Aggregator
Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware
1 month 1 week ago
Microsoft has warned of fresh campaigns that are capitalizing on the upcoming tax season in the U.S. to harvest credentials and deliver malware.
The email campaigns take advantage of the urgency and time-sensitive nature of emails to send phishing messages masquerading as refund notices, payroll forms, filing reminders, and requests from tax professionals to deceive recipients into opening
The Hacker News
Отключенные госуслуги и режим ЧС. Одна программа устроила цифровой детокс городу в США
1 month 1 week ago
В Фостер-Сити «легли» почти все городские сервисы.
CISA Orders US Government to Patch Maximum Severity Cisco Flaw
1 month 1 week ago
CISA added CVE-2026-20131 to its KEV catalog as it is being used in ransomware campaigns
致命分身 | FakeGit 伪造开源生态投毒活动追踪
1 month 1 week ago
FakeGit通过伪造AI、爬虫等GitHub仓库,利用LuaJIT加载恶意脚本,结合进程镂空与Polygon区块链C2通信,最终窃取敏感信息。
Trivy供应链攻击触发CanisterWorm 在47个 npm 包中自传播
1 month 1 week ago
针对热门Trivy扫描器发动供应链攻击的威胁行动者疑似正在实施后续攻击,使用新型自传播蠕虫"CanisterWorm"入侵大量 npm 包。
Oracle 紧急修复 Identity Manager 和 Web Services Manager 中的严重RCE漏洞
1 month 1 week ago
速修复
$30 IP-KVM Flaws Could Give Attackers BIOS-Level Control Across Enterprise Networks
1 month 1 week ago
A recent security assessment by researchers has uncovered nine severe vulnerabilities across four popular low-cost IP-KVM devices. These flaws uncovered by Eclypsium allow attackers to gain complete, BIOS-level control over connected systems, effectively bypassing all operating system security controls and Endpoint Detection and Response (EDR) agents. Compromising a Keyboard, Video, and Mouse (KVM) device gives […]
The post $30 IP-KVM Flaws Could Give Attackers BIOS-Level Control Across Enterprise Networks appeared first on Cyber Security News.
Abinaya
“龙虾”一句话险些让Meta裸奔,360用AI监管AI守住防线
1 month 1 week ago
360为所有“养虾人”筑起安全防线
Global Crackdown Dismantles 4 Botnets Behind Major DDoS Attacks
1 month 1 week ago
Global crackdown dismantles Aisuru, KimWolf, JackSkid and Mossad botnets behind major DDoS attack campaigns targeting millions of devices worldwide.
Deeba Ahmed
【安全圈】地缘冲突下加密货币“雪崩”,比特币跳水,20万人爆仓血本无归!
1 month 1 week ago
一年一度的两会,是观察国家政策走向的重要窗口。2026年政府工作报告已经新鲜出炉,其中关于网络安全的表述,字字千钧。今天,我们就来深度拆解这份报告背后的安全信号。本次报告明确提出:“健全数据要素基础制度,强化数据安全与个人信息保护,完...
【安全圈】晋中网安部门破获一起非法获取公民个人信息案
1 month 1 week ago
一年一度的两会,是观察国家政策走向的重要窗口。2026年政府工作报告已经新鲜出炉,其中关于网络安全的表述,字字千钧。今天,我们就来深度拆解这份报告背后的安全信号。本次报告明确提出:“健全数据要素基础制度,强化数据安全与个人信息保护,完...
【安全圈】为博眼球使用 AI 造谣“烟花厂爆炸致 2 死 2 伤”,男子被依法处罚
1 month 1 week ago
一年一度的两会,是观察国家政策走向的重要窗口。2026年政府工作报告已经新鲜出炉,其中关于网络安全的表述,字字千钧。今天,我们就来深度拆解这份报告背后的安全信号。本次报告明确提出:“健全数据要素基础制度,强化数据安全与个人信息保护,完...
上周关注度较高的产品安全漏洞(20260316-20260322)
1 month 1 week ago
上周关注度较高的产品安全漏洞(20260316-20260322)
CNVD漏洞周报2026年第11期
1 month 1 week ago
国家信息安全漏洞共享平台(以下简称CNVD)本周共收集、整理信息安全漏洞476个,其中高危漏洞207个、中危漏洞243个、低危漏洞26个。
【非虫系列】打包更优惠!安卓软件开发与逆向分析(开发篇+工具篇)
1 month 1 week ago
目录更新
新型木马绕过 Chrome 加密,无注入窃取浏览器主密钥
1 month 1 week ago
首个利用调试器绕过Chrome新版加密的窃密木马。
首届 PolarisCTF 招新赛正式启幕
1 month 1 week ago
以星为引,以技为名,我们在星盟,等每一个闪闪发光的你
安卓逆向基础知识之frida Hook
1 month 1 week ago
看雪论坛作者ID:黎明与黄昏
Сканер уязвимостей, который сам стал главной уязвимостью. Ироничная история взлома Trivy.
1 month 1 week ago
Злоумышленники научились доставать секреты прямо из оперативной памяти серверов.