Aggregator

当前环境出现异常情况，需完成验证后方可继续访问。

当前环境出现异常，需完成验证后才能继续访问。

文章指出当前环境出现异常，需完成验证后方可继续访问。

当前环境出现异常状态，需完成验证操作后方可继续访问相关内容或服务，并提供了“去验证”的选项以引导用户进行操作。

关键词数据安全在数字时代，合同、病历、财务报告等关键信息大多以电子文档形式保存和流转。

关键词数据泄露美国司法部日前公布了对知名黑客论坛BreachForums创始人康纳·菲茨帕特里克（Conor

关键词网络攻击波兰政府宣布，将在 2025 年把网络安全预算提升至 创纪录的 10 亿欧元（2024 年为 6

关键词网络钓鱼微软数字犯罪部门（DCU）近日宣布，与 Cloudflare 协作，通过纽约南区法院的授权，成功

A vulnerability has been found in Microsoft IIS 5.0/5.1 and classified as critical. The affected element is an unknown function of the component WebDAV. The manipulation leads to information disclosure (IP address). This vulnerability is uniquely identified as CVE-2002-0422. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability was found in Khaled Mardam-Bey mIRC 6.0/6.0 1. It has been declared as problematic. This impacts an unknown function of the component DDC Server Protocol Handler. Such manipulation leads to information disclosure (User). This vulnerability is referenced as CVE-2002-0425. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability classified as critical was found in Microsoft IIS up to 5.1. This vulnerability affects unknown code of the component NTLM Authentication. Such manipulation leads to information disclosure. This vulnerability is traded as CVE-2002-0419. The attack may be launched remotely. Furthermore, there is an exploit available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Christof Pohl Improved Mod Frontpage up to 1.6.0. Affected by this vulnerability is the function fpexec of the component mod_frontpage. Executing manipulation can lead to memory corruption. This vulnerability is tracked as CVE-2002-0427. The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.

在 NPM 包维护者被钓鱼攻击导致数十个包被植入窃取加密货币的恶意代码之后，NPM 包再次遭遇供应链攻击，，这一次攻击者可能有点恶作剧。至少 187 个 NPM 包感染了以《沙丘》中沙虫命名的自我复制蠕虫 Shai-Hulu，它会窃取开发者的凭证，然后公开发布到 GitHub 上的 Shai-Hulud 库中。一旦开发者安装了感染了蠕虫的 NPM 包，恶意软件会搜寻 npm 令牌，一旦发现它会修改该 npm 令牌能访问的 20 个最流行的包，植入该蠕虫，发布新版本。安全公司 CrowdStrike 有至少 25 个 NPM 包感染了该蠕虫，该公司表示这些软件包没有被 Falcon 使用，因此 Falcon 不受影响。安全研究人员发现，攻击者有意放过了 Windows 平台，假设开发者在 Linux 或 macOS 环境中工作。

当前环境出现异常，请完成验证后继续访问。

由于当前环境出现异常，请完成验证以继续访问。

2025网安周：360护航AI产业出海，点亮昆明网络安全产业链！

2025网安周|七项荣誉！360获得国家监管机构高度认可

A vulnerability was found in HPE Aruba Networking EdgeConnect SD-WAN Gateway up to 9.4.3.7/9.5.3.6 and classified as problematic. The affected element is an unknown function of the component System File Handler. The manipulation results in information disclosure. This vulnerability is cataloged as CVE-2025-37131. The attack may be launched remotely. There is no exploit available.

A vulnerability identified as problematic has been detected in HPE Aruba Networking EdgeConnect SD-WAN Gateway up to 9.4.3.7/9.5.3.6. Affected by this vulnerability is an unknown functionality of the component Command-Line Interface. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2025-37130. It is possible to initiate the attack remotely. There is no exploit available.