Aggregator

建议手工推导，推出来后，背一下这个结论，赚死。

今日暂未更新资讯~
更多最新文章，请访问SecWiki

A vulnerability classified as problematic has been found in Erlang OTP. The impacted element is an unknown function in the library lib/ssh/src/ssh_sftpd.erl. This manipulation causes information disclosure. This vulnerability is handled as CVE-2026-48855. The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Erlang OTP. It has been declared as problematic. This vulnerability affects unknown code in the library lib/inets/src/http_client/httpc_response.erl. Such manipulation of the argument host leads to open redirect. This vulnerability is listed as CVE-2026-48856. The attack may be performed from remote. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in sahlberg libnfs up to up to 6.0.2. The impacted element is the function libnfs_zdr_string in the library lib/libnfs-zdr.c of the component NFS Handler. Such manipulation leads to improper validation of specified quantity in input. This vulnerability is referenced as CVE-2026-53689. It is possible to launch the attack remotely. No exploit is available. It is best practice to apply a patch to resolve this issue.

A vulnerability categorized as critical has been discovered in Erlang OTP up to 6.x. Impacted is an unknown function in the library lib/inets/src/ftp/ftp_internal.erl of the component PASV Handler. Executing a manipulation can lead to server-side request forgery. This vulnerability is registered as CVE-2026-48858. It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.

Law enforcement has dismantled the “AudiA6” cryptocurrency service allegedly used by ransomware actors and other cybercriminals to launder more than $380 million. [...]

GitHub has announced a major security-focused update to the Node Package Manager (npm), introducing breaking changes in the upcoming npm v12 release to reduce software supply chain attack risks significantly. The update, expected in July 2026, will turn off automatic execution of installation scripts by default, one of the most commonly abused mechanisms in malicious […]

The post GitHub to Automate Disable npm Script Installs to Block Supply Chain Attacks appeared first on Cyber Security News.

为了投资建设 AI 基础设施，科技巨头们正大举借债，规模达到了千亿美元。Google 母公司 Alphabet 一周前表示，计划过股票销售筹集 800 亿美元；Meta 宣布计划通过销售债券筹集 300 亿美元；亚马逊计划在加拿大发行债筹集 140 亿美元，紧跟着又与花旗、摩根大通、富国、汇丰和美银证券等达成协议借款约 175 亿美元总融资 315 亿美元。为了资助 AI 基础设施如芯片和数据中心，主要科技公司的支出都创下了历史新高。如此高的投资引发了回报相关的疑问。

A new study has revealed that advanced large language models (LLMs), particularly Anthropic’s Claude Mythos Preview, are dramatically accelerating the development of N-day exploits, reducing timelines from weeks to just hours and significantly increasing risk during the patch gap. Unlike zero-day vulnerabilities, N-day vulnerabilities are publicly disclosed flaws that remain unpatched across many systems. These […]

The post Claude Mythos Turning N-Days Into N-Hours With Rapid Working Exploit Creation appeared first on Cyber Security News.

CISA has added a critical vulnerability in Check Point Security Gateway to its Known Exploited Vulnerabilities (KEV) catalog, warning that threat actors are actively exploiting the flaw in ransomware campaigns. The vulnerability, tracked as CVE-2026-50751, allows unauthenticated remote attackers to bypass user authentication and establish unauthorized VPN connections, posing severe risks to enterprise networks worldwide. […]

The post CISA Warns of Check Point Security Gateway Vulnerability Actively Exploited in Ransomware Attacks appeared first on Cyber Security News.

Hackers are using weaponized DMG files to target macOS users with infostealer malware, exploiting the long-standing myth that Apple devices are safe from cyber threats. These attacks rely on fake software installers disguised as legitimate apps, tricking users into handing over access without raising any alarm. The speed of these campaigns has made them one […]

The post Hackers Use Weaponized DMG Files to Target macOS Users With Infostealer Malware appeared first on Cyber Security News.

Часть индустрии уже готовит запасной путь, а часть всё ещё спорит о сроках.

5 月 27 日 Fedora 开发者 Adam Williamson 写邮件给 Nathan Giovannini，对由其账号控制的一个 AI 智能体提出疑问。该智能体过去几个月做了一系列令人感到可疑的事情：无缘无故修改 bug 的严重级别和优先级，伪造对 Bug 的回复，说服维护者将可疑代码合并到 Anaconda 安装程序，向上游项目递交了一系列 pull requests (PRs)，其中一部分已被接受。Giovannini 回应称他的账号被盗了，他不是该智能体的控制者。此事令社区联想到了曾引发广泛关注的 XZ 后门事件。在 XZ 后门事件中，化名为 JiaT75(Jia Tan)的攻击者通过在两年多时间里向项目积极贡献代码而获得信任，然后再通过施压而最终成为项目的共同维护者，得到了能悄悄在代码中植入后门的权限。在以大模型为代表的生成式 AI 时代，贡献代码比以往任何时候更轻松，这意味着攻击者可以使用智能体向开源项目积极贡献代码，积累信任，然后再发动攻击。该智能体使用的账号已经关闭，相关 PR 已经回滚。

Most SOC teams are investing in training. They have to. With the threat landscape evolving faster than a zero-day exploit, "standing still" is just another way of saying "falling behind."

Great Marlow School, which has 1,428 pupils according to the Department for Education (DfE), said it was set to remain closed while it works with specialist IT and cybersecurity professionals to resolve the issue.

It seems this issue is a false-positive. Please confirm the sources provided and consider disregarding this entry.

A vulnerability classified as critical has been found in IBM Guardium Key Lifecycle Manager up to 5.1.0. Affected by this issue is some unknown functionality. Performing a manipulation results in improper privilege management. This vulnerability is known as CVE-2026-1726. Access to the local network is required for this attack. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in IBM Aspera HSTS for CP4I up to 1.5.19. This affects an unknown function. This manipulation causes improper authentication. This vulnerability is handled as CVE-2026-7876. The attack can be initiated remotely. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in sgl-project SGLang up to 0.5.11. It has been rated as problematic. Affected by this vulnerability is the function data_hash of the component Cache Handler. This manipulation causes denial of service. This vulnerability is tracked as CVE-2026-10775. The attack is restricted to local execution. Moreover, an exploit is present. The pull request to fix this issue awaits acceptance.