Одна команда — и ты root. Новая уязвимость в Linux даёт полный контроль без ошибок и без следов
Dirty Frag затрагивает практически весь мир Linux — и исправлений пока нет.
Aggregator
【立即修复】Dirty Frag 漏洞已公开 EXP!一条命令阻断攻击路径
1 month 2 weeks ago
漏洞风险提示
数智广电的安全命题,长亭科技在CCBN2026给了答案
1 month 2 weeks ago
强势围观
Weekly Threat Landscape Digest – Week 19
1 month 2 weeks ago
Critical Vulnerabilities in Spring Cloud Config Overview: Multiple high-severity vulnerabilities disclosed in Spring Cloud Config, a component for centralized configuration […]
The post Weekly Threat Landscape Digest – Week 19 appeared first on HawkEye.
Ben O
任天堂 Switch 2 涨价 50 美元
1 month 2 weeks ago
任天堂成为最新一家因为内存等零部件价格飙升而涨价的游戏机公司。Switch 2 日本版从 ¥49,980 提高到 ¥59,980,Switch(OLED Model)从 ¥37,980 提高到 ¥47,980,Switch 从 ¥32,978 提高到 ¥43,980,Switch Lite 从 ¥21,978 提高到 ¥29,980;美国区 Switch 2 从 $449.99 提高到 $499.99;加拿大从 $629.99 提高到 $679.99;欧洲从 €469.99 提高到 €499.99。Nintendo Switch Online 等服务也进行了涨价。日本涨价的生效日期是 5 月 25 日,美国加拿大和欧洲则是 9 月 1 日。
Google is turning Android Studio into a policy watchdog
1 month 2 weeks ago
Google has expanded Play Policy Insights in Android Studio to help developers catch policy issues while coding, including warnings for common problems such as missing login credentials. Later this year, developers who connect their Play developer account directly to Android Studio will receive tailored insights. By leveraging SDK Index, a searchable list of Android SDKs that shows permissions, developer details, and Google Play registration status, they will also receive SDK insights in their workflows to … More →
The post Google is turning Android Studio into a policy watchdog appeared first on Help Net Security.
Anamarija Pogorelec
Робот не отнимет лопату, а просто будет считать каждый взмах. Как ИИ меняет ручной труд
1 month 2 weeks ago
Исследования оказывают неудобную вещь: физический труд в хаотичной среде автоматизировать сложнее, чем работу с текстами, цифрами и формами.
青藤防病毒能力金融行业认可简报
1 month 2 weeks ago
53 секунды и $1,4 млн как не бывало. Что нужно знать о взломе децентрализованной биржи Ekubo
1 month 2 weeks ago
Взлом Ekubo — небольшой эпизод большой катастрофы в мире DeFi.
Anthropic的Mythos模型如何打乱白宫的AI战略?
1 month 2 weeks ago
在最近一次与几家最大型人工智能公司掌舵人的通话中,美国副总统万斯感到警觉。万斯表示,Anthropic的 Mythos 等新型AI模型具备自行发现软件漏洞的能力;这些模型有可能引发地方政府无力应对的网
第四届京麒 CTF 挑战赛 | 如期赴约,静候强者!
1 month 2 weeks ago
即刻报名, 6月6日 初赛等你!
每周蓝军技术推送(2026.5.2-5.8)
1 month 2 weeks ago
关注高级攻防对抗技术热点,研究对手技术进行高级威胁模拟,研判攻击安全发展方向。
RiskEngine 开源设备指纹和风险监测SDK
1 month 2 weeks ago
看雪论坛作者ID:WsttXm
夯爆了!薪资最高70k,企业直招一键投递
1 month 2 weeks ago
技术岗直投
一条命令就能提权!Copy Fail 还没补完,Linux 内核又曝 Dirty Frag 漏洞
1 month 2 weeks ago
主流发行版集体中招
美国学习管理平台 Canvas 被入侵和勒索
1 month 2 weeks ago
美国教育科技公司 Instructure 旗下的学习管理平台 Canvas 被勒索组织 ShinyHunters 入侵和篡改,它威胁如果学校不在 5 月 12 日前联系它协商赎金将会泄露窃取的学校信息。攻击者利用 Instructure 系统漏洞入侵篡改了约 330 所教育机构的 Canvas 登录门户,将登录页面替换为勒索信息。ShinyHunters 声称它窃取了 8809 所学校的数据,涉及 2.75 亿名学生和教职工。它窃取的信息包括了学生姓名、邮箱地址、ID 号和消息等。在篡改事件后 Instructure 将 Canvas、Canvas Beta 和 Canvas Test 置于维护模式。
速修复已存在21年的 FreeBSD RCE 漏洞
1 month 2 weeks ago
速修复
Ivanti 提醒注意已遭利用的 EPMM 高危漏洞
1 month 2 weeks ago
速修复
Helping North Korean IT remote workers is becoming a fast track to prison
1 month 2 weeks ago
Two U.S. nationals were sentenced to 18 months in prison for operating “laptop farms” that helped North Korean IT workers gain employment at nearly 70 American companies, generating more than $1.2 million for Pyongyang’s government. Although Matthew Issac Knoot of Nashville, Tennessee, and Erick Ntekereze Prince of New York were sentenced in separate cases, both were convicted for the same type of crime involving North Korean remote IT worker schemes. According to prosecutors, both men … More →
The post Helping North Korean IT remote workers is becoming a fast track to prison appeared first on Help Net Security.
Sinisa Markovic
OSMO Pocket 4P,是大疆自己打响的「云台相机下半场」第一枪
1 month 2 weeks ago
「手持云台相机」品类里,大疆独行时代的最后一年。