Aggregator

RSAC 2025创新沙盒大赛冠军出炉，ProjectDiscovery一举夺魁

欧洲多国遭遇历史性大停电，360独家解读事件诱因与应对策略

RSAC 2025创新沙盒大赛冠军出炉，ProjectDiscovery一举夺魁

欧洲多国遭遇历史性大停电，360独家解读事件诱因与应对策略

近期，火绒安全情报中心监测到一款伪装成Clash（代理工具）的程序正在网络上传播。经溯源分析，这款恶意软件是由易语言编写的木马，其开发者还提供私人定制易语言服务，为他人的黑灰产活动提供支持。目前，火绒安全产品可对上述病毒进行拦截查杀。

近期，火绒安全情报中心监测到一款伪装成Clash（代理工具）的程序正在网络上传播。经溯源分析，这款恶意软件是由易语言编写的木马，其开发者还提供私人定制易语言服务，为他人的黑灰产活动提供支持。目前，火绒安全产品可对上述病毒进行拦截查杀。

A vulnerability was found in code-projects ATM Banking 1.0. It has been classified as critical. Affected is the function moneyDeposit/moneyWithdraw. The manipulation leads to business logic errors. This vulnerability is traded as CVE-2025-4037. Local access is required to approach this attack. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Apple visionOS. Affected by this issue is some unknown functionality. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2025-24179. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Apple tvOS. This affects an unknown part. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-24179. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple macOS and classified as critical. This vulnerability affects unknown code. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2025-24179. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iOS and iPadOS and classified as critical. This issue affects some unknown processing. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2025-24179. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple tvOS. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2025-24206. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iOS and iPadOS. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authentication. This vulnerability is known as CVE-2025-24206. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Случайный скрипт на больничном терминале стоил карьеры и свободы.

漏洞已修复

如果组织机构仅关注将攻击者挤出去，则将失败。

漏洞已修复

如果组织机构仅关注将攻击者挤出去，则将失败。