Aggregator

New ClearFake Campaign Leveraging Proxy Execution to Run PowerShell Commands via Trusted Window Feature

Cyber Security News
2 months 2 weeks ago

ClearFake has entered a new and more dangerous phase, turning a familiar fake CAPTCHA scam into a highly evasive malware delivery chain. Across hundreds of hacked websites, visitors now see what looks like a routine verification challenge, but behind the scenes the page is preparing to launch hidden code. Victims only need to follow simple […]

The post New ClearFake Campaign Leveraging Proxy Execution to Run PowerShell Commands via Trusted Window Feature appeared first on Cyber Security News.

Tushar Subhra Dutta

国投智能“小码特工队”热血集结!解锁“三拓”进展新视角

嘶吼
2 months 2 weeks ago

国投智能“小‘码’特工队”化身“两稳三拓一服务”战略先行者、技术领航员、市场代言人,更是您的“脚替”,深入“三拓”业务一线,发现关键进展,感知业务动态,洞察核心价值,让战略进展看得见、摸得着。

【猎诈特工】专攻新金融安全与数字反欺诈,叠满“AI+数据”专属buff拓增量,向着世界一流反诈天花板全力冲刺,诈骗链路通通锁死!
【智控特工】以具身智能为核心战力,聚焦“服务安全”与“自身安全”双赛道,扎根前沿技术落地一线,解锁全场景应用新姿势!
【国际特工】肩负“中国方案”出海使命,以“全球警火商”身份出征,从澜湄区域到“一带一路”,把中国硬核科技带向全球舞台!
马年有小“码”,既锚定代码、密码的IT核心基因,彰显数据智能与安全服务硬实力;更自带“马”的灵动与坚毅,恰似骏马驰骋信息长河,精准挖掘业务价值、高效传递进展动态,为战略推进注入强劲动能!

国投智能

CVE-2025-11761 | HP Client Management Script Library up to 1.84 Installation uncontrolled search path (EUVD-2025-37501)

Vuldb Updates
2 months 2 weeks ago
A vulnerability categorized as problematic has been discovered in HP Client Management Script Library up to 1.84. This affects an unknown part of the component Installation Handler. Such manipulation leads to uncontrolled search path. This vulnerability is documented as CVE-2025-11761. The attack needs to be performed locally. There is not any exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2024-58339 | run-llama llama_index up to 0.12.2 VannaPack VannaQueryEngine custom_query allocation of resources (EUVD-2026-2397)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in run-llama llama_index up to 0.12.2. It has been classified as critical. This affects the function custom_query of the component VannaPack VannaQueryEngine. This manipulation causes allocation of resources. This vulnerability appears as CVE-2024-58339. The attack may be initiated remotely. There is no available exploit.
vuldb.com

CVE-2026-22849 | Saleor up to 3.20.107/3.21.42/3.22.26 Refresh Token cross site scripting (GHSA-8jcj-r5g2-qrpv / EUVD-2026-3777)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Saleor up to 3.20.107/3.21.42/3.22.26. It has been declared as problematic. The impacted element is an unknown function of the component Refresh Token Handler. Executing a manipulation can lead to improper neutralization of script in attributes in a web page. This vulnerability is registered as CVE-2026-22849. It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2026-22598 | manageiq up to 5.0/jansa-4/kasparov-2/lasker-1 API denial of service (GHSA-m832-x3g8-63j3 / EUVD-2026-3776)

Vuldb Updates
2 months 2 weeks ago
A vulnerability identified as problematic has been detected in manageiq up to 5.0/jansa-4/kasparov-2/lasker-1. The impacted element is an unknown function of the component API. The manipulation leads to denial of service. This vulnerability is traded as CVE-2026-22598. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.
vuldb.com

Exposed training apps are showing up in active cloud attacks

Help Net Security
2 months 2 weeks ago

Security teams often spin up vulnerable applications for demos, training, or internal testing. A recent Pentera research report documents how those environments are being left exposed on the public internet and actively exploited. The research focuses on intentionally vulnerable apps such as OWASP Juice Shop, Damn Vulnerable Web Application, Hackazon, and similar projects. These tools are commonly deployed to teach secure coding, support product demonstrations, or give red and blue teams hands-on practice. According to … More →

The post Exposed training apps are showing up in active cloud attacks appeared first on Help Net Security.

Sinisa Markovic

嘶吼快讯|网安厂商动态汇(第6期)

嘶吼
2 months 2 weeks ago

聚焦网安厂商最新动作,整合新品发布、战略合作、技术升级等核心动态,省去碎片化信息筛选时间,1 篇GET网安厂商近期关键动作!

网安厂商最新动态

观安信息荣获CCIA“2025年度先进会员单位”

近日,中国网络安全产业联盟(CCIA)发布2025年度先进表彰决定,观安信息再度获评“先进会员单位”称号。

十二家分销商签约破亿,新华三“亿元俱乐部”再扩容

紫光股份旗下新华三集团日前正式与全国12家核心IT分销伙伴完成亿元级合作协议签署。至此,新华三“亿元俱乐部”由7家发展至12家。

爱加密斩获腾讯敏捷提效典范企业奖

在腾讯TAPD官方老客尊享答谢会上,爱加密成功斩获“腾讯 TAPD敏捷提效典范企业奖”。

天融信入选Gartner®中国AI安全测试领域代表厂商

近日,全球咨询机构Gartner®发布《Innovation Insight: AI Security Testing in China》报告(中国人工智能安全测试创新洞察报告),天融信入选该领域的代表厂商。

奇安信亮相香港网络安全技术论坛

奇安信集团受邀出席香港网络安全技术论坛。携AISOC智能安全运营平台、QAX-GPT安全机器人等核心AI安全技术亮相展区。

泛联新安发布CodeSense5.1

近日,CodeSense 正式发布5.1版本。本次升级聚焦“检测更强、合规更可信、研判更高效”三大核心目标,在核心引擎、标准体系与AI赋能三大模块实现全面突破。

东方通智能体平台斩获“鼎信杯”金鼎产品奖

近日,第四届 “鼎信杯” 大赛获奖名单正式公布。东方通成功斩获智算基础设施融合创新赛道“金鼎产品奖”。

永信至诚|2025“春秋杯”网络安全联赛冬季赛来袭

由永信至诚主办,《网络安全人才实战能力报告》编委会支持的2025“春秋杯”网络安全联赛冬季赛已正式启动。

国舜科技获评CCIA“2025年度先进会员单位”

国舜科技荣膺中国网络安全产业联盟(CCIA)“2025年度先进会员单位”称号。

盛邦安全-DayDayMap正式接入国家级身份认证服务

日前,盛邦安全DayDayMap正式接入“国家网络身份认证公共服务”,成为国内首个支持采用“网证”注册、登录的资产测绘平台。

数据接口安全风险监测国标正式发布,深信服深度参编

国家标准GB/T 46796-2025《数据安全技术 数据接口安全风险监测方法》获批发布,将于2026年7月1日开始正式实施。此项国家标准由深信服深度参编。

万里红“铸基”数字中国 获信通院感谢信

近日,中国信息通信研究院泰尔终端实验室正式向北京万里红科技有限公司发来感谢信 ,对其在“铸基计划”中的积极参与和重要贡献表示认可与感谢。

九州信泰成为首批山东省网络安全保险联合创新实验室合作单位

2026年1月,山东省网络安全保险联合创新实验室在济南高新区齐鲁软件园正式揭牌成立,九州信泰成为首批网络安全保险联合实验室合作单位。

安恒信息携手吉林大学,开展AI安全实战培训

日前,安恒信息携手吉林大学,于安恒杭州总部成功举办AI安全技术专项培训。

敏捷数据智能定密系统再度登榜信通院“写境:AI+网络安全产品能力图谱”

近日,中国信息通信研究院正式发布新一版“写境:AI +网络安全产品能力图谱”。敏捷科技携「敏捷数据智能定密系统」再度登榜“安全识别”核心赛道。

胡金鱼

Unbounded AI use can break your systems

Help Net Security
2 months 2 weeks ago

In this Help Net Security video, James Wickett, CEO of DryRun Security, explains cyber risks many teams underestimate as they add AI to products. He focuses on how fast LLM features are pushed into live applications without limits or guardrails. The video also looks at AI-generated code and why it should not be trusted by default, especially for business logic and access control. Wickett closes by warning about blurred trust boundaries when AI systems can … More →

The post Unbounded AI use can break your systems appeared first on Help Net Security.

Help Net Security

ZDI-CAN-28675: Ashlar-Vellum

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2026-01-22, 62 days ago. The vendor is given until 2026-05-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-28327: QNAP

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Daniel FREDERIC from Fuzzinglabs, Julien COHEN-SCALI from Fuzzinglabs, Patrick VENTUZELO from Fuzzinglabs' was reported to the affected vendor on: 2026-01-22, 62 days ago. The vendor is given until 2026-05-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-28834: Netdata

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'welpsigh' was reported to the affected vendor on: 2026-01-22, 62 days ago. The vendor is given until 2026-05-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-28759: Siemens

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2026-01-22, 62 days ago. The vendor is given until 2026-05-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Managed ad