Aggregator

Японский холдинг Asahi завершил основной этап восстановления после вымогательской атаки.

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks. [...]

随着 Unity 引擎的发展和游戏安全需求的提升，越来越多的 Unity 游戏开始采用 IL2CPP 打包方式。IL2CPP（Intermediate Language to C++）是 Unity 从 2014 年开始引入的一项技术，它将 C# 的中间语言（IL）代码转化为 C++ 代码，然后再编译成机器码，从而大大提高了代码的安全性和运行性能。相比 Mono 打包方式，IL2CPP 打包的游戏

G7 countries ranked cyber-attacks as the top risk, while BICS members placed cyber threats only as the eighth most pressing risk

A vulnerability marked as problematic has been reported in PixelYourSite Plugin up to 11.2.0 on WordPress. Affected by this vulnerability is the function pys_landing_page. This manipulation of the argument pysTrafficSource causes cross site scripting. This vulnerability is registered as CVE-2026-1841. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability labeled as problematic has been found in PixelYourSite Pro Plugin up to 12.4.0.2 on WordPress. Affected is the function pys_landing_page. The manipulation of the argument pysTrafficSource results in cross site scripting. This vulnerability is cataloged as CVE-2026-1844. The attack may be launched remotely. There is no exploit available.

Militairen van het Nederlandse Mobile Training Team hebben de afgelopen dagen in Zuid-Korea een spoedcursus StratCom gegeven. Dat deden de instructeurs op speciaal verzoek van de Amerikanen.

A vulnerability identified as critical has been detected in Starfish Review Generation & Marketing Plugin up to 3.1.19 on WordPress. This impacts the function srm_restore_options_defaults. The manipulation leads to improper authorization. This vulnerability is listed as CVE-2025-15157. The attack may be initiated remotely. There is no available exploit.

A vulnerability categorized as problematic has been discovered in GNOME libsoup. This affects an unknown function. Executing a manipulation can lead to out-of-bounds read. This vulnerability is tracked as CVE-2026-2443. The attack can be launched remotely. No exploit exists.

In a critical move for email server security, Zimbra released version 10.1.16 on February 4, 2026, tackling high-severity vulnerabilities including cross-site scripting (XSS), XML external entity (XXE), and LDAP injection. Labelled as high-patch severity and deployment risk, this update urges admins to upgrade immediately to shield deployments from exploits. Robust fixes for web-based threats. Zimbra […]

The post Zimbra Security Update – Patch for XSS, XXE & LDAP Injection Vulnerabilities appeared first on Cyber Security News.

A vulnerability was found in Mattermost up to 10.11.9/11.1.2/11.2.1. It has been rated as problematic. The impacted element is an unknown function of the file /create-issue of the component Jira Plugin. Performing a manipulation results in incorrect authorization. This vulnerability is identified as CVE-2026-22892. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability was found in Mattermost up to 10.11.9/11.2.x. It has been declared as problematic. The affected element is an unknown function of the file /common_teams of the component Channel Membership Handler. Such manipulation leads to time-of-check time-of-use. This vulnerability is referenced as CVE-2026-20796. It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.

Пришло время проверить свои плагины для бэкапов.

Zr.Ms. Groningen is vandaag weer aangekomen in de haven van Den Helder. Het  schip was 5,5 maand van huis en opereerde in die periode als stationsschip in het Caribisch gebied. De Groningen vormde er de oren en ogen van Defensie. 

恭喜积分排名前五名，同时也感谢每一位参与其中的白帽，感谢你们的信任、锋芒与赤诚！

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

• CVE-2026-1731 BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

Naar de Nederlandse wapeninzet tegen een ISIS bommenfabriek in 2015 in het Iraakse Hawija zijn aanvullende onderzoeken gedaan. Minister Ruben Brekelmans heeft de uitkomsten vandaag gedeeld met de Tweede Kamer.

A new phishing campaign has been observed delivering an updated variant of XWorm, a Remote Access Trojan (RAT) that can give attackers full remote control of infected Microsoft Windows systems. First tracked in 2022, XWorm is still actively distributed and is often traded through Telegram-based marketplaces, keeping it within easy reach of many threat actors. […]

The post New XWorm RAT Campaign Uses Themed Phishing Lures and CVE‑2018‑0802 Excel Exploit to Evade Detection appeared first on Cyber Security News.

Авиационные регуляторы начали проверку ИТ-подрядчиков после инцидента.