Aggregator

黑客可通过USB设备执行任意代码，影响包括马自达3、马自达6和马自达CX-5在内的多个车型。

分隔化内核模块以限制潜在漏洞的影响

Hewlett Packard Enterprise (HPE) has released security updates to address multiple vulnerabilities impacting Aruba Networking Access Point products, including two critical bugs that could result in unauthenticated command execution. The flaws affect Access Points running Instant AOS-8 and AOS-10 - AOS-10.4.x.x: 10.4.1.4 and below Instant AOS-8.12.x.x: 8.12.0.2 and below Instant AOS-8.10.x.x:

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument e leads to cross site scripting. This vulnerability is known as CVE-2024-11078. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in code-projects Job Recruitment 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument email leads to sql injection. This vulnerability is traded as CVE-2024-11077. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /activation.php. The manipulation of the argument e_hash leads to sql injection. The identification of this vulnerability is CVE-2024-11076. The attack may be initiated remotely. Furthermore, there is an exploit available.

满减优惠、多件折扣、大额优惠券……今年“双十一”购物节各平台促销活动层出不穷、令人眼花缭乱。纷繁复杂的优惠措施在耗费消费者精力的同时，也增加了不同消费者购买同一商品或服务时“同货不同价”的概率，“大数据杀熟”这一问题又引起广泛关注。

韩国个人信息保护委员会11月5日对外宣布，决定对违反韩国《个人信息保护法》的美国互联网公司Meta处以216亿多韩元的行政罚款。原因是该公司非法收集旗下社交平台“脸书”用户的敏感个人信息，并与数千家广告商共享。

促进公共数据高效合规流通使用，优化公共数据资源配置，对做优做大数字经济具有重要作用。人工智能产业是数据密集型新兴产业，高度依赖数据集的规模和质量。

联合国安理会8日举行勒索软件问题公开会。中国常驻联合国副代表耿爽在会上表示，中方主张加强网络安全治理、维护网络空间长治久安。

民营企业作为国民经济的重要组成部分，亦是贯彻习近平总书记总体国家安全观的重要主体之一。因此，在网络安全风险和挑战日趋复杂的大背景下，贯彻落实总体国家安全观，需要持续推进企业安全发展，践行安全运营最佳实践。

点击文章，了解最前沿的国际网安资讯！

Как не стать жертвой кибербандитов и защитить свой сайт от атаки?

A vulnerability classified as critical was found in HP Persistent Accelerite Radia Client Automation up to 9.0. This vulnerability affects unknown code of the component Agent. The manipulation leads to memory corruption. This vulnerability was named CVE-2015-7860. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Submit #441187 / VDB-283873

Submit #441184 / VDB-283872

Submit #441182 / VDB-283871

2025 年 10 月 4 日，自由软件基金会（FSF）将迎来 40 周岁生日。FSF 致力于帮助所有计算机用户实现软件自由，这一使命尚未实现。在使命实现和可以退休前，FSF 将举办一系列活动庆祝 40 周年以及过去 40 年所取得的成就。FSF 将以团结国际自由软件社区的精神庆祝 40 周年，讨论下一步可以做些什么能让世界更自由，庆祝所取得的进步。FSF 的目标建立一个自由的星球。

Система Bug Bounty готовится к унификации и новым тарифам.

Swedish-Russian national Roman Sterlingov has been jailed for 12 years and six months for operating notorious cryptocurrency mixer Bitcoin Fog