Siemens 称 Desigo CC 文件被安全引擎标记为恶意软件
Siemens 正在通知客户,其 Desigo CC 楼宇管理系统的补丁文件被多个网络安全解决方案错误地标记为恶意软件。 Desigo CC 将 HVAC、照明、安防、消防、电力及其他楼宇子系统集成到单一开放平台中,实现集中监控和管理。 这家工业巨头最近获悉,为 Desigo CC 7 至 9 版本发布的补丁文件被各种防病毒引擎检测为恶意,VirusTotal 上的测试已证实了这一点。 Sieme...
Aggregator
Microsoft 修补遭利用的 Exchange Server 漏洞
1 day 8 hours ago
error code: 1003
Microsoft 修补遭利用的 Exchange Server 漏洞
1 day 8 hours ago
Microsoft 最新的 Patch Tuesday 更新修复了一个正在被积极利用的 Exchange Server 漏洞,编号为 CVE-2026-42897。 这家科技巨头于 5 月 14 日向 Exchange 用户发出警告,提醒存在利用 CVE-2026-42897 的零日攻击,当时提供了临时缓解措施。 CISA 于 5 月 15 日将该安全漏洞添加到其已知被利用漏洞(KEV)目录中,指...
hackernews
Chrome Security Update Fixes Critical Vulnerabilities
1 day 8 hours ago
Google recently launched an urgent Chrome security update for desktop users. This essential release patches twenty-eight security vulnerabilities that threaten user safety. Therefore, users must apply these patches immediately to block potential exploits. Specifically,...
The post Chrome Security Update Fixes Critical Vulnerabilities appeared first on Information Security News.
ddos
Instagram赋予用户调整推荐算法的控制权
1 day 8 hours ago
Instagram赋予用户调整推荐算法的控制权社交媒体平台 Instagram 将让用户调整其算法在主页信息流中显示的内容。通过“你的算法”功能, “你现在可以看到我们认为你感兴趣的主题,并在 Ins
泄露韩国64%的公民购物数据后 酷澎(Coupang)被罚款27.7亿元(6,247亿韩元)
1 day 8 hours ago
诺丁汉大学数据泄露影响超过 45 万名学生
1 day 8 hours ago
error code: 1003
诺丁汉大学数据泄露影响超过 45 万名学生
1 day 8 hours ago
诺丁汉大学周三确认,一个黑客组织入侵了其学生记录系统,此次泄露影响了在校学生和校友。 诺丁汉大学是一所公立研究型大学,拥有 7,000 名教职员工和超过 46,000 名学生,在英国排名前 20,全球排名前 100。 该大学在发给 BleepingComputer 的电子邮件声明中表示,该事件暴露了"大量数据",并已向英国信息专员办公室(ICO)报告了此次泄露。 该大学表示:"诺丁汉大学成为网络安...
hackernews
CVE-2026-45656
1 day 8 hours ago
Currently trending CVE - Hype Score: 9 - Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feature locally.
CVE-2026-45655
1 day 8 hours ago
Currently trending CVE - Hype Score: 9 - Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2026-48578
1 day 8 hours ago
Currently trending CVE - Hype Score: 9 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
CVE-2026-7473
1 day 8 hours ago
Currently trending CVE - Hype Score: 1 - On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected ...
CVE-2026-11645
1 day 8 hours ago
Currently trending CVE - Hype Score: 1 - Out of bounds read and write in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-20245
1 day 8 hours ago
Currently trending CVE - Hype Score: 1 - A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and Cisco Catalyst SD-WAN Validator, formerly SD-WAN vBond, could allow an authenticated, local attacker to execute arbitrary commands ...
Dire Wolf
1 day 8 hours ago
You must login to view this content
cohenido
Dire Wolf
1 day 8 hours ago
You must login to view this content
cohenido
Dire Wolf
1 day 8 hours ago
You must login to view this content
cohenido
Apache CXF Flaws Expose Apps to Spoofing, JNDI Injection
1 day 8 hours ago
A Wave of Critical Flaws Hits Apache CXF The Apache CXF project has disclosed five new vulnerabilities affecting widely used Java web service components. Apache CXF security teams rated each issue as important. Together,...
The post Apache CXF Flaws Expose Apps to Spoofing, JNDI Injection appeared first on Information Security News.
ddos
官员威胁删帖 美国新法案将允许用户起诉
1 day 8 hours ago
根据一项新的两党法案,如果政府官员非法试图强迫社交媒体、人工智能或广播公司删除美国人的帖子 —— 无论该平台是否真的执行,他们都可以起诉要求赔偿。参议院商务委员会主席特德·克鲁兹和参议员罗恩·怀登周四
苹果在macOS 27中删除经典AFP协议 推荐用户使用SMB3等现代共享协议
1 day 8 hours ago