Aggregator

"Защищенный" мессенджер с бэкдором продолжает помогать полиции арестовывать преступников спустя 4 года после закрытия.

嗯，用户让我总结一下这篇文章的内容，控制在100字以内，而且不需要用“文章内容总结”这样的开头。好的，我先看看文章讲的是什么。 文章主要讲的是Open VSX代码仓库泄露了访问令牌，导致供应链攻击。攻击者利用这些令牌上传恶意扩展程序，使用Unicode隐写术隐藏恶意负载。攻击的目标是窃取开发者凭证和加密货币钱包数据。后来Open VSX团队迅速处理了问题，移除了恶意程序，并轮换了令牌。他们还计划加强安全措施，比如缩短令牌有效期、自动化安全扫描等。 现在我要把这些要点浓缩到100字以内。首先提到泄露和攻击，然后是攻击手段和目标，接着是处理措施和后续安全措施。确保语言简洁明了。 可能的结构：Open VSX因访问令牌泄露遭供应链攻击，恶意扩展程序使用Unicode隐写术窃取凭证和加密货币数据。事件已控制，移除恶意程序并轮换令牌，计划加强安全措施。 这样应该在100字以内了。 Open VSX因访问令牌泄露遭供应链攻击，恶意扩展程序使用Unicode隐写术窃取开发者凭证和加密货币钱包数据。事件已控制，恶意程序被移除，令牌轮换完成，并计划加强安全措施以防范未来攻击。

South Korea’s largest mobile carrier, SK Telecom, has reported a dramatic decline in operating profit for the third

The post Cyber Fines & Fallout: SK Telecom Profit Plunges 90% After Massive Data Breach appeared first on Penetration Testing Tools.

Former employees of the U.S.-based company DigitalMint, which specialized in negotiating with hackers on behalf of ransomware victims,

The post The Betrayal: Feds Charge DigitalMint Employees with Running ALPHV/BlackCat Ransomware Attacks appeared first on Penetration Testing Tools.

Peter Williams, former chief executive of Trenchant—a division within the defense contractor L3Harris—has recently pleaded guilty to stealing

The post The Betrayal: Defense Exec Stole 8 Zero-Days Valued at $35M, Sold to Foreign Broker appeared first on Penetration Testing Tools.

The Python developers have approved PEP 810, introducing an explicit mechanism for lazy imports into the language. With

The post Startup Boost: Python Approves PEP 810 for Explicit Lazy Imports in Version 3.15 appeared first on Penetration Testing Tools.

FortiGuard’s mid-year report for 2025 reveals that financially motivated attackers are increasingly eschewing complex exploits and bespoke malware.

The post The Stealth Intrusion: Hackers Bypass Detection by Logging In with Stolen Credentials appeared first on Penetration Testing Tools.

家里老人的老年机突然收不到短信？孩子的儿童手表总弹出陌生登录提醒？你可能没意识到 ——你的手机号正在被黑产 “远程劫持短信” ！

快速部署扫描环境集群，加快打点速度

本文揭秘域前置、云函数代理、LOLBAS攻击、EDR绕过等10大隐匿战术，解析2025年最新OPSEC技术，同时也为安全团队提供行为检测、威胁狩猎提供思路。

A vulnerability labeled as critical has been found in Squid Web Proxy up to 4.8. This impacts an unknown function of the file cachemgr.cgi. Such manipulation of the argument Hostname as part of Parameter leads to injection. This vulnerability is uniquely identified as CVE-2019-18860. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.

A vulnerability identified as problematic has been detected in PJSIP up to 2.11.1. The impacted element is an unknown function of the component Dialog Set Handler. Performing manipulation results in use after free. This vulnerability is cataloged as CVE-2022-23608. It is possible to initiate the attack remotely. There is no exploit available. Applying a patch is the recommended action to fix this issue.

A vulnerability marked as critical has been reported in BlueZ. Affected by this issue is some unknown functionality of the component bluetoothd. This manipulation causes incorrect authorization. This vulnerability is tracked as CVE-2021-3658. It is feasible to perform the attack on the physical device. No exploit exists. To fix this issue, it is recommended to deploy a patch.

A vulnerability marked as critical has been reported in FRRouting up to 8.1.0. This affects an unknown part of the file isisd/isis_tlvs.c of the component Packet Length Handler. Performing manipulation results in memory corruption. This vulnerability was named CVE-2022-26125. The attack needs to be approached within the local network. There is no available exploit.

A vulnerability described as critical has been identified in FRRouting up to 8.1.0. This vulnerability affects the function strdup of the file isis_nb_notifications.c. Executing manipulation can lead to memory corruption. The identification of this vulnerability is CVE-2022-26126. The attack needs to be done within the local network. There is no exploit available.

A vulnerability classified as critical has been found in FRRouting up to 8.1.0. This issue affects the function babel_packet_examin of the file babeld/message.c of the component Packet Length Handler. The manipulation leads to memory corruption. This vulnerability is referenced as CVE-2022-26127. The attack needs to be initiated within the local network. No exploit is available.

A vulnerability classified as critical was found in FRRouting up to 8.1.0. Impacted is the function babel_packet_examin of the file babeld/message.c of the component Packet Length Handler. The manipulation results in memory corruption. This vulnerability is identified as CVE-2022-26128. The attack can only be performed from the local network. There is not any exploit available.

A vulnerability, which was classified as critical, has been found in FRRouting up to 8.1.0. The affected element is the function parse_hello_subtlv/parse_ihu_subtlv/parse_update_subtlv of the file babeld/message.c. This manipulation of the argument subtlv causes memory corruption. This vulnerability is tracked as CVE-2022-26129. The attack is only possible within the local network. No exploit exists.

A vulnerability classified as critical has been found in BlueZ up to 5.62. This affects an unknown function of the component Files Handler. Performing manipulation results in heap-based buffer overflow. This vulnerability is reported as CVE-2022-0204. The attacker must have access to the local network to execute the attack. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability marked as critical has been reported in PJSIP up to 2.12. Impacted is an unknown function of the component Hashed Digest Credential Handler. Performing manipulation results in buffer overflow. This vulnerability was named CVE-2022-24754. The attack may be initiated remotely. There is no available exploit. It is suggested to install a patch to address this issue.