Aggregator

加州的一位联邦法官命令马斯克（Elon Musk）的 X Holdings 披露其股东名单。马斯克于 2022 年以 440 亿美元收购 Twitter，将其私有化并裁掉四分之三的员工。Twitter 后改名为 X。一群前 Twitter 员工提起诉讼，要求支付与前雇主发生纠纷而产生的仲裁费。马斯克至今只披露了 X Holdings 几位股东的身份，他们包括前 Twitter CEO Jack Dorsey，他将持有的价值逾 10 亿美元的 Twitter 股份转入了新公司；甲骨文联合创始人 Larry Ellison，硅谷知名风投 Andreessen Horowitz，以及红杉资本。现在 X Holdings 必须在 9 月 4 日之前向法院提交文件披露完整股东名单。

Halliburton于周三确认其系统正遭受网络攻击。报告显示，该攻击已迫使公司实施了全面的网络隔离措施，要求员工断开所有与内部网络的连接。 该公司发言人表示：“我们已意识到部分公司系统受到影响，目前正在进行原因分析和潜在影响评估。”发言人补充道：“公司已启动既定应对措施，IT团队正在与外部安全专家协作，积极处理和缓解此次安全事件。” X 用户@MzBlckSheep发文称，“从休斯顿的一位朋友那里得知，Halliburton 目前正遭受大规模的基于云的网络安全攻击”，这是社交媒体上关于这一事件的较早评论之一。 用户 @MzBlckSheep 还写道：“他们让每个人都断开与内部网络的连接，这正是将所有数据托付给云计算所带来的问题。” 此外，一位知情人士向路透社证实，Halliburton已要求部分员工暂时断开与内部网络的连接。此次攻击似乎已影响到公司位于休斯顿北带园区的业务运营以及一些全球网络连接。 截至周三，尚无任何网络犯罪组织声明对Halliburton遭受的袭击负责。 根据公司网站的信息，Halliburton是全球第二大油田服务公司，总部设在美国德克萨斯州休斯顿和迪拜，业务覆盖70个国家，拥有超过40000名国际员工。 针对能源部门的袭击 安全专家指出，针对能源部门的网络攻击构成了对关键基础设施构成了严重威胁，过去类似攻击曾造成重大后果。 2021 年，美国燃料供应商 Colonial Pipeline 遭遇了 DarkSide 勒索软件团伙的攻击，导致其网络系统关闭了近一周。Colonial Pipeline 的首席执行官承认，公司向该组织支付了440万美元的赎金。 这一臭名昭著的攻击发生在新冠疫情结束之际，对燃料供应链造成了严重冲击，导致价格飙升、燃料短缺，并引发了美国东南部各地加油站的恐慌性囤积。   消息来源：cybernews，译者：YY；   本文由 HackerNews.cc 翻译整理，封面来源于网络；   转载请注明“转自 HackerNews.cc”并附上原文

A hacker automating the creation of compelling and realistic content that mimics or impersonates l

数据只有在流动中才能体现其价值，要根据数据流动的不同阶段和程度，采取不同的安全措施。

Проблема стала уже третьей по счёту в движке V8 с начала года.

A vulnerability was found in ThemeIsle Orbit Fox Plugin up to 2.10.36 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the component SVG File Upload Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-7778. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Responsive Lightbox & Gallery Plugin up to 2.4.7 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component File Upload. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-6870. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in User Private Files Plugin up to 2.1.0 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to improper control of resource identifiers. This vulnerability is uniquely identified as CVE-2024-7848. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Dell Power Manager up to 3.15.0 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to incorrect privilege assignment. This vulnerability is handled as CVE-2024-39576. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

The relentless evolution of digital landscapes, and the growth of the hybrid workforce, coupled wit

A vulnerability has been found in posimyththemes The Plus Addons for Elementor Plugin up to 5.6.2 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Testimonials Widget. The manipulation of the argument carousel_direction leads to cross site scripting. This vulnerability is known as CVE-2024-5583. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in UCI IDOL up to 2.12. Affected is an unknown function. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2024-45168. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in UCI IDOL up to 2.12. This issue affects some unknown processing. The manipulation leads to predictable exact value from previous values. The identification of this vulnerability is CVE-2024-45165. The attack needs to be done within the local network. There is no exploit available.