Aggregator

英伟达 CEO 黄仁勋首次公开回应 DeepSeek：投资者误解，AI 发展仍需强大算力；侯毅创立「派特鲜生」进军宠物食品行业，计划今年开百店。

Chinese Nation-State Hackers Used a Custom Utility to Capture Packets
Chinese hackers who infiltrated U.S. telecoms likely only used one, known Cisco vulnerability, says Cisco's threat analysis unit. Otherwise, the Chinese nation-state cyberespionage operation known as Salt Typhoon used stolen login credentials living-off-the-land techniques, says Cisco Talos.

Computing Giant Warns Against Future Decryption of Secure Communications
Google adopted quantum-safe digital signatures for its cloud environment designed to help users combat the next phase of adversarial attacks. The announcement from the company comes days after Microsoft unveiled its latest quantum chip. NIST formalized the algorithms in August 2024.

Ransomware Attack Taught Lessons on Health Sector Resiliency, Vendor Redundancy
It's been one year since hackers attacked IT services provider Change Healthcare, quickly shutting down critical processes for thousands of healthcare entities, triggering a data breach affecting 190 million people. So what top lessons are emerging from that massive disruption and data compromise?

Vendors Consolidate Endpoint, Managed Offerings to Combat Major Industry Players
Rising competition from CrowdStrike and Microsoft is driving MDR and EDR providers to consolidate. Companies such as Sophos and Arctic Wolf are acquiring endpoint or managing security technology to enhance detection and response capabilities, signaling a shift toward full-stack security solutions.

浏览器已从单纯的访问工具演变为数据安全的第一道防线，企业浏览器更是从“可选工具”进化为“数字基建的核心组件”。

This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.

Currently trending CVE - Hype Score: 1 - Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Currently trending CVE - Hype Score: 1 - An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.

Name: SAIBORG | Elite Hacking Competition | Edition #2 | 21/Feb/2025 (an SAIBORG event.)
Date: Feb. 21, 2025, 2:30 p.m. — 21 Feb. 2025, 21:00 UTC  [add to calendar]
Format: Hack quest
On-site
Location: Italy, Rome
Offical URL: https://www.saiborg.io/
Rating weight: 0.00
Event organizers: Saiborg

点击查看更多本周网络安全大事件。

Ransomware Attack Update for 21st of February 2025

A vulnerability was found in Jspxcms up to 9.5 and classified as problematic. This issue affects some unknown processing of the file /back/UserController.java of the component Request Handler. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2025-25772. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in MRCMS 3.1.2 and classified as problematic. This vulnerability affects unknown code of the file /file/save.do. The manipulation leads to an unknown weakness. This vulnerability was named CVE-2025-25765. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability, which was classified as critical, was found in TOTOLINK X5000R 9.1.0u.6369_B20230113. This affects the function vif_disable of the file mtkwifi.lua. The manipulation leads to command injection. This vulnerability is uniquely identified as CVE-2025-25604. The attack can only be done within the local network. There is no exploit available.

A vulnerability, which was classified as critical, has been found in MRCMS 3.1.2. Affected by this issue is some unknown functionality of the file /file/savefile.do. The manipulation leads to unrestricted upload. This vulnerability is handled as CVE-2025-25766. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical was found in MRCMS 3.1.2. Affected by this vulnerability is an unknown functionality of the file /controller/UserController.java of the component Request Handler. The manipulation leads to Privilege Escalation. This vulnerability is known as CVE-2025-25767. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability classified as problematic has been found in Wangmarket up to 4.10/5.0. Affected is an unknown function of the file /agency/AgencyUserController.java. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2025-25770. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in ryansolid dom-expressions up to 0.39.4. It has been declared as problematic. This vulnerability affects the function replace. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-27108. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Wangmarket up to 5.0. It has been rated as problematic. This issue affects some unknown processing of the file /controller/UserController.java. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2025-25769. The attack may be initiated remotely. There is no exploit available.