Aggregator

谷歌 CEO：Gemini 在 AI 编程赛道已落后；法拉利首款纯电动车 Ferrari Luce 发布；曝小红书已获 2026 世界杯分销版权。

IntroductionIn recent weeks, I've searched for pages impersonating Claude that distribute malware

德国《商报》周一援引欧盟委员会知情人士的消息称，欧盟正计划在一项反垄断调查中对谷歌处以数亿欧元、接近10亿欧元级别的罚款。报道称，该决定已接近完成，预计将在欧盟夏季休会前公布。这将是欧盟因违反《数字市

Linux Kernel 6.8 - Local Privilege Escalation

cPanel - CRLF Injection

Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover

D-Link DSL2600U - 'rom-0' Admin Password Disclosure

Apache HTTP Server 2.4.66 - 'mod_http2' Double-Free Denial of Service

Grav CMS 2.0.0-beta.2 - Remote Code Execution

TrendAI™ Research analyzed an intrusion where threat actors used the EtherHiding technique to route ClearFake payload delivery through smart contracts on the BNB Smart Chain testnet. The attack chain ended with two simultaneously deployed stealers, SectopRAT and ACRStealer alongside an on-chain execution tracker that confirmed each victim compromise in real time.

守护药企生产安全。

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

Andrei Kozlov, the former head of a cybersecurity center within Russia’s state-owned defense conglomerate Rostec, was named an aide to Security Council Secretary Sergei Shoigu on Friday.

Investigators seized more than 800 servers as they arrested two men suspected of violating European sanctions and assisting pro-Russian cyberattacks and disinformation campaigns.

Snscrape是一款功能强大的免费工具，无需API密钥即可从 Twitter、TikTok、YouTube、Reddit等平台抓取公开的社交媒体数据。它非常适合研究人员、营销人员、开发人员和Python初学者，让您能够快速轻松地收集、导出和分析数据。

A vulnerability described as problematic has been identified in Roundcube Webmail up to 1.6.15/1.7.0. Affected by this vulnerability is an unknown functionality of the component SVG Document Handler. Such manipulation of the argument attributeName leads to cross site scripting. This vulnerability is uniquely identified as CVE-2026-48848. The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.

A vulnerability labeled as problematic has been found in SourceCodester Student Grades Management System 1.0. This affects an unknown part. The manipulation results in cross-site request forgery. This vulnerability is identified as CVE-2026-9486. The attack can be executed remotely. Additionally, an exploit exists.