三星 KNOX FIVE 组件八年潜伏 UAF 漏洞暴露 Galaxy 设备内核攻击风险 2026-6-23 14:42:49 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com

AutoJack：利用三重漏洞链劫持 Microsoft AutoGen Studio 代理实现远程代码执行 2026-6-20 03:23:20 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com

usbliter8：利用DWC2下溢漏洞破坏苹果A12-A13芯片BootROM信任链 2026-6-18 17:20:49 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com

Steam Workshop 会话劫持：Wallpaper Engine 恶意壁纸利用技术分析 2026-6-17 06:56:15 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com

OceanLotus APT32 通过供应链攻击入侵 FireAnt MetaKit 并部署 SPECTRALVIPER 后门 2026-6-11 17:15:23 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com

UNK_DeadDrop：朝鲜黑客利用 GitHub 仓库作为武器感染开发者 2026-6-9 16:2:1 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com

EDRChoker：利用 Windows 原生 Policy-Based QoS 带宽节流静默 EDR 代理 A newly released open-source red team tool called EDRChoker introduces a novel technique for silenc... 2026-6-7 17:21:25 | 阅读: 12 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows qos wfp edrchoker network

绕过 AI 技能扫描器：ClawHub、Cisco 和 Vercel 生态中的供应链风险 AI skill scanners from ClawHub, Cisco, and Vercel’s skills. The platform can be bypassed with minim... 2026-6-5 03:5:59 | 阅读: 6 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com skill malicious security trail llm

Windows Netlogon CVE-2026-41089 遭活跃利用：高危 0-Click RCE 威胁预警 The critical Windows Netlogon remote code execution (RCE) vulnerability tracked as CVE-2026-41089 i... 2026-6-1 03:16:44 | 阅读: 8 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com netlogon 2026 41089 windows network

ChatGPhish：基于浏览器的提示注入将网页转化为钓鱼载荷 A browser-based prompt injection technique that transforms any web page into a phishing delivery su... 2026-5-29 14:18:9 | 阅读: 9 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com attacker chatgpt security chatgphish phishing

Zapocalypse：利用沙箱逃逸与元数据泄露链实现 Zapier 全账户接管 A newly disclosed exploit chain dubbed Zapocalypse shows how a low-privilege code-execution feature... 2026-5-28 14:57:22 | 阅读: 10 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com zapier zapocalypse 2026 security mcp

摩托罗拉设备中隐藏的 Smart Feed 应用劫持 Amazon 启动并注入联盟代码 A hidden system application bundled with Motorola smartphones has been caught intercepting user-ini... 2026-5-27 15:39:47 | 阅读: 7 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com affiliate motorola razr

BadHost：Starlette 严重漏洞导致 AI Agent 基础设施认证绕过 A newly disclosed critical vulnerability, tracked as CVE-2026-48710 and dubbed “BadHost,” is puttin... 2026-5-27 15:22:51 | 阅读: 6 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security starlette attackers badhost

7-Zip 严重堆溢出漏洞：NTFS 处理器 vtable Hijack 导致任意代码执行 A critical heap buffer overflow vulnerability has been disclosed in 7-Zip version 26.00, enabling a... 2026-5-26 04:5:3 | 阅读: 8 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com vtable overflow ub cinstream

GhostTree：利用 NTFS Junctions 诱导 EDR 挂起并绕过文件扫描 A novel evasion technique called GhostTree, which exploits NTFS junctions to create recursive direc... 2026-5-21 04:16:29 | 阅读: 6 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security recursive ghosttree junction junctions

20 年前 PostgreSQL RCE 漏洞 PoC 发布：pgcrypto 扩展堆溢出攻击分析 A proof-of-concept (PoC) exploit has been publicly released for CVE-2026-2005, a critical remote co... 2026-5-20 04:26:14 | 阅读: 7 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com memory security database pgp pgcrypto

InstallFix 行动：利用 Claude AI 信任通过虚假安装程序与多阶段恶意软件攻击 Hackers are using convincing fake pages for Claude AI to trick users into running malware on their... 2026-5-7 13:0:7 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com claude payload attackers stage victim

ScarCruft 供应链攻击：Windows 与 Android 后门瞄准游戏平台 A North Korea-aligned threat group known as ScarCruft has been caught running a supply chain attack... 2026-5-5 15:52:10 | 阅读: 8 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com birdcall sqgame korean north scarcruft

Copy Fail：自 2017 年以来可导致确定性 Root 提权的 Linux 内核严重 0-Day 漏洞 A critical zero-day vulnerability in the Linux kernel has been publicly disclosed, enabling any unp... 2026-4-30 02:31:49 | 阅读: 37 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com aead algif scatterlist 2026 dirty

CVE-2026-26268：利用恶意 Git Hooks 导致 Cursor AI 远程代码执行漏洞 A high-severity vulnerability in Cursor, one of the most widely used AI-powered coding environments... 2026-4-29 12:43:53 | 阅读: 34 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com repository developer attacker security bare