Aggregator

De afgelopen week stond in het teken van wisselingen van de wacht. Het commando van de vooruitgeschoven NAVO-troepenmacht in Litouwen is weer in Duitse handen. Daarnaast werd de Nederlandse Force Protection in Bagdad afgelost. Een overzicht van Defensieoperaties in de week van 5 tot en met 11 februari 2025.

На кого теперь рассчитывать в борьбе с цифровыми угрозами национального масштаба?

2021 年美国陆军与微软签署了为期十年的 219 亿美元 AR 设备协议，采购 12.1 万部基于 HoloLens 的增强现实头戴式显示设备。该系统被称为 Integrated Visual Augmented System（IVAS）。去年 10 月微软终止了 HoloLens 的其它业务，现在微软与 Palmer Luckey 的 Anduril 公司发表联合声明，将陆军版 HoloLens 头戴式显示设备的合同转交给 Anduril。这笔交易还需要美国陆军的批准。此举可能意味着微软完全退出了 HoloLens 业务。根据新的协议，微软将提供相关的云计算和 AI 基础设施，而 Anduril 负责硬件生产和软件开发。IVAS 项目面临技术挑战，早期原型在测试中让士兵感到头疼和恶心，目前的精简版收到了更好的反馈。但产品的投产取决于今年的战斗测试。美国陆军对其费用也有很大意见——单价高达 8 万美元——认为需要大幅降低。

The North Korea-linked threat actor known as Kimsuky has been observed using a new tactic that involves deceiving targets into running PowerShell as an administrator and then instructing them to paste and run malicious code provided by them. "To execute this tactic, the threat actor masquerades as a South Korean government official and over time builds rapport with a target before sending a

Microsoft Threat Intelligence has uncovered a new tactic employed by the North Korean state-sponsored hacking group Emerald Sleet, also known as Kimsuky or VELVET CHOLLIMA. The group is leveraging social engineering techniques to trick victims into running PowerShell commands as administrators, enabling them to compromise devices and exfiltrate sensitive data. Emerald Sleet’s latest approach involves […]

The post Hackers Trick You To Run PowerShell As Admin & Paste Their Code to Hack Windows appeared first on Cyber Security News.

A vulnerability was found in eaglethemes Rise Blocks Plugin up to 3.6 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument titleTag leads to cross site scripting. This vulnerability is handled as CVE-2025-0506. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in nmedia Easy Quiz Maker Plugin up to 2.0 on WordPress and classified as problematic. Affected by this vulnerability is the function wqt-question of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-13456. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in chuhpl Book a Room Plugin up to 2.9 on WordPress. This issue affects the function bookaroom_Settings of the component Setting Handler. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2024-13437. The attack may be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in jeremyshapiro FuseDesk Plugin up to 6.6.1 on WordPress. Affected is the function fusedesk_newcase of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-13459. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as critical was found in enituretechnology ShipEngine Shipping Quotes Plugin up to 1.0.7 on WordPress. This vulnerability affects unknown code. The manipulation of the argument edit_id leads to sql injection. This vulnerability was named CVE-2024-13531. The attack can be initiated remotely. There is no exploit available.

A critical security vulnerability has been identified in Windows’ Lightweight Directory Access Protocol (LDAP) implementation, allowing attackers to execute arbitrary code remotely. This “wormable” vulnerability, designated as CVE-2025-21376, was disclosed on February 11, 2025, by Microsoft. The vulnerability is classified as a Remote Code Execution (RCE) issue, which can be exploited without requiring any user […]

The post ‘Wormable’ Windows LDAP Vulnerability Allow Attackers Arbitrary Code Remotely appeared first on Cyber Security News.

本文摘录洞源实验室对知乎同名问题的回答：https://www.zhihu.com/question/480245432/answer/98109572941

本文摘录洞源实验室对知乎同名问题的回答：https://www.zhihu.com/question/480245432/answer/98109572941

Тысячи страниц исчезают без следа, и никто уже не сможет их восстановить.

A vulnerability classified as critical has been found in iwcontribution Ebook Downloader Plugin up to 1.0 on WordPress. This affects an unknown part. The manipulation of the argument download leads to sql injection. This vulnerability is uniquely identified as CVE-2024-13435. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in ApusTheme Apus Framework Plugin up to 2.3 on WordPress. It has been rated as critical. Affected by this issue is the function import_page_options. The manipulation leads to missing authorization. This vulnerability is handled as CVE-2024-12296. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Apache Fineract up to 1.9. It has been classified as critical. Affected is an unknown function of the component REST API Endpoint. The manipulation leads to sql injection. This vulnerability is traded as CVE-2024-32838. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in enituretechnology LTL Freight Quotes Plugin up to 4.3.7 on WordPress. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument edit_id/dropship_edit_id leads to sql injection. This vulnerability is known as CVE-2024-13490. The attack can be launched remotely. There is no exploit available.