Aggregator
苹果三星小米受影响!一个数据包让任意智能手机通信瘫痪
8 months 3 weeks ago
移动通信基带模块存在结构性风险
Critical SAP flaw exploited to launch Auto-Color Malware attack on U.S. company
8 months 3 weeks ago
Hackers exploited a SAP NetWeaver bug to deploy upgraded Auto-Color Linux malware in an attack on U.S. chemicals firm. Cybersecurity firm Darktrace reported that threat actors exploited a SAP NetWeaver flaw, tracked as CVE-2025-31324, to deploy Auto-Color Linux malware in a U.S. chemicals firm attack. “In April 2025, Darktrace identified an Auto-Color backdoor malware attack […]
Pierluigi Paganini
Critical SAP flaw exploited to launch Auto-Color Malware attack on U.S. company
8 months 3 weeks ago
黑客利用SAP NetWeaver漏洞CVE-2025-31324攻击美国化学品公司,部署升级版Auto-Color Linux恶意软件。Darktrace检测到攻击并阻止部分恶意行为。该恶意软件隐藏机制复杂,依赖实时控制服务器通信,并具备多种功能以逃避检测。
阿根廷男子因被谷歌街景车拍到屁股受到邻居和同事嘲笑 最终获赔1.25万美元
8 months 3 weeks ago
阿根廷男子因裸体被谷歌街景拍到未打码的屁股画面而被邻居嘲笑。他起诉后法院判谷歌赔偿1.25万美元。此外,街景车还曾拍到杀人运尸画面助警方破案。
CVE-2025-54453 | Samsung Electronics MagicINFO 9 Server 21.1050/21.1052 path traversal (EUVD-2025-22433)
8 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Samsung Electronics MagicINFO 9 Server 21.1050/21.1052. This issue affects some unknown processing. The manipulation leads to path traversal.
The identification of this vulnerability is CVE-2025-54453. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-54448 | Samsung Electronics MagicINFO 9 Server 21.1050/21.1052 unrestricted upload (EUVD-2025-22432)
8 months 3 weeks ago
A vulnerability was found in Samsung Electronics MagicINFO 9 Server 21.1050/21.1052. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to unrestricted upload.
This vulnerability is handled as CVE-2025-54448. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Hackers Exploiting SAP NetWeaver Vulnerability to Deploy Auto-Color Linux Malware
8 months 3 weeks ago
A sophisticated cyberattack targeting a US-based chemicals company has revealed the first observed pairing of SAP NetWeaver exploitation with Auto-Color malware, demonstrating how threat actors are leveraging critical vulnerabilities to deploy advanced persistent threats on Linux systems. In April 2025, cybersecurity firm Darktrace successfully detected and contained an attack that exploited CVE-2025-31324, a critical vulnerability […]
The post Hackers Exploiting SAP NetWeaver Vulnerability to Deploy Auto-Color Linux Malware appeared first on Cyber Security News.
Florence Nightingale
Интернет может замолчать. Землетрясение 8.8 в России ставит под угрозу глобальные кабели
8 months 3 weeks ago
Камчатка стала эпицентром одного из сильнейших землетрясений века.
Output nothing with –out-null
8 months 3 weeks ago
Downloading data from a remote URL is probably the single most common o
regdict – 可能是 Wordle 最佳外挂:带“正则”的开源英语词典
8 months 3 weeks ago
文章介绍了开源英语词典 regdict 的功能和使用方法。它支持正则表达式风格的查询规则(如 . 匹配任意字母、+ 匹配一个或多个字母等),特别适合用于 Wordle 游戏中的单词搜索和筛选。用户可通过多种规则(如前缀、后缀、长度、或查询)快速缩小候选词范围,并结合实际案例展示了如何利用 regdict 解决 Wordle 谜题。
Sinobi
8 months 3 weeks ago
You must login to view this content
cohenido
Sinobi
8 months 3 weeks ago
You must login to view this content
cohenido
Sinobi
8 months 3 weeks ago
You must login to view this content
cohenido
CVE-2025-54446 | Samsung Electronics MagicINFO 9 Server 21.1050/21.1052 path traversal (EUVD-2025-22430)
8 months 3 weeks ago
A vulnerability classified as critical has been found in Samsung Electronics MagicINFO 9 Server 21.1050/21.1052. This affects an unknown part. The manipulation leads to path traversal.
This vulnerability is uniquely identified as CVE-2025-54446. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-52735 | Linux Kernel up to 5.15.94/6.1.12 sock_map_close/sock_map_destroy/sock_map_unhash stack-based overflow (f312367f5246/749985988148/5b4a79ba65a1 / EUVD-2023-59454)
8 months 3 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.94/6.1.12. Affected is the function sock_map_close/sock_map_destroy/sock_map_unhash. The manipulation leads to stack-based buffer overflow.
This vulnerability is traded as CVE-2023-52735. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Enterprise LLMs Under Risk: How Simple Prompts Can Lead to Major Breaches
8 months 3 weeks ago
Enterprise applications integrating Large Language Models (LLMs) face unprecedented security vulnerabilities that can be exploited through deceptively simple prompt injection attacks. Recent security assessments reveal that attackers can bypass authentication systems, extract sensitive data, and execute unauthorized commands using nothing more than carefully crafted natural language queries. Key Takeaways1. Simple prompts can trick LLMs into […]
The post Enterprise LLMs Under Risk: How Simple Prompts Can Lead to Major Breaches appeared first on Cyber Security News.
Florence Nightingale
印度对美智能手机出货量首次超过中国
8 months 3 weeks ago
根据 Canalys 的数据,二季度(4-6 月)印度对美智能手机出货量首次超过中国(44% 对 25%)。美国智能手机出货量在 2025 年第二季度增长了 1%。与中国关税谈判结果的不确定性加速了供应链的重新定位。美国智能手机在中国组装的出货量份额从 2024 年第二季度的 61% 缩减至 2025 年第二季度的 25%。这种下降的大部分是由印度承担的;“印度制造”智能手机的总销量同比增长 240%,目前占美国进口智能手机的 44%,高于 2024 年第二季度仅占智能手机出货量的 13%。第二季度,iPhone 出货量同比下降 11% 至 1330 万部,三星出货量同比增长 38% 达到 830 万台,摩托罗拉增长 2% 至 320 万台。Google 和 TCL 跻身前五名,Google 增长 13% 至 80 万台,TCL 下降23% 出货量为 70 万台。
Cos’è il data masking e quali strumenti si possono usare
8 months 3 weeks ago
文章探讨了数据脱敏的目的、技术和工具,强调其在保护隐私和降低数据泄露风险中的作用,并区分了可逆与不可逆技术及开源与商业工具的选择,同时指出合规性如GDPR等法规是关键考量因素。
【已复现】用友 U8 Cloud 文件上传漏洞
8 months 3 weeks ago
检测业务是否受到此漏洞影响,请联系长亭应急服务团队!