Aggregator

在暗网毒品市场 Incognito 管理员 Lin Rui-Siang 的量刑听证会上，他的辩护律师首次披露，Incognito 的另一名管理员是 FBI 的线人，而这位管理员负责了 Incognito 大部分的毒品交易，Lin 坚称他主要负责代码和网站的技术基础设施。Lin 在狱中接受采访时表示，未披露名字的 FBI 线人是 Incognito 的正式合伙人，负责了网站大部分的管理工作，包括解决纠纷，允许哪些卖家出售毒品哪些卖家将被剔除。Lin 称是 FBI 在运营这个毒品交易网站。检方则否认该线人是 Lin 的同级，称线人是其下属不具有平等关系，否认政府运营该网站。

Британия объявила охоту на нейросети, которые «раздевают» женщин.

Large language models, commonly known as LLMs, are increasingly being asked to generate passwords — and new research has shown that the passwords they produce are far weaker than they appear. A password like G7$kL9#mQ2&xP4!w may look convincingly random, but it carries a fundamental flaw that standard password-strength tools consistently miss. The core problem lies in how […]

The post LLM-Generated Passwords Expose Major Security Flaws with Predictability, Repetition, and Weakness appeared first on Cyber Security News.

A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET

A public proof-of-concept exploit has been released for CVE-2026-2441, a critical use-after-free zero-day vulnerability in Google Chrome’s Blink CSS engine that Google confirmed is being actively exploited in the wild. Security researcher Shaheen Fazim reported the flaw on February 11, 2026, and Google issued an emergency patch just two days later. Classified as Chrome’s first […]

The post PoC Released for Critical Chrome 0-day Vulnerability Exploited in the Wild appeared first on Cyber Security News.

Почему атака на одну больницу поставила под удар всю медицину штата.

Three Silicon Valley engineers have been indicted for allegedly stealing confidential technology data from Google and other major companies and transferring that information to unauthorized locations, including Iran. The defendants Samaneh Ghandali (41), Mohammadjavad “Mohammad” Khosravi (40), and Soroor Ghandali (32), all residents of San Jose, were arrested and appeared before a federal court in San Jose […]

The post Silicon Valley Engineers Charged With Stealing Trade Secrets From Google and Other Tech Companies appeared first on Cyber Security News.

约三分之一的攻击利用被盗凭证实施入侵

Как вас заставляют сомневаться в памяти и чувствах, и как поставить защиту.

A vulnerability categorized as problematic has been discovered in wren-lang wren up to 0.4.0. This affects the function peekChar of the file src/vm/wren_compiler.c of the component Source File Parser. Such manipulation leads to out-of-bounds read. This vulnerability is documented as CVE-2026-2858. The attack needs to be performed locally. Additionally, an exploit exists. The project was informed of the problem early through an issue report but has not responded yet.

Submit #754489 / VDB-347097

Google prevented more than 1.75 million policy-violating apps from being published on Google Play and banned over 80,000 developer accounts that attempted to publish harmful apps in 2025. Developer verification, mandatory pre-review checks, and testing requirements in the Google Play ecosystem have reduced entry points for bad actors. “User safety is at the core of everything we build. Over the years, we’ve introduced tools to help users stay safe and make informed app choices — … More →

The post Google cleans house, bans 80,000 developer accounts from the Play Store appeared first on Help Net Security.

A vulnerability was found in D-Link DWR-M960 1.01.07. It has been rated as critical. Affected by this issue is the function sub_423E00 of the file /boafrm/formPortFw of the component Port Forwarding Configuration Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow. This vulnerability is registered as CVE-2026-2857. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability was found in D-Link DWR-M960 1.01.07. It has been declared as critical. Affected by this vulnerability is the function sub_424AFC of the file /boafrm/formFilter of the component Filter Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. This vulnerability is cataloged as CVE-2026-2856. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in D-Link DWR-M960 1.01.07. It has been classified as critical. Affected is the function sub_4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. This vulnerability is listed as CVE-2026-2855. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability was found in D-Link DWR-M960 1.01.07 and classified as critical. This impacts the function sub_4611CC of the file /boafrm/formNtp of the component NTP Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. This vulnerability is tracked as CVE-2026-2854. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability has been found in D-Link DWR-M960 1.01.07 and classified as critical. This affects the function sub_462E14 of the file /boafrm/formSysLog of the component System Log Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. This vulnerability is identified as CVE-2026-2853. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #754476 / VDB-347096

Submit #754474 / VDB-347095

Submit #754458 / VDB-347094