Aggregator

本文仅分享某AI项目漏洞挖掘过程，不涉及poc以及任何黑盒测试内容，感兴趣的师傅可以自行复现

如何在不影响功能的情况的基础上不上漏洞

История одного нелепого взлома клиники.

A financially motivated cybercrime group has been quietly compromising cloud environments since late 2025, and its activities are now drawing serious concern across the security community. The group, known as TeamPCP, operates a self-propagating worm called CanisterWorm that hunts for poorly secured Docker APIs, Kubernetes clusters, Redis servers, and systems vulnerable to the React2Shell flaw. […]

The post CanisterWorm Malware Attacking Docker/K8s/Redis to Gain Access and Steal Secrets appeared first on Cyber Security News.

fileury fury+IOUtils二次反序列化打aspectJweaver写jar包加载

A critical SQL injection vulnerability (CVE-2026-21643) in Fortinet FortiClient Endpoint Management Server (EMS), a management server for FortiClient endpoint agents on various platforms, is under active exploitation. The warning comes from Defused Cyber, which helps organizations deploy honeypots/fake assets, and uses them as well to capture real attack attempts and exploits and provide early warning threat intelligence. “Currently marked as not exploited on CISA and other Known Exploited Vulnerabilities (KEV) lists, [CVE-2026-21643] has seen first … More →

The post Critical Fortinet FortiClient EMS bug under active attack (CVE-2026-21643) appeared first on Help Net Security.

Cybersecurity researchers have discovered a remote access toolkit of Russian-origin that's distributed via malicious Windows shortcut (LNK) files that are disguised as private key folders. The CTRL toolkit, according to Censys, is custom-built using .NET and includes various executables" to facilitate credential phishing, keylogging, Remote Desktop Protocol (RDP) hijacking, and reverse tunneling

开发者发现，使用微软 AI 助手 Copilot 修改 PR 中的拼写错误时它主动添加了一则广告。对 GitHub 平台的搜索发现，已经有数以万计的 PR 包含了相同的广告——“Quickly spin up Copilot coding agent tasks from anywhere on your macOS or Windows machine with Raycast”。开发者认为微软此举无法让人接受。

Hours after the FBI confirmed that Iranian hackers gained access to Director Kash Patel’s personal email account, the State Department offered a reward for information on cyber actors within the country.

CISCN&CCB 2026分区赛AWDP-Web部分的题目复现

A high-severity security flaw has been discovered in Vim, one of the most widely used text editors among developers. This vulnerability allows attackers to execute arbitrary operating system commands simply by tricking a user into opening a specially crafted file. Discovered by security researcher Hung Nguyen, the bug chain highlights the persistent risks associated with how […]

The post Vim Vulnerability Let Attackers Execute Arbitrary Command Via Weaponized Files appeared first on Cyber Security News.

科学家使用 NASA 朱诺号探测器仪器测量了木星闪电，发现其释放的能量是地球上闪电的 1 百到 1 万倍。地球闪电一次释放的能量约为 10 亿焦耳，这意味着木星最强闪电释放大约 10 万亿焦耳的能量，相当于 2400 吨 TNT 炸药，或广岛原子弹威力的六分之一。根据朱诺号对木星风暴中闪电发生频率的研究，它平均每秒出现三次闪电，这意味着风暴每分钟释放的能量相当于多颗原子弹爆炸。闪电被认为促进了地球生命的演化，木星上的闪电也可能促进复杂的化学反应过程。

EditHttpMsg For Burp UI Demo

Overview As cybersecurity threats continue to evolve and become more sophisticated, the need for comprehensive preparedness has never been more critical. Tabletop exercises are essential for testing and refining incident response plans, enhancing coordination between departments, and staying ahead of malicious actors. In this article, we outline seven tabletop exercise scenarios that cybersecurity teams should […]

The post 7 tabletop exercise scenarios every cybersecurity team should practice in 2026 first appeared on TrustCloud.

The post 7 tabletop exercise scenarios every cybersecurity team should practice in 2026 appeared first on Security Boulevard.

Депутаты Европарламента едут в Китай под присмотром контрразведки.

The advance could allow these technologies to operate in deep-space probes, inside nuclear reactors, in ultrahigh vacuum systems, and at temperatures both near absolute zero and in scorchingly hot industrial settings.

Researchers at ReliaQuest warn of persistent malware campaign targeting enterprise credentials

The NCSC is encouraging UK organisations to mitigate an unauthenticated remote code execution vulnerability affecting F5 BIG-IP Access Policy Manager.

Understanding the threats and staying ahead of the adversary

Dimitris Georgiou has been a self-professed computer geek since the early 80s. At university, he studied the convergence of educational technology with computer science as part of his psychology MA – finding, to his disbelief, that systems were perilously insecure.  Since then, he’s always worked in and around cybersecurity. He’s had roles as a computer [...]

The post CISO Spotlight: Dimitris Georgiou on Building Security that Serves People First appeared first on Wallarm.

The post CISO Spotlight: Dimitris Georgiou on Building Security that Serves People First appeared first on Security Boulevard.