限的恶意行为者能够通过低复杂度的攻击接管易受攻击的系统。Or...
http://0.0.0.0:8080/post/64404
黑客正在利用 SimpleHelp 中一个最近披露的关键漏洞(CVE-2026-48558)来部署 Djinn Stealer,这是一种此前未被记录的、针对 Windows、macOS 和 Linux 的跨平台信息窃取程序。SimpleHelp 平台主要由托管服务提供商 (MSP)、IT 部门、服务台和系统管理员用于远程监控和管理 (RMM)。本月早些时候,攻击性安全公司 Horizon3.ai ...
http://0.0.0.0:8080/post/64405
美国司法部刑事局查封了近 400 个用于非法流媒体播放 FIFA 世界杯比赛的网站域名。这些网站向访问者提供 2026 年世界杯比赛的未经授权的实时流媒体,违反了美国版权法。此次行动通过美国检察官的国际计算机黑客和知识产权网络与多个国际伙伴协调进行,执法部门针对了位于秘鲁、保加利亚、克罗地亚、罗马尼亚、波兰和哥伦比亚的服务器和域名。在被查封域名上显示的横幅写道:"该网站已被执法部门查封,作为 Of...
http://0.0.0.0:8080/post/64406
Currently trending CVE - Hype Score: 5 - Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
https://cvemon.intruder.io/cves/CVE-2025-60727
Currently trending CVE - Hype Score: 11 - Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
https://cvemon.intruder.io/cves/CVE-2026-24294
Currently trending CVE - Hype Score: 10 - alexusmai laravel-file-manager 3.3.1 and before allows an authenticated attacker to achieve Remote Code Execution (RCE) through a crafted file upload. A file with a '.png` extension containing PHP code can be uploaded via the file manager interface. Although the upload appears ...
https://cvemon.intruder.io/cves/CVE-2025-56399
Currently trending CVE - Hype Score: 6 - In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
https://cvemon.intruder.io/cves/CVE-2025-48595
从问题入手,问问自己,你所在的行业,有什么最重要的,未被解决的问题?
https://mp.weixin.qq.com/s?__biz=Mzg5NDY4ODM1MA==&mid=2247486112&idx=1&sn=d053ef0a70fdb1b1d596ffc3024dc578
在数字化时代,流量卡已成为我们生活中不可或缺的一部分。但面对市场上琳琅满目的流量卡,你是否感到迷茫?
https://mp.weixin.qq.com/s?__biz=MzI5NTQ5MTAzMA==&mid=2247486152&idx=1&sn=4cd89c2382abc7147b46ad62386ddbe2
WhatsApp will introduce usernames later this year, letting its 3 billion users connect without sharing phone numbers. WhatsApp has over three billion users, and it’s finally letting them talk to each other without exchanging phone numbers. The company announced this week that usernames are coming later this year, and reservations are open now. The problem […]
https://securityaffairs.com/194449/security/whatsapp-usernames-are-coming-you-can-reserve-yours-right-now.html