Aggregator
网络首发 | 北京交通大学刘吉强教授团队:面向可信数据空间的密钥管理技术研究综述
2 weeks ago
Submit #830261: warmcat libwebsockets 4.5.99-v4.5.0-382-g4a63b9333 Uncontrolled Memory Allocation [Accepted]
2 weeks ago
Submit #830261 / VDB-367955
biniam
U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog
2 weeks ago
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Palo Alto Networks PAN-OS flaw, tracked as CVE-2024-21182 (CVSS score of 7.5), to its Known Exploited Vulnerabilities (KEV) catalog. The CVE-2024-21182 flaw is an easily exploitable vulnerability affecting Oracle WebLogic […]
Pierluigi Paganini
Samsung mobile security advisory (AV26-537)
2 weeks ago
Canadian Centre for Cyber Security
蓝色章鱼是全新物种
2 weeks ago
2015 年在加拉帕戈斯群岛进行深海考察的科学家在查看遥控潜水器拍摄的影像时,发现了一只体型娇小、通体呈蓝色的章鱼,它位于水下约 1773 米处。科学家捕捉了这只章鱼以进行进一步分析。研究人员如今得出结论:这只体型小到可以放在手掌的可爱小生物属于一个全新物种。研究报告发表在《Zootaxis》期刊上。小章鱼被保存在储藏室中。由于它的独一无二,且极不可能采集到另一只,科学家不愿意对其解剖进行彻底的物种鉴定分析。因此研究团队选择了 mini-CT 扫描,研究表明这种生物手臂很短,臂上的吸盘很少,没有墨囊,皮肤光滑,且有一颗巨大的脊齿。他们将该物种命名为 Microeledone galapagensis。
Infosecurity Europe: Cybersecurity Teams Which Don’t Leverage AI are "Doomed to Fail"
2 weeks ago
Humans still need to be part of cyber defense, but refusing to deploy AI is no longer optional against AI-enhanced cyber threats, warns Dataminr’s Joe Slowik
Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts
2 weeks ago
Hackers abused Meta’s AI support bot to hijack major Instagram accounts, bypassing security checks as videos showed the flaw before Meta fixed the issue.
Deeba Ahmed
美国ICE与以色列间谍软件公司Paragon的价值200万美元合同
2 weeks ago
404 Media于2024年10月首次根据信息自由法(FOIA)提交了与国土安全调查局(HSI)采购Para
Уровень защиты «паранойя». Менеджер паролей Dashlane заблокировал собственных клиентов из-за сверхбдительной системы безопасности
2 weeks ago
Алгоритмы решили действовать на опережение, и ударили по обычным пользователям.
富铁免疫细胞帮助信鸽导航
2 weeks ago
迁徒鸟、海龟等动物似乎具有感知地磁场的能力,能利用地磁场进行导航。根据发表在《科学》期刊上的一项研究,信鸽肝脏中的富铁免疫细胞可能赋予了其磁罗盘的能力。对信鸽组织薄片的分析发现,其肝脏巨噬细胞富含铁蛋白,但它在脾脏中很少,且在喙和大脑中完全不存在。电子显微镜的进一步观察发现,巨噬细胞紧邻神经元,而这些神经元都与中枢神经系统相连。研究人员设计了一个试验检验富含铁的巨噬细胞是否能像磁罗盘一样为信鸽指引方向:他们使用名为 clodronate liposomes 的药物抑制巨噬细胞的活性。研究团队训练了 34 只信鸽。白天信鸽利用太阳的位置确定方向。当阴天或完全被云层遮蔽时,它们依靠磁感应辨别方向。研究团队给 18 只信鸽注射了 clodronate,24 小时后当云完全遮蔽阳光时将它们逐一放飞。这些信鸽都佩戴了 GPS 发射器,研究团队能实时追踪其飞行轨迹。所有 18 只信鸽都迷路了,直到天空放晴才返回。16 只对照组的信鸽都没有迷路。研究人员表示,如果铁蛋白辅助导航机制得到证实,那么它可能具有普适性,适用于从蜜蜂到蝙蝠,到鲸鱼和鲨鱼等各种动物。
CISA Warns of Two-Year-Old Oracle WebLogic Server Vulnerability Exploited in Attacks
2 weeks ago
CISA has issued a fresh warning highlighting active exploitation of a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, adding it to its Known Exploited Vulnerabilities (KEV) catalog on June 1, 2026. The alert underscores the increasing risk posed by exposed enterprise middleware systems, particularly those accessible over network protocols such as T3 and IIOP. […]
The post CISA Warns of Two-Year-Old Oracle WebLogic Server Vulnerability Exploited in Attacks appeared first on Cyber Security News.
Abinaya
Why the browser is now the front line for AI security
2 weeks ago
AI-powered attacks and shadow AI adoption are creating new security risks inside the browser. Push Security explains why browser visibility is becoming critical for both threat detection and AI governance. [...]
Sponsored by Push Security
Critical KMW CCTV Vulnerability Let Attackers Gain Unauthorized Access to Camera Feeds
2 weeks ago
A critical security flaw in KMW CCTV security cameras could allow attackers to gain full, unauthorized access to live camera feeds and device settings. The vulnerability, tracked as CVE-2026-5386, has been assigned a high CVSS v3 score of 9.1, highlighting its severe impact on organizations relying on these surveillance systems. The issue stems from an […]
The post Critical KMW CCTV Vulnerability Let Attackers Gain Unauthorized Access to Camera Feeds appeared first on Cyber Security News.
Abinaya
Space Bears
2 weeks ago
You must login to view this content
cohenido
Interlock
2 weeks ago
You must login to view this content
cohenido
BCS 2026|巴基斯坦数字局主席苏海尔·穆尼尔:AI时代,最强有力的防御是为体系构建信任
2 weeks ago
BCS 2026|云晓春:AI时代网络安全应重点关注三大方向
2 weeks ago
BCS 2026 | 赵志国:智能时代网络安全治理体系呈现三大走向
2 weeks ago
BCS 2026 | 林泽炎:聚力、协同、共治 共建安全可信数字生态
2 weeks ago