Aggregator
英国拟打造AI驱动的“网络盾牌”以强化国家级网络防御
IT咨询巨头埃森哲35GB机密数据疑泄露:涉源代码、密钥、访问凭证等
Забыли паспорт? С сентября отели заселят вас через мессенджер Max
GoodPersonRAT Uses Fake LetsVPN Installer to Give Attackers Full Remote Control
A fake installer for a popular Chinese VPN service is quietly handing full remote control of infected computers to unknown attackers. The malicious file poses as a setup tool for LetsVPN, a tool many users in China rely on to bypass strict internet blocks. Instead of just installing the VPN, it also drops a hidden […]
The post GoodPersonRAT Uses Fake LetsVPN Installer to Give Attackers Full Remote Control appeared first on Cyber Security News.
Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges
Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges
调查显示AI两月擅自利用艺人肖像情况逾4万起
Chrome Update Patches 27 Vulnerabilities including Two Code Execution Flaws
Google has released a new Chrome Stable update that fixes 27 security vulnerabilities, including two critical flaws that could allow remote code execution (RCE) on affected systems. The update, now rolling out globally, upgrades Chrome to version 150.0.7871.114/.115 on Windows and macOS, and 150.0.7871.114 on Linux. The most severe issues addressed in this release are […]
The post Chrome Update Patches 27 Vulnerabilities including Two Code Execution Flaws appeared first on Cyber Security News.
OpenMandriva пережила саботаж изнутри — бывший участник воспользовался старыми правами доступа
Cyber AI Agents Like Claude Code, GPT-5.5 Can Be Hijacked to Run Malicious Code Remotely
A new exploit called “Friendly Fire” hijacks Anthropic’s Claude Code CLI and OpenAI’s Codex CLI to execute attacker-controlled binaries during routine security reviews of third-party code. The attack disclosed by Security researchers at the AI Now Institute targets Claude Sonnet 4.6, Sonnet 5, and Opus 4.8, as well as GPT-5.5, using nothing more than the […]
The post Cyber AI Agents Like Claude Code, GPT-5.5 Can Be Hijacked to Run Malicious Code Remotely appeared first on Cyber Security News.
Fake VPN and 7-Zip Apps Turn Victims Into Residential Proxy Nodes
Fake VPN and 7-Zip Apps Turn Victims Into Residential Proxy Nodes
【清理未活跃会员】清理2026年十八周年开放注册未活跃会员公告
Windows 11 26H2: Microsoft включит резервное копирование настроек по умолчанию — без спроса ИТ-отделов
European Organizations Have a Collaboration Security Confidence Gap
CoT(思维链)伪造攻击让大模型说出可卡因配方
CoT(思维链)伪造攻击让大模型说出可卡因配方
亚马逊秘密推进Alexa“智能体”计划,成本高昂引发内部担忧
Helix Data Extortion Group Uses Vishing and Device Code Phishing to Steal SharePoint Data
Helix has surfaced as a fast-moving data extortion group that targets Microsoft 365 users through phone scams and cloud-focused phishing instead of traditional malware drops. Attackers are after access first, then large volumes of corporate files, with SharePoint libraries becoming a central prize in multiple incidents. The campaign stands out because it leans on identity […]
The post Helix Data Extortion Group Uses Vishing and Device Code Phishing to Steal SharePoint Data appeared first on Cyber Security News.