Aggregator

A vulnerability has been found in GNOME glib and classified as problematic. Affected by this vulnerability is the function fuzz_variant_text. The manipulation leads to denial of service. This vulnerability is known as CVE-2023-32636. The attack can only be done within the local network. There is no exploit available.

A vulnerability, which was classified as problematic, was found in OpenSC pam_pkcs11 up to 0.6.12. This affects an unknown part of the component X.509 Certificate Handler. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-24031. Attacking locally is a requirement. There is no exploit available.

A vulnerability was found in SchedMD Slurm. It has been rated as critical. Affected by this issue is some unknown functionality of the component stepmgr. The manipulation leads to improper authorization. This vulnerability is handled as CVE-2024-48936. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

在这场革命中，我们以为自己是革命者，但是也有可能我们是被革的那个。

在这场革命中，我们以为自己是革命者，但是也有可能我们是被革的那个。

Космической империи Маска придется потесниться?

Nearly a third of organizations have an operational system connected to the Internet with a known exploited vulnerability, as attacks by state and non-state actors increase.

The first quarter of 2025 has been a battlefield in the world of cybersecurity. Cybercriminals continued launching aggressive new campaigns and refining their attack methods. Below is an overview of five notable malware families, accompanied by analyses conducted in controlled environments. NetSupport RAT Exploiting the ClickFix Technique In early 2025, threat actors began exploiting a technique

Cybersecurity researchers uncovered a sophisticated malware campaign targeting macOS users through a fraudulent DeepSeek.ai interface. Dubbed “Poseidon Stealer,” this information-stealing malware employs advanced anti-analysis techniques and novel infection vectors to bypass Apple’s latest security protocols, marking a significant escalation in macOS-focused threats. Infection Vector and Social Engineering Tactics The attack begins with malvertising campaigns redirecting […]

The post Poseidon Stealer Targets Mac Users via Fake DeepSeek Website appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

速修复

速修复

快来试用吧！

Canva 通过整合多供应商工具、定义动态 SLA 框架及自动化更新流程，结合数据驱动的风险阈值管理与人工干预协同，实现规模化终端漏洞的高效修复，在保障安全性的同时最小化用户体验干扰。

Canva 通过整合多供应商工具、定义动态 SLA 框架及自动化更新流程，结合数据驱动的风险阈值管理与人工干预协同，实现规模化终端漏洞的高效修复，在保障安全性的同时最小化用户体验干扰。