Aggregator

Personal data of nearly 100,000 individuals that have participated in trainings organized by CEPOL, the European Union (EU) Agency for Law Enforcement Training, has potentially been compromised due to the cyberattack suffered by the agency in May 2024. “Starting in October 2024, until 31 December 2024, over 97 000 notifications were sent to people whose personal data were processed in the 31 processing activities identified as high risk in the context of the data breach … More →

The post EU law enforcement training agency data breach: Data of 97,000 individuals compromised appeared first on Help Net Security.

《疯狂出租车(Crazy Taxi)》速通玩家发现，如果向 YouTube 递交速通视频，会触发 DMCA 导致视频被删除，因为《疯狂出租车》中的歌曲受到版权保护。在 Awesome Games Done Quick 上，为避开版权问题玩家组建了一个乐队 Limiter Cut，在速通时用游戏中的配乐伴奏。速通玩家 chuckles825 挑战了《疯狂出租车》中的 Crazy Box 模式，共 16 个挑战，每次挑战结束还会表演菜单音乐，和真实游戏一样。

Microsoft confirmed an outage of its multi-factor authentication system impacting access to Microsoft 365, causing login failures and service disruption

Affected platforms: CentOS LinuxImpacted parties

A vulnerability classified as problematic was found in Faktor Vier F4 Post Tree Plugin up to 1.1.18 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-22499. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Before discussing techniques and tools, it is essential to define the ‘secrets’ sought dur

A vulnerability classified as problematic has been found in New Normal LucidLMS Plugin up to 1.0.5 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2025-22498. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Convoy Media Category Library Plugin up to 2.7 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-22344. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Paramveer Singh for Arete IT Private Limited Post and Page Reactions Plugin up to 1.0.5 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-22568. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Post SMTP Plugin up to 2.9.11 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2025-22800. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in WP Scripts Food Store Plugin up to 1.5.1 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2025-22314. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Eniture Technology Distance Based Shipping Calculator Plugin up to 2.0.21 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-56301. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

快时尚电商希音（Shein）成功的背后是一个月几乎没有休息的缝纫工人。在广州番禺被称为希音村的工业园区，一位工人说如果一个月有 31 天会工作 31 天。大部分工人称他们一个月只有一天休息。工人平均每周工作 75 小时，这违反了中国的劳动法。希音曾鲜为人知，在短短五年时间里成为了一家全球巨头。它一直受到强迫工人劳动和压迫工人的指控。希音的商品以廉价打开欧美市场。一位 49 岁的江西女性称，她们通常每天工作 10、11 或 12 个小时，周日工作时间会减少 3 小时。她称收入太低而生活成本又太高，她们的工资是按件计费。她们的工作时间从早上 08：00 持续到 22：00 之后，收入在 4000-10000 元之间。

可信计算是以主动防御为特色的重要网络安全技术。2017年实施的《网络安全法》在第十六条要求“推广安全可信的网络产品和服务”。2024年8月1日，中办、国办印发《关于完善市场准入制度的意见》，将“自主可

A vulnerability, which was classified as problematic, was found in Saleswonder.biz WP2LEADS Plugin up to 3.4.2 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-56065. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.