Aggregator

Gartner has claimed that AI agents will reduce the time it takes to exploit exposed accounts

Kali Linux 2025.1a 发布，新增 Hoaxshell 工具，全新主题和桌面更新，提升安全测试体验。

The Rules File Backdoor attack targets AI code editors like GitHub Copilot and Cursor, making them inject malicious code via a supply chain vulnerability. Pillar Security researchers uncovered a dangerous new supply chain attack vector called ‘Rules File Backdoor.’ Threat actors could use the technique to silently compromise AI-generated code by injecting malicious code. The attack […]

Нестандартный аргумент в переговорах Ox Thief начинает новую эру атак.

Identity-based attacks are on the rise. Attackers are targeting identities with compromised credentials, hijacked authentication methods, and misused privileges. While many threat detection solutions focus on cloud, endpoint, and network threats, they overlook the unique risks posed by SaaS identity ecosystems. This blind spot is wreaking havoc on heavily SaaS-reliant organizations big and small

获评企业数智化转型实践成果！360企业安全浏览器推动AI普惠

获评企业数智化转型实践成果！360企业安全浏览器推动AI普惠

Currently trending CVE - Hype Score: 3 - Incorrect handling of certain string inputs may result in MongoDB Rust driver constructing unintended server commands. This may cause unexpected application behavior including data modification. This issue affects MongoDB Rust Driver 2.0 versions prior to 2.8.2

上号！开挖！

上号！开挖！

上号！开挖！

上号！开挖！

上号！开挖！

上号！开挖！

确切攻击方法尚不清晰

尽管该漏洞属于中危级别，但已成为真实的攻击向量。

随着信息网络与社会生活的深度融合，违法犯罪行为也正在向网络空间扩散。近年来，利用网络制造散播谣言、负面信息进行敲诈勒索的案件时有发生，严重损害人民群众和企事业单位的名誉权、财产权等合法权益，危害网络安全、社会稳定和经济发展。