Aggregator

iFixit 给予联想新款 T14 Gen 7 和 T16 Gen 5 可维修评分 10/10。iFixit 列出了笔记本电脑内部非常容易更换的组件：电池几乎无需工具就能替换；工业标准的 M.2 SSD 固态硬盘；键盘容易更换；LPCAMM2 内存条；精简的显示屏维修；模块散热系统，风扇可独立更换；模块化 Thunderbolt 接口，等等。

Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA

今日暂未更新资讯~
更多最新文章，请访问SecWiki

The FBI, in coordination with multiple international law enforcement agencies, has officially seized LeakBase, a prominent cybercriminal forum notorious for hosting and trading stolen databases, under a coordinated global operation dubbed “Operation Leak.” Both primary domains, leakbase[.]ws and leakbase[.]la, now redirect visitors to an FBI seizure banner, with name servers switched to ns1.fbi.seized.gov and ns2.fbi.seized.gov. The takedown was […]

The post Operation Leak Dismantles LeakBase Cybercriminal Forum – User Data, IP Logs Secured by Authorities appeared first on Cyber Security News.

本报告整合谷歌威胁情报小组（GTIG）与 iVerify 安全团队对Coruna iOS漏洞利用工具包的独立研

In January 2026, a targeted cyberattack emerged against government officials in Iraq. The threat group, tracked as Dust Specter, impersonated Iraq’s Ministry of Foreign Affairs to trick high-value targets into downloading malicious files. The campaign introduced four previously undocumented malware tools — SPLITDROP, TWINTASK, TWINTALK, and GHOSTFORM — each reflecting the precision of a seasoned, […]

The post Iran‑Nexus APT ‘Dust Specter’ Hits Iraqi Officials with AI‑Assisted Malware and Novel RATs appeared first on Cyber Security News.

Военные отчаянно ломают голову над обломками нового оружия врага.

The University of Mississippi Medical Center (UMMC) says it has resumed normal operations, nine days after a ransomware attack blocked access to electronic medical records and took down many of its IT systems. [...]

In modern SOCs, it all boils down to two things: time and impact. How quickly are incidents contained? How accurate are the decisions? These questions define not only operational efficiency, but overall business resilience.  Yet many organizations tend to invest heavily in tooling while overlooking structural weaknesses. The missing link is often the collaboration between alert triage and incident response teams.  Reducing MTTR is more than a technical objective, and it begins with […]

The post To Reduce MTTR and Business Risk, Start with Better SOC Collaboration  appeared first on Cyber Security News.

Blind spots in complex cloud environments allow identity-based attacks to achieve the same outcome as complex malware or zero-day exploits. Sophistication need not apply.

The post Attackers are using your network against you, according to Cloudflare appeared first on CyberScoop.

在内存价格飙升导致 Windows PC 日益昂贵的背景下，苹果正通过其低价笔记本电脑 MacBook Neo 抢占 PC 的市场。MacBook Neo 重约 1.2 千克，采用 A18 Pro 芯片，包括 6 核 CPU，2 个性能核心和 4 个效能核心，5 核 GPU，16 核 NPU，硬件加速光线追踪，8GB 内存和 256GB/512GB SSD，13.0 英寸 LED 背光显示屏，初始分辨率 2408 x 1506 (219 ppi)，最长 16 小时流媒体视频播放，最长 11 小时的无线上网，起售价 4599 元，3 月 6 日上午 9 点接受预购，3 月 11 日发售。

The University of Hawaii Cancer Centre has confirmed a massive ransomware attack affecting 1.24 million people. Sensitive data, including Social Security numbers and historical voter records dating back to 1993, was compromised.

LastPass warns of a phishing campaign using fake security alerts about unauthorized access or password changes to steal users’ master passwords. LastPass has warned users about a new phishing campaign using fake security alerts that claim unauthorized access or master password changes. The emails, which spoof LastPass’s display name, attempt to trick recipients into revealing […]

Мошенники создают фейковые чаты спортклубов для распространения Android-трояна BTMOB RAT.

A routine RDP brute-force alert led to unusual credential hunting and a geo-distributed VPN-linked infrastructure. Huntress Labs explains how one compromised login unraveled a suspected ransomware-as-a-service ecosystem tied to initial access brokers. [...]

Cloudflare is introducing Attack Signature Detection and Full-Transaction Detection to provide continuous, high-fidelity security insights without the manual tuning of traditional WAFs. By correlating request payloads with server responses, we can now identify successful exploits and data exfiltration while minimizing false positives.

Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict

Dark Reading Confidential Episode 15: Interpol relied on Will Thomas and team to help break up a sprawling cybercrime ring, leading to the arrest of 574 suspects, the recovery of more than $3 million, and the decryption of six malware variants. Here's his story.

Win11Debloat: A 40k-Star PowerShell Script for Stripping Bloatware, Telemetry, and AI Features from Windows

The gap between human-led attacks and machine-driven intrusions is closing faster than most organizations expected. Cloudforce One, Cloudflare’s dedicated threat intelligence team, released the inaugural 2026 Cloudflare Threat Report on March 3, 2026, issuing a clear warning: artificial intelligence has become a core engine behind modern cyber attacks. Built from trillions of network signals gathered […]

The post New Threat Report Warns of AI is Automating High-Velocity Attacker Operations appeared first on Cyber Security News.