Aggregator

CVE-2023-22334 | Contec CONPROSYS HMI System up to 3.4.5 password hash instead of password for authentication (icsa-22-347-03 / EUVD-2023-26497)

8 months 2 weeks ago

A vulnerability was found in Contec CONPROSYS HMI System up to 3.4.5. It has been declared as problematic. Affected by this issue is some unknown functionality. Executing manipulation can lead to use of password hash instead of password for authentication. This vulnerability is tracked as CVE-2023-22334. The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.

vuldb.com

CVE-2023-22332 | Pgpool-II information disclosure (EUVD-2023-26495 / Nessus ID 212755)

Vuldb Updates

8 months 2 weeks ago

A vulnerability was found in Pgpool-II and classified as problematic. This impacts an unknown function. Such manipulation leads to information disclosure. This vulnerability is traded as CVE-2023-22332. The attack may be launched remotely. There is no exploit available.

vuldb.com

Medusa Ransomware Claims Comcast Data Breach, Demands $1.2M

Hack Read

8 months 2 weeks ago

Medusa ransomware group claims 834 GB data theft from Comcast, demanding $1.2M ransom while sharing screenshots and file listings.

Waqas

CVE-2025-11117 | Tenda CH22 1.0.0.1 /goform/GstDhcpSetSer formWrlExtraGet dips buffer overflow (EUVD-2025-31473)

Vuldb Updates

8 months 2 weeks ago

A vulnerability marked as critical has been reported in Tenda CH22 1.0.0.1. This vulnerability affects the function formWrlExtraGet of the file /goform/GstDhcpSetSer. This manipulation of the argument dips causes buffer overflow. This vulnerability is tracked as CVE-2025-11117. The attack is possible to be carried out remotely. Moreover, an exploit is present.

vuldb.com

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Sinobi

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

CVE-2025-38442 | Linux Kernel up to 6.15.6/6.16-rc5 block create_empty_buffers null pointer dereference (WID-SEC-2025-1653)

Vuldb Updates

8 months 2 weeks ago

A vulnerability identified as critical has been detected in Linux Kernel up to 6.15.6/6.16-rc5. This vulnerability affects the function create_empty_buffers of the component block. This manipulation causes null pointer dereference. This vulnerability appears as CVE-2025-38442. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.

vuldb.com

使用 org-protocol 生成听歌排行

不安全

8 months 2 weeks ago

作者创建了一个听歌排行页面，使用网易云音乐的数据，并通过Emacs、Tampermonkey等工具抓取并保存到博客中。

大模型安全落地-模型训练安全

先知技术社区

8 months 2 weeks ago

近期业界曝光了多起模型训练安全事件。例如AI研究机构的训练集群遭受网络攻击，导致训练中断和部分中间结果泄露；另有研究表明，通过精心设计的对抗训练策略，攻击者可以诱导模型学习有害知识或产生偏见；还有案例显示，训练过程中的参数窃取可能导致知识产权泄露，造成巨大经济损失。还有研究人员发现某些训练框架存在后门漏洞，可被远程利用实施模型投毒攻击

《李宗仁的记者招待会》-- 吴冷西

青衣十三楼飞花堂

8 months 2 weeks ago

周总理告诉我们：李宗仁先生要举行记者招待会，请他推荐几位同志做参谋或顾问，他决定推荐我们四人去当顾问。

Feel Secure: Advanced Techniques in Secrets Vaulting

Security Boulevard

8 months 2 weeks ago

What Makes Non-Human Identities Crucial in Cloud Security? How do organizations manage the unique challenges posed by non-human identities? Non-human identities (NHIs) are critical components of robust security strategies. Conceived as virtual entities consisting of encrypted passwords, tokens, or keys—collectively known as “secrets”—NHIs resemble the role of a passport, with permissions acting as visas granted […]

The post Feel Secure: Advanced Techniques in Secrets Vaulting appeared first on Entro.

The post Feel Secure: Advanced Techniques in Secrets Vaulting appeared first on Security Boulevard.

Alison Mack

Adapting Your Security Strategy for Hybrid Cloud Environments

Security Boulevard

8 months 2 weeks ago

How Can Organizations Adapt Their Security Strategies for Hybrid Cloud Environments? Organizations face unique challenges while managing their hybrid clouds. But how can they efficiently adapt their security strategies to maintain robust protection? Hybrid cloud security has become a crucial component of modern business operations, requiring adaptable strategies that address multifaceted security concerns. One of […]

The post Adapting Your Security Strategy for Hybrid Cloud Environments appeared first on Entro.

The post Adapting Your Security Strategy for Hybrid Cloud Environments appeared first on Security Boulevard.

Alison Mack

Continuous Improvement in Secrets Management

Security Boulevard

8 months 2 weeks ago

Why Are Non-Human Identities Crucial for Cybersecurity? How do organizations ensure the security of machine identities? Non-Human Identities (NHIs) provide a compelling answer, offering a structured approach to managing machine identities and secrets securely. NHIs are critical components in cybersecurity, often overlooked due to the complexity they introduce, but they are indispensable, particularly for cloud-based […]

The post Continuous Improvement in Secrets Management appeared first on Entro.

The post Continuous Improvement in Secrets Management appeared first on Security Boulevard.

Alison Mack

Kill

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Kill

Dark Feed IO

8 months 2 weeks ago

You must login to view this content

cohenido

Aggregator

Managed ad