Aggregator

Google计划从2025年10月起逐步要求所有Android应用开发者进行身份验证，并于2026年9月在巴西、印尼、新加坡和泰国实施。此举旨在防止恶意软件和假冒应用传播。

Google has announced plans to begin verifying the identity of all developers who distribute apps on Android, even for those who distribute their software outside the Play Store. "Android will require all apps to be registered by verified developers in order to be installed by users on certified Android devices," the company said. "This creates crucial accountability, making it much harder for

文章指出OAuth设备流机制存在安全漏洞，易受钓鱼攻击影响。多个企业平台如Azure、Salesforce等已遭威胁集团如Shiny Hunters利用。SSOJet提供解决方案，通过全面检测、条件访问控制和自动化响应等措施应对这一风险。

文章探讨了物理安全与数字安全融合对企业准备的重要性，强调设备可用性、网络安全、合规性、成本效益及未来规划的关键作用，并指出SSOJet通过单点登录和API集成助力企业实现高效安全管理。

A vulnerability, which was classified as problematic, was found in Discourse up to 3.5.0.beta7. Affected by this issue is some unknown functionality. The manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2025-54411. The attack may be launched remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability was found in Microsoft Purview Data Governance. It has been declared as critical. This issue affects some unknown processing of the component Azure Databricks. Such manipulation leads to improper access controls. This vulnerability is traded as CVE-2025-53763. The attack may be launched remotely. There is no exploit available. This product is a managed service, so users do not have direct control over vulnerability countermeasures.

A vulnerability was found in MallChat 1.0-SNAPSHOT. It has been classified as critical. Affected by this issue is some unknown functionality of the component API. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2024-50645. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability marked as problematic has been reported in Microsoft Windows. Affected by this issue is some unknown functionality of the component Windows Certificates. Performing manipulation results in improper verification of cryptographic signature. This vulnerability was named CVE-2025-55229. The attack may be initiated remotely. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability categorized as critical has been discovered in Microsoft PC Manager. The affected element is an unknown function. Executing manipulation can lead to improper authorization. This vulnerability is handled as CVE-2025-53795. The attack can be executed remotely. There is not any exploit available. This product is a managed service, therefore users are not responsible for maintaining vulnerability countermeasures.

A vulnerability classified as critical has been found in Microsoft Windows. This vulnerability affects unknown code of the component MBT Transport Driver. The manipulation leads to untrusted pointer dereference. This vulnerability is referenced as CVE-2025-55230. The attack can only be performed from a local environment. No exploit is available. It is recommended to upgrade the affected component.

文章介绍了欧洲AI法案，提供全面监管框架以确保人工智能的安全性、透明性和符合伦理原则，并探讨了监管与创新之间的关系。

Author: Guancheng Li, Xiaolin Zhang of Tencent Xuanwu Lab

近日，玄武实验室自主研发的阿图因（Atuin）自动化漏洞挖掘引擎，在零知识证明库 gnark 的 EdDSA 与 ECDSA 签名验证功能中发现一处高危漏洞（CVE-2025-57801，CVSS Score 8.6），该漏洞允许攻击者在不获取私钥的前提下针对同一条消息构造新的有效签名并通过验证。漏洞的验证工作由玄武实验室联合上海交通大学 GOSSIP 实验室与郁昱教授团队共同完成。值得注意的是，尽管 gnark 在其官方 README 中宣称已接受完整审计，阿图因引擎仍成功识别出这一漏洞，展现出人类专家级的自动化漏洞挖掘能力。

A massive coordinated scanning campaign targeting Microsoft Remote Desktop Protocol (RDP) services, with threat actors deploying over 30,000 unique IP addresses to probe for vulnerabilities in Microsoft RD Web Access and RDP Web Client authentication portals.  The campaign represents one of the largest coordinated RDP reconnaissance operations observed in recent years, signaling potential preparation for […]

The post Hackers Actively Scanning to Exploit Microsoft Remote Desktop Protocol Services From 30,000+ IPs appeared first on Cyber Security News.

Agriculture is a connected, software-driven industry where cybersecurity is just as essential as tractors and harvesters. From embedded hardware in smart fleets to defending against advanced persistent threats, protecting the agricultural supply chain requires a layered, collaborative approach. In this Help Net Security interview, Carl Kubalsky, Director and Deputy CISO at John Deere discusses the most pressing security challenges in agriculture, how his team is working with partners and ethical hackers to stay ahead of … More →

The post Protecting farms from hackers: A Q&A with John Deere’s Deputy CISO appeared first on Help Net Security.

当前环境出现异常，需完成验证后才能继续访问。

最新攻击行动表明APT36的战术正在不断演变，变得更具规避性和复杂性。

Две вехи эволюции — взрослый и детский скелеты — рассказывают одну историю о начале человеческой линии.

美国网络安全机构新增三个高危漏洞至目录，涉及Citrix Session Recording权限管理和反序列化问题（CVSS 5.1），以及Git配置文件处理不当导致代码执行（CVSS 8.1）。相关补丁已发布，需在指定日期前完成修复以应对威胁。

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws impacting Citrix Session Recording and Git to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2024-8068 (CVSS score: 5.1) - An improper privilege management vulnerability in Citrix Session Recording

大型语言模型重塑了数字生态系统，但也带来了提示注入、数据中毒等新安全风险。AI驱动的渗透测试结合自动化与人工分析，帮助组织检测并修复漏洞，确保LLM应用的安全性。