IP KVM 中存在9个严重漏洞,可用于获得未认证root访问权限
速修复
Aggregator
Ubunntu 高危漏洞可导致攻击者获得根权限
2 weeks 6 days ago
速修复
CVE-2026-25438 | ThemeHunk Gutenberg Blocks Plugin up to 1.2.8 on WordPress cross site scripting (EUVD-2026-13077)
2 weeks 6 days ago
A vulnerability described as problematic has been identified in ThemeHunk Gutenberg Blocks Plugin up to 1.2.8 on WordPress. Affected by this vulnerability is an unknown functionality. Such manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2026-25438. The attack can be launched remotely. No exploit exists.
vuldb.com
CVE-2026-25443 | Dotstore Fraud Prevention for Woocommerce Plugin up to 2.3.3 on WordPress authorization (EUVD-2026-13081)
2 weeks 6 days ago
A vulnerability labeled as problematic has been found in Dotstore Fraud Prevention for Woocommerce Plugin up to 2.3.3 on WordPress. This impacts an unknown function. The manipulation results in missing authorization.
This vulnerability is known as CVE-2026-25443. It is possible to launch the attack remotely. No exploit is available.
vuldb.com
CVE-2026-25445 | Membership WishList Member X Plugin up to 3.29.0 on WordPress deserialization (EUVD-2026-13083)
2 weeks 6 days ago
A vulnerability classified as critical has been found in Membership WishList Member X Plugin up to 3.29.0 on WordPress. Affected by this issue is some unknown functionality. Performing a manipulation results in deserialization.
This vulnerability was named CVE-2026-25445. The attack may be initiated remotely. There is no available exploit.
vuldb.com
CVE-2026-25442 | QantumThemes Kentha Plugin up to 4.7.2 on WordPress cross site scripting (EUVD-2026-13079)
2 weeks 6 days ago
A vulnerability classified as problematic was found in QantumThemes Kentha Plugin up to 4.7.2 on WordPress. This affects an unknown part. Executing a manipulation can lead to cross site scripting.
The identification of this vulnerability is CVE-2026-25442. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2026-27065 | ThimPress BuilderPress Plugin up to 2.0.1 on WordPress filename control (EUVD-2026-13085)
2 weeks 6 days ago
A vulnerability identified as critical has been detected in ThimPress BuilderPress Plugin up to 2.0.1 on WordPress. This affects an unknown function. The manipulation leads to improper control of filename for include/require statement in php program ('php remote file inclusion').
This vulnerability is traded as CVE-2026-27065. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
900,000 contact records exposed in Aura data breach
2 weeks 6 days ago
Aura, the online safety service, confirmed that an unauthorized party accessed about 900,000 records, mostly names and email addresses from a marketing tool linked to a company it acquired in 2021. The incident occurred as a result of a targeted phone phishing attack that tricked one of the employees. Aura believes that contact information related to less than 20,000 active customers and less than 15,000 former customers was accessed. According to Have I Been Pwned, … More →
The post 900,000 contact records exposed in Aura data breach appeared first on Help Net Security.
Sinisa Markovic
居家办公有助于提高生育率
2 weeks 6 days ago
斯坦福、普林斯顿、伦敦国王学院的研究人员调查了居家办公和生育率的关系。研究是基于 2024 年 11 月到 2025 年 2 月之间收集的 38 国 Global Survey of Working Arrangements(G-SWA)调查数据,以及 2022 年 12 月到 2025 年 12 月间收集的 U.S. Survey of Working Arrangements and Attitudes (SWAA)美国调查数据。研究显示居家办公有助于提高生育率。在 38 国样本中,如果伴侣双方每周至少一天在家工作,则每位女性的终生生育率会增加 0.32 个孩子;美国样本中则会增加 0.45 个孩子。
Critical Microsoft SharePoint flaw now exploited in attacks
2 weeks 6 days ago
好的,我现在需要帮用户总结一篇文章的内容,控制在100字以内。用户给的文章是关于微软SharePoint的一个漏洞被利用的情况。
首先,我得通读整篇文章,抓住关键点。文章提到CISA警告说,一个在1月修补的SharePoint漏洞CVE-2026-20963现在被攻击者利用了。这个漏洞影响了多个版本的SharePoint服务器,包括2016、2019和订阅版。而2007、2010、2013版本已经停止支持,没有补丁,管理员需要升级。
成功利用这个漏洞可以让无权限的攻击者在未修补的服务器上执行远程代码。微软在1月的补丁中修复了它,并提到攻击者可以在网络攻击中注入和执行代码。虽然微软还没标记为野外被利用,但CISA已经将其加入活跃漏洞目录,并要求联邦机构在3月21日前修复。
CISA还敦促所有网络防御者尽快修补设备,并指出这类漏洞是常见的攻击目标,风险很高。此外,CISA还要求修复Zimbra协作套件中的XSS漏洞。
接下来,我需要把这些信息浓缩到100字以内。重点包括:漏洞CVE-2026-20963被利用,影响多个SharePoint版本,旧版本已停更需升级,攻击者可远程执行代码,CISA警告并要求修复。
现在组织语言:微软SharePoint存在严重漏洞CVE-2026-20963,影响多个版本;旧版已停更需升级;成功利用可致远程代码执行;CISA警告并要求联邦机构于3月21日前修复;敦促所有用户尽快修补以防范风险。
检查字数是否在限制内,并确保信息准确无误。
微软SharePoint存在严重漏洞CVE-2026-20963, 影响多个版本服务器; 旧版已停更需升级. 成功利用可致无权限攻击者远程代码执行. CISA警告并要求联邦机构于3月21日前修复, 敦促所有用户尽快修补以防范风险.
New ‘Perseus’ Android malware checks user notes for secrets
2 weeks 6 days ago
嗯,用户让我帮忙总结一篇关于安卓恶意软件Perseus的文章,控制在100字以内。首先,我需要快速浏览文章内容,抓住关键点。
文章提到Perseus通过伪装成IPTV应用传播,主要在非官方商店分发。它能够完全接管设备,截取屏幕,进行覆盖攻击。此外,它还专门检查用户笔记应用中的敏感信息,如密码、恢复短语和财务数据。目标国家主要是土耳其和意大利的金融机构以及加密服务。
接下来,我需要将这些信息浓缩到100字以内。要确保涵盖传播方式、功能、目标以及安全建议。可能的结构是:恶意软件名称、传播方式、功能、目标、安全建议。
然后,检查是否有遗漏的重要信息,比如它利用了Android 13的绕过机制,或者针对特定国家的金融机构。这些都需要包含进去。
最后,确保语言简洁明了,不使用复杂的术语,让用户容易理解。
一款名为Perseus的新安卓恶意软件伪装成IPTV应用传播,通过非官方商店分发。它可完全接管设备、截取屏幕并发起覆盖攻击。该恶意软件专门检查用户笔记应用中的敏感信息(如密码和财务数据),主要针对土耳其和意大利的金融机构及加密服务。研究人员建议用户避免从不可信来源安装APK,并使用官方应用商店下载合法应用以降低风险。
New ‘Perseus’ Android malware checks user notes for secrets
2 weeks 6 days ago
A new Android malware called Perseus is checking user-curated notes to steal sensitive information, like passwords, recovery phrases, or financial data. [...]
Bill Toulas
对《互联网应用程序个人信息收集使用规定(征求意见稿)》的学习浅析
2 weeks 6 days ago
好,我需要帮用户总结一篇文章,控制在100字以内,而且不需要特定的开头。先看看文章内容。
文章主要讲国家网信办在2026年发布了一个征求意见稿,目的是规范App收集个人信息的行为,保护用户权益。里面提到了几个关键点:合法、正当、必要和诚信原则,还有特别保护生物识别和未成年人信息。
接下来,文章分析了当前的背景,比如手机网民数量多,App数量大,但个人信息泄露问题严重,经济损失巨大。然后讨论了征求意见稿的内容特点,包括监管重点的变化、对运营平台的规范、制度的衔接和创新。
最后还提到了完善建议和影响分析,比如促进App经营思路转变、加速制度建设、技术升级以及市场发展。
现在要总结这些内容,控制在100字左右。重点包括征求意见稿的目的、主要内容、背景数据以及影响。要简洁明了,直接描述文章内容。
国家网信办发布《互联网应用程序个人信息收集使用规定(征求意见稿)》,旨在规范App个人信息收集使用行为,保障用户权益。意见稿强调合法、正当、必要和诚信原则,并对生物识别、未成年人信息等提出特别保护要求。该规定将进一步加强个人信息保护广度和深度,并对网络安全产业带来多维影响。
Critical Microsoft SharePoint flaw now exploited in attacks
2 weeks 6 days ago
A critical Microsoft SharePoint vulnerability patched in January is now being exploited in attacks, the Cybersecurity and Infrastructure Security Agency (CISA) warned. [...]
Sergiu Gatlan
360预警:Sorry勒索病毒集中开火,专挑中小型企业“偷家”
2 weeks 6 days ago
新型勒索软件Sorry只跑内存不写硬盘,锁完文件连证据都不留
独家!OpenClaw之父确认漏洞,360为所有“养虾人”筑牢安全防线
2 weeks 6 days ago
全场景覆盖,360承包你的“养虾”安全
Вы хотели бы стать директором Apple? Целых пять месяцев это можно было сделать лишь одной кнопкой
2 weeks 6 days ago
Хакеры тут ни при чем — хватило обычного любопытства и ошибок в коде.
AI教科书级防御,化解一场真实攻击
2 weeks 6 days ago
纽创信安与SGS启动网络安全ISO 21434认证项目
2 weeks 6 days ago
EDR killers are now standard equipment in ransomware attacks
2 weeks 6 days ago
Ransomware attackers routinely deploy tools designed to disable endpoint detection and response software before launching encryptors. These tools, known as EDR killers, have become a standard component of ransomware intrusions. ESET Research tracked nearly 90 EDR killers actively used in the wild. The workflow is consistent across groups: an attacker gains high privileges, deploys an EDR killer to disrupt security software, then runs the encryptor. Affiliates prefer this approach because it gives them a brief, … More →
The post EDR killers are now standard equipment in ransomware attacks appeared first on Help Net Security.
Anamarija Pogorelec