Aggregator

Почему инструмент для помощи пользователям вдруг стал идеальным подарком для хакеров.

微软最近向 FBI 提供了 BitLocker 密钥去解锁三台笔记本电脑硬盘上的加密数据。Windows 11 默认启用 BitLocker 全盘加密，而密钥会上传到用户的 Microsoft Account，也就是会上传到微软云端。而微软以及执法机构可以访问密钥解密 BitLocker 加密的硬盘。此案与关岛发生的疫情失业援助欺诈相关。FBI 在查获三台使用 BitLocker 加密的笔记本电脑六个月后申请了搜查令。微软未予以置评，它此前曾表示平均每年会收到 20 份提供 BitLocker 密钥的请求。

伪装成TDesk安装程序银狐样本与威胁情报

A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT. "The attack begins with social engineering lures delivered via business-themed documents crafted to appear routine and benign," Fortinet FortiGuard Labs researcher Cara Lin said in a technical breakdown published this week. "These documents and

Взломщик биржи Bitfinex намерен начать карьеру в сфере кибербезопасности.

Microsoft is preparing to deploy a significant, potentially controversial update to Microsoft Teams that automatically detects and displays a user’s physical work location based on the Wi-Fi network they connect to. According to the latest update on the Microsoft 365 Roadmap (ID 488800), this feature is scheduled to begin rolling out in March 2026 for […]

The post Microsoft Teams to Share your Location With Your Employer Soon Based on Wi-Fi Network appeared first on Cyber Security News.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw impacting Broadcom VMware vCenter to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Broadcom VMware vCenter Server vulnerability, tracked as CVE-2024-37079 (CVSS score of 9.8), to its Known Exploited Vulnerabilities (KEV) catalog. vCenter Server is a centralized management platform developed […]

看雪论坛作者ID：UserXCh

Лондонские власти восстановили прием онлайн-оплат спустя несколько месяцев после кибератаки.

A vulnerability, which was classified as problematic, was found in WP Directory Kit Plugin up to 1.4.9 on WordPress. Affected is the function wdk_public_action of the component AJAX Handler. The manipulation results in information disclosure. This vulnerability is reported as CVE-2025-13920. The attack can be launched remotely. No exploit exists.

A vulnerability, which was classified as problematic, has been found in PDFCrowd Save as PDF Plugin up to 4.5.5 on WordPress. This impacts an unknown function. The manipulation leads to cross site scripting. This vulnerability is documented as CVE-2026-0862. The attack can be initiated remotely. There is not any exploit available.

A vulnerability classified as problematic was found in WP Go Maps Plugin up to 10.0.04 on WordPress. This affects the function processBackgroundAction of the component Map Engine Setting Handler. Executing a manipulation can lead to missing authorization. This vulnerability is registered as CVE-2026-0593. It is possible to launch the attack remotely. No exploit is available.

A vulnerability classified as critical has been found in Hustle Plugin up to 7.8.9.2 on WordPress. The impacted element is the function action_import_module. Performing a manipulation results in unrestricted upload. This vulnerability is cataloged as CVE-2026-0911. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability described as problematic has been identified in Apache Karaf up to 2.11.x. The affected element is an unknown function of the component Decanter log-socket Collector. Such manipulation leads to deserialization. This vulnerability is listed as CVE-2026-24656. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability identified as problematic has been detected in ongres scram up to 3.1. This affects an unknown part of the component With Message Handler. The manipulation leads to observable timing discrepancy. This vulnerability is documented as CVE-2025-59432. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.27/6.2.14/6.3.1 and classified as critical. Affected by this vulnerability is the function dev_set_name. This manipulation causes memory leak. This vulnerability appears as CVE-2023-53514. The attacker needs to be present on the local network. There is no available exploit. The affected component should be upgraded.

A vulnerability classified as critical has been found in Linux Kernel up to 6.5.2. The affected element is the function devfreq_dev_release. This manipulation causes allocation of resources. This vulnerability appears as CVE-2023-53518. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.4.10. Impacted is the function tb_handle_dp_bandwidth_request of the component thunderbolt. The manipulation results in memory leak. This vulnerability was named CVE-2023-53527. The attack needs to be approached within the local network. There is no available exploit. It is advisable to upgrade the affected component.