Aggregator

八部门印发《“人工智能+制造”专项行动实施意见》

近年来，我国着力建立健全网络综合治理体系，对互联网信息服务算法的治理已逐渐形成多方位、多层次的治理格局，涵盖法律、行政法规、部门规章、专项行动、技术监管及公众参与等多个维度。

Админам Veeam советуют срочно обновиться до 13.0.1.1071 из-за набора опасных ошибок в ветке 13.

A vulnerability classified as critical was found in magentech Rozy Plugin up to 1.2.25 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation results in improper control of filename for include/require statement in php program ('php remote file inclusion'). This vulnerability is reported as CVE-2025-12549. The attack can be launched remotely. No exploit exists.

假激活，真勒索！新型勒索软件MiddCrypto全套戏码曝光

入选国家级好提案！360为数据安全产业发展提供技术支撑

A vulnerability was found in Linux Kernel up to 6.12.62/6.17.12/6.18.1. It has been rated as critical. The affected element is an unknown function of the component LED Driver. The manipulation leads to null pointer dereference. This vulnerability is documented as CVE-2025-68758. The attack requires being on the local network. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.62/6.17.12/6.18.1. The impacted element is the function timer_delete_sync of the component vgem-fence. The manipulation results in deadlock. This vulnerability is reported as CVE-2025-68757. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.

想踏入网络安全领域却不知从何开始？担心没有基础学不会？

逻辑缺陷导致未授权攻击者可读取任意文件并接管服务器。

看雪论坛作者ID：relost

速更新

速更新

Reusing passwords may feel like a harmless shortcut – until a single breach opens the door to multiple accounts

A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers

一名来自大福克斯的男子因通过短信威胁、骚扰受害者，于今日被判处46个月监禁及3年监督释放。

Cybersecurity researchers have disclosed details of multiple critical-severity security flaws affecting Coolify, an open-source, self-hosting platform, that could result in authentication bypass and remote code execution. The list of vulnerabilities is as follows - CVE-2025-66209 (CVSS score: 10.0) - A command injection vulnerability in the database backup functionality allows any authenticated

A vulnerability identified as critical has been detected in bluelabsio records-mover up to 1.5.4. The affected element is an unknown function of the component Table Object Handler. This manipulation causes sql injection. This vulnerability is registered as CVE-2023-7333. The attack needs to be launched locally. No exploit is available. You should upgrade the affected component.