Aggregator

Submit #776130 / VDB-353147

For the first time, SANS Institute's five top attack techniques all have one thing in common — AI.

This joint guidance is intended for users of LEO SATCOM services. It highlights the key cyber security risks and mitigation strategies to support informed decision-making.

Submit #776127 / VDB-353146

Submit #776083 / VDB-353143

Почти как Apollo 8, но с новыми ставками…

Submit #776082 / VDB-353142

从极客玩具到普惠工具，原子重塑正试图拆除3D打印的创作高墙，将繁琐的工业制造转化为人人可用的桌面生产力。

Submit #776081 / VDB-353141

Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable of comprehensive data theft and installing a remote access trojan (RAT), which deploys an information-stealing Google Chrome extension masquerading as an offline version of Google Docs. "It logs keystrokes, dumps cookies and session tokens, captures screenshots, and

Submit #775867 / VDB-353140

Submit #775859 / VDB-353139

Submit #775841 / VDB-353138

Currently trending CVE - Hype Score: 4 - Secure Boot Security Feature Bypass Vulnerability

Currently trending CVE - Hype Score: 26 - Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1050 allows attackers to write arbitrary file as system authority.

Currently trending CVE - Hype Score: 2 - Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Starting from version 3.0.0-RC1 to before 3.9.15, 4.0.0-RC1 to before 4.14.15, and 5.0.0-RC1 to before 5.6.17, Craft is vulnerable to remote code execution. This is a ...

Currently trending CVE - Hype Score: 9 - Directus is a real-time API and App dashboard for managing SQL database content. From 10.8.0 to before 11.9.3, a vulnerability exists in the file update mechanism which allows an unauthenticated actor to modify existing files with arbitrary contents (without changes being ...

Submit #775502 / VDB-353128

Submit #775479 / VDB-353127