Aggregator

Iranian state-sponsored threat actors have been observed orchestrating spear-phishing campaigns targeting a prominent Jewish figure starting in late July 2024 with the goal of delivering a new intelligence-gathering tool called AnvilEcho. Enterprise security company Proofpoint is tracking the activity under the name TA453, which overlaps with activity tracked by the broader cybersecurity

根据国家信息安全漏洞库（CNNVD）统计，本周（2024年8月12日至2024年8月18日）安全漏洞情况如下。

Several vulnerabilities have recently been identified in OpenJDK 8, which could potentially lead to denial of service, information disclosure, arbitrary code execution, or even the bypassing of Java sandbox restrictions. In response, Canonical has released security fixes for multiple versions of OpenJDK, including OpenJDK 21, OpenJDK 17, OpenJDK 11, and OpenJDK 8 on affected Ubuntu […]

The post Ubuntu Addresses Multiple OpenJDK 8 Vulnerabilities appeared first on TuxCare.

The post Ubuntu Addresses Multiple OpenJDK 8 Vulnerabilities appeared first on Security Boulevard.

Several vulnerabilities have recently been identified in OpenJDK 8, which could potentially lead to

ESET analysts dissect a novel phishing method tailored to Android and iOS users

Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers

Charming Kitten goes retro and consolidates its backdoor into a tighter package, abandoning the malware framework trend.

Федералы раскрывают масштабный план Ирана по срыву выборов.

社区速递 058 | 你没见过的社区文章、一周最热评、派友在用的电纸书除了首页时间流和侧栏的精选展位，少数派 Matrix 社区还有很多优秀内容因条件所限无法得到有效曝光，因此我们决定重启 Matri

Как ведут себя электроны при температуре, близкой к абсолютному нулю?

This article is about the massive BSOD triggered by CrowdStrike worldwide on July 19. Anal

游戏才刚上市，就已经掀起了中国商业市场的狂欢。

前言前段时间笔者发布了MDUT-Extend的第一个版本,在发布之后得到了许多师傅的支持和打赏。

起因某次护网应急响应,发现了最新版的某报表的被打掉了,日记记录channel触发的反序列化进行攻击的,和spr

Researchers discovered thousands of Oracle NetSuite e-stores that are vulnerable to data leak, sensitive customer information is at risk. Cybersecurity researchers from AppOmni warn of a potential issue in Oracle NetSuite SuiteCommerce platform could allow attackers to access customer sensitive data. NetSuite is a widely used SaaS Enterprise Resource Planning (ERP) platform, valued for its […]

Oracle NetSuite misconfiguration could lead to data exposureResearchers discovered thousands o

楽天グループ株式会社が提供するスマートフォンアプリ「楽天市場アプリ」には、アクセス制限不備の脆弱性が存在します。

苹果推出了其播客应用的 Web 版本，听众可通过主流浏览器收听播客节目。用户可访问以前只能通过播客应用使用的功能，如排行榜、订阅付费播客，等等。用户可以选择登录，如果不登录的话功能会受限，但浏览功能、搜索功能和收听功能都能正常使用。苹果也向中国区用户提供了大量中文播客节目。

A critical vulnerability has been discovered in the GiveWP plugin, a popular WordPress donation and fundraising platform. This vulnerability, CVE-2024-5932, exposes over 100,000 WordPress sites to potential remote code execution (RCE) attacks. The vulnerability was responsibly disclosed by a security researcher named villu164 through the Wordfence Bug Bounty Program. CVE-2024-5932 – The Vulnerability Explained PHP […]

The post Unauthenticated RCE in WordPress Plugin Exposes 100,000 WordPress Sites appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.