Aggregator
GitHub 被黑,3800个内部仓库外泄:从一枚恶意VS Code扩展说起
Конец эпохи «введите код из сообщения». Microsoft переходит на вход без паролей и SMS
上架麒麟软件、统信应用商店,360安全卫士(信创版)加快融入信创生态
“银狐”木马新变种爆发!伪装人事文件定向攻击国内用户
第二届软件系统安全赛 robo_admin 题解
上海急缺的“人工智能训练师”到底是个什么职业?
The readiness paradox: Why a false sense of cyber confidence is becoming a liability
As AI expands the attack surface and alert fatigue grows, cyber exposure management offers a clearer path to understanding where risk truly concentrates and how to reduce it before a crisis hits.
The post The readiness paradox: Why a false sense of cyber confidence is becoming a liability appeared first on CyberScoop.
终端是AI安全唯一的"战场"
七岁的剪映,长大成人
Nine-year-old Linux Kernel Vulnerability Let Attackers Exfiltrate SSH Private Keys
A newly disclosed Linux kernel vulnerability, tracked as CVE-2026-46333, exposes a serious local privilege escalation flaw that has remained undetected for nearly nine years. Security researchers at the Qualys Threat Research Unit (TRU) revealed that the issue allows attackers to exfiltrate sensitive data, including SSH private keys, and execute arbitrary commands as root on affected […]
The post Nine-year-old Linux Kernel Vulnerability Let Attackers Exfiltrate SSH Private Keys appeared first on Cyber Security News.
网络安全信息与动态周报2026年第20期(5月11日-5月17日)
【漏洞通告】Linux Kernel PinTheft 权限提升漏洞
New Microsoft Defender 0‑Days Actively Exploited in the Wild
Two newly disclosed Microsoft Defender vulnerabilities are being actively exploited in the wild, enabling local attackers to elevate privileges to SYSTEM and potentially disrupt endpoint protection across Windows environments. The bugs, tracked as CVE‑2026‑41091 (Elevation of Privilege) and CVE‑2026‑45498 (Denial of Service), were published on May 19, 2026, and affect core Microsoft Defender components used […]
The post New Microsoft Defender 0‑Days Actively Exploited in the Wild appeared first on Cyber Security News.
美国网络司令部正系统打造支撑网络攻防作战的核心平台与能力体系
AI重塑网络攻击:漏洞利用成最流行手段,利用门槛被大幅拉低
Vivaldi 8.0 释出
BadIIS Malware Turns Hijacks IIS Servers and Redirect Users to Illicit Sites
A dangerous piece of malware known as BadIIS has been actively targeting Internet Information Services (IIS) web servers, quietly hijacking them and redirecting unsuspecting visitors to illegal gambling sites, adult content platforms, and other illicit destinations. The attacks have been going on for years across the Asia-Pacific region and beyond, placing thousands of legitimate websites […]
The post BadIIS Malware Turns Hijacks IIS Servers and Redirect Users to Illicit Sites appeared first on Cyber Security News.