Aggregator

科学家首次记录了一次非凡的鲸类迁徙壮举，证实两头座头鲸在澳大利亚东部和巴西的繁殖地之间，穿越了超过 1.4 万公里的海洋。研究人员通过对比数万张座头鲸尾鳍的图像来辨认这些鲸。每头鲸的尾鳍都有独特的斑纹，这使得研究人员能长期追踪并识别个体。2007 年，一头座头鲸在澳大利亚昆士兰州的赫维湾首次被拍到。2013年，它再次出现在同一海域，随后于 2019 年现身巴西圣保罗附近。这些繁殖地之间的最短直线距离约为1.42万公里。第二头座头鲸更令人惊叹。研究人员于2003年首次在巴西阿布洛霍斯礁群——该国主要的座头鲸繁殖地，拍摄到了它的身影。当时它正与由9头成年鲸组成的活跃群体一起游弋。22年后的2025年9月，同一头鲸被发现在澳大利亚赫维湾独自游弋。两次目击地之间的距离达 1.51 万公里，这创下了单头座头鲸已知最远迁徙距离的新纪录。研究基于19283张高质量的鲸照片，这些照片拍摄于1984年至2025年间，采集自澳大利亚东部和拉丁美洲。这些图像既来自专业研究人员，也来自通过全球鲸追踪平台“Happywhale”参与的公民科学家。

A vulnerability identified as critical has been detected in itsourcecode Student Transcript Processing System 1.0. This issue affects some unknown processing of the file /admin/modules/class/index.php?view=view. The manipulation of the argument ID leads to sql injection. This vulnerability is listed as CVE-2026-9575. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability categorized as critical has been discovered in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the argument studentId/cid can lead to sql injection. This vulnerability is tracked as CVE-2026-9574. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability was found in itsourcecode Student Transcript Processing System 1.0. It has been rated as critical. This affects an unknown part of the file /admin/modules/student/index.php?view=view. Performing a manipulation of the argument studentId results in sql injection. This vulnerability is identified as CVE-2026-9573. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #817751 / VDB-362714

Submit #817580 / VDB-365634

Submit #817578 / VDB-365633

Submit #817552 / VDB-365632

A vulnerability was found in GPAC up to 2.4.0. It has been declared as problematic. Affected by this issue is the function Media_GetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. This vulnerability is referenced as CVE-2026-9572. The attack can only be performed from a local environment. Furthermore, an exploit is available. It is best practice to apply a patch to resolve this issue.

Microsoft назвала дедлайн для обновления сертификатов в Windows 11.

Submit #817137 / VDB-365631

A new ransomware threat is making waves across dozens of industries and countries, using a surprisingly simple but effective approach to break into systems and lock victims out of their own data. NightSpire, first identified in early 2025, has already shown it is willing to cast a wide net, hitting hospitals, schools, government offices, and […]

The post NightSpire Ransomware Uses RDP Access and Remote Admin Tools for Stealthy Persistence appeared first on Cyber Security News.

GitHub experienced a widespread service disruption on May 26, 2026, after authentication failures prevented developers from accessing critical automation services, including GitHub Actions and GitHub Pages. The outage significantly impacted CI/CD pipelines, blocking workflow execution and halting software delivery for many organizations worldwide. According to GitHub’s official status page, the incident began around 10:57 UTC, […]

The post GitHub Down – Authentication Issues Denying Access to Actions  appeared first on Cyber Security News.

A critical SQL injection flaw in Ghost CMS has been weaponized by at least two threat actor groups to silently poison over 700 websites with ClickFix malware, putting unsuspecting visitors at serious risk. The vulnerability, tracked as CVE-2026-26980, was publicly disclosed as early as February 19, 2026. Despite this, many Ghost CMS administrators failed to […]

The post Hackers Exploit Ghost CMS CVE-2026-26980 to Poison 700 Websites With ClickFix Malware appeared first on Cyber Security News.

Microsoft is testing a new Defender for Endpoint capability that will automatically isolate compromised endpoints to thwart attackers' attempts to move laterally across the network. [...]

IT teams often need to jump between monitoring dashboards, infrastructure tools, ticketing systems, and communication platforms during network incidents. This webinar explores how automation and AI-assisted workflows can help reduce manual coordination and improve incident response times. [...]

如何在不向磁盘写入任何文件的前提下，将payload注入到一个已有的合法进程中长期驻留？ 这不是一个新问题。Windows平台上的进程注入技术（CreateRemoteThread、APC Injection、Process Hollowing）已经被研究得相当充分，MITRE ATT&CK的T1055条目下列出了十余种子技术。但Linux侧的讨论往往停留在LD_PRELOAD这类启动时劫持手段，

Huawei придумала, как обойти санкции с помощью 3D-компоновки

The co-founder and former editor-in-chief passed away five years ago in November. As Dark Reading enters its third decade, we pause to celebrate and honor Wilson's instrumental role in building and elevating the media site.

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. 

• CVE-2026-48172 LiteSpeed cPanel Plugin Privilege Escalation Vulnerability

This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.