Aggregator

这是情报分析师第1902篇原创内容本文约6328字预计阅读时间17分钟每个人在信息时代都在网络和现实中留下蛛丝

A vulnerability labeled as problematic has been found in Lost and Found Information System 1.0. The impacted element is an unknown function of the file /classes/Users.php?f=save. Such manipulation of the argument username/password leads to authorization bypass. This vulnerability is traded as CVE-2023-38965. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability was found in Creative Item Academy LMS 6.0. It has been rated as problematic. This affects an unknown function. Performing a manipulation results in cross site scripting. This vulnerability is known as CVE-2023-38964. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability classified as critical was found in JerryScript 3.0.0. This affects the function scanner_is_context_needed of the file js-scanner-until.c. Such manipulation leads to buffer overflow. This vulnerability is listed as CVE-2023-38961. The attack may be performed from remote. There is no available exploit.

A vulnerability marked as critical has been reported in Raiden RaidenFTPD 2.4 Build 4005. This impacts an unknown function. The manipulation leads to permission issues. This vulnerability is documented as CVE-2023-38960. The attack needs to be performed locally. There is not any exploit available.

Cisco has disclosed a critical zero-day remote code execution (RCE) vulnerability, CVE-2026-20045, actively exploited in the wild. Affecting key Unified Communications products, this flaw allows unauthenticated attackers to run arbitrary commands on the underlying OS, potentially gaining root access. The Cisco Product Security Incident Response Team (PSIRT) confirmed exploitation attempts and urged immediate patching. The […]

The post Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access appeared first on Cyber Security News.

近日，Oracle官方发布了多个安全漏洞的公告，其中Oracle产品本身漏洞68个，影响到Oracle产品的其他厂商漏洞160个。

声明：请勿利用文章内的相关技术从事非法测试，如因此产生的一切不良后果与文章作者和本公众号无关。这是之前的一个

Corporate Hiring Practices Risk Shutting Down the Talent Supply Line
In cybersecurity hiring, many organizations have quietly removed entry-level jobs from the workforce altogether. While it may meet immediate corporate goals to hire more experienced practitioners, these extremely limited on ramps for cybersecurity jobs risk cutting off the talent pipeline.

More Dry Powder Will Help Cloud Security Sweepstakes Against Palo, CrowdStrike, Wiz
Upwind is in talks with Bessemer Venture Partners and Picture Capital to raise more than $250 million at a valuation of $1.2 billion to $1.5 billion, Calcalist reported. Upwind in December 2024 closed a $100 million Series A round and tripled its valuation over the prior 15 months to $900 million.

Nearly $270M Cut From CISA Despite Mounting Foreign Cyberthreats
Congress is proposing cuts of nearly $270 million from the Cybersecurity and Infrastructure Security Agency's budget for fiscal year 2026, reducing funding for threat hunting and vulnerability management as officials warn foreign adversaries are escalating cyber operations targeting U.S. systems.

Breach Affected More Than a Dozen Healthcare Clients, 2.5M Patients
Electronic health records vendor Veradigm agreed to pay $10.5 million to settle consolidated class action litigation involving a December 2024 hacking incident discovered in mid-2025 that affected more than a dozen healthcare provider clients and about 2.5 million of their patients.

Decentralization and Sprawl Complicate University IT Programs
Several Ivy League universities - including Harvard and Princeton - experienced hacks in 2025 through unpatched enterprise software and sophisticated social engineering campaigns, showing that even the nation's wealthiest universities are vulnerable.

Acting Director Says Agency Has Stabilized After Major Staff Losses Throughout 2025
After a year of internal upheaval and budget strain, CISA's acting director told Congress the agency is now stabilized and will launch targeted 2026 initiatives, even as lawmakers weigh steep funding cuts that could limit its cyber defense capabilities across federal networks.

Вас не видят, потому что вас блокируют.

A vulnerability has been found in Oracle Communications Diameter Signaling Router up to 8.2.2 and classified as critical. Affected is an unknown function of the component IDIH. The manipulation leads to xml external entity reference. This vulnerability is traded as CVE-2020-10683. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

Financial institutions now have a concrete method for deciding where post-quantum cryptography belongs on their security roadmaps. New research coordinated by Europol sets out a scoring framework that helps banks rank systems and business use cases based on quantum risk and the time required to migrate them. The goal is practical prioritization, and the paper is aimed at security teams that need to move from planning into execution. The research responds to a growing operational … More →

The post A new framework helps banks sort urgent post-quantum crypto work from the rest appeared first on Help Net Security.

HackerNews 编译，转载请注明出处：  密码管理器 LastPass 警告称，当前正发生一起冒充该服务的钓鱼攻击活动，攻击者试图窃取用户的主密码（Master Password）。 LastPass 表示，这一钓鱼活动大约始于 2026 年 1 月 19 日。攻击者通过冒充 LastPass 官方发送电子邮件，声称系统即将进行紧急维护，并要求用户在 24 小时内备份其密码库。 这些邮件使用了涉及基础设施更新、密码库安全以及“错过截止期限”等主题词，诱骗受害者泄露主密码。 LastPass 在警告中写道： “LastPass 威胁情报、缓解与升级团队提醒客户注意一项于 2026 年 1 月 19 日左右开始的活跃钓鱼活动。这些钓鱼邮件来自多个电子邮箱地址，使用不同的主题行，声称 LastPass 即将进行维护，并敦促用户在接下来的 24 小时内备份其密码库。已知的发件地址和主题行列表如下。” 钓鱼攻击手法 该活动通过钓鱼邮件中的链接，声称可帮助用户备份 LastPass 密码库。 链接首先指向一个托管在 Amazon S3 上的钓鱼页面： group-content-gen2.s3.eu-west-3.amazonaws[.]com/5yaVgx51ZzGf 随后重定向至一个伪造的 LastPass 网站： mail-lastpass[.]com 攻击者特意选择在美国假期周末发起攻击，以利用人员配置不足的时机，延缓安全团队的发现和响应。 LastPass 的应对与提醒 LastPass 强调，官方绝不会要求用户提供主密码，并敦促用户对任何可疑邮件保持警惕。公司正在努力关闭恶意域名，并请求用户将可疑邮件转发至 [email protected]。 此外，LastPass 还分享了相关的入侵指标，包括： 伪造域名 IP 地址 发件人信息 钓鱼邮件主题行 报告总结称： “该活动发生在美国假期周末，这是威胁行为者常用的策略，目的是利用人员减少的情况，延迟被发现并拉长应对时间。” 消息来源：securityaffairs； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文