Aggregator
ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories
气味会留下记忆
Payload
You must login to view this content
Android Malware Spotted Subscribing Victims to Paid Services Without Consent
Payload
You must login to view this content
«Чёрная пятница» для кибермошенников. В даркнете бесплатно раздают свежие кредитки
关注 | 警惕盲盒卡牌“概率陷阱” 中消协发布“六一”涉儿童消费提示
专家观点 | 筑牢可信可控的数字安全屏障
通知 | 这31款APP及SDK被通报!
专家解读|江明涛:筑牢人工智能伦理底线 护航产业负责任创新
论坛·数据安全治理 | 我国人工智能数据安全风险及监管模式研究
Установил библиотеку и потерял всё. В каталоге PyPI нашли шпиона с функцией самоуничтожения
Flipper One project needs community help to build open Linux platform
【安全圈】美组织要求 FTC 对 Roblox 展开调查:是否强迫未成年人过度充钱
【安全圈】黑客团伙公开叫卖GitHub核心代码,3800个内部仓库遭窃取,事件细节曝光!
【安全圈】间谍利用路由器窃密!快自查你的设备是否安全
Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498)
Attackers are exploiting two Microsoft Defender vulnerabilities (CVE-2026-41091 and CVE-2026-45498), Microsoft acknowledged and CISA confirmed by adding them to its Known Exploited Vulnerabilities catalog. The vulnerabilities CVE-2026-41091 allows for local privilege elevation (LPE), and is caused by the Microsoft Malware Protection Engine improperly resolving links before accessing files. “An attacker who successfully exploited this vulnerability could gain SYSTEM privileges,” Microsoft noted. CVE-2026-45498 can cause a denial-of-service (DoS) state, i.e., it can be used to prevent … More →
The post Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) appeared first on Help Net Security.