谷歌Chrome稳定版更新修复关键安全漏洞 Google has rolled out a new Stable Channel Update for its Chrome browser,... 2025-1-27 12:23:39 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security chrome attackers corruption

针对新手黑客的复杂攻击活动：XWorm 远程访问木马 A sophisticated attack campaign have been uncovered recently by the cyber... 2025-1-27 12:16:20 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com cloudsek xworm malicious trojanized

SCAVY：自动发现Linux内核中的内存损坏目标以防止权限提升 Researchers have unveiled SCAVY, a novel framework designed to automate t... 2025-1-27 10:38:14 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com memory scavy corruption analysis

Windows最佳匹配字符转换漏洞：WorstFit攻击面 Security researchers have uncovered a critical vulnerability in Windows s... 2025-1-27 08:28:52 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows ansi attackers php conversion

GitLab 发布关键安全更新，修复多个漏洞包括高危跨站脚本攻击 GitLab has released critical security updates for its Community Edition (... 2025-1-27 07:57:24 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com gitlab security malicious rendering

Andariel黑客组织利用RID劫持技术创建隐藏管理员账户 The North Korean-linked Andariel hacking group has been identified using... 2025-1-27 06:35:3 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com rid hijacking security andariel attackers

Git相关项目中的关键安全漏洞 Critical security vulnerabilities in Git-related projects, including GitH... 2025-1-27 05:55:13 | 阅读: 5 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com github newline security improper

Meta的Llama Stack框架中的严重安全漏洞CVE-2024-50050 A critical security flaw, CVE-2024-50050, has been discovered in Meta’s L... 2025-1-27 03:26:18 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com llama security python pickle pyobj

微软允许非特权用户更新UPN引发安全担忧 Microsoft has allowed unprivileged users to update their own User Princip... 2025-1-25 05:39:1 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com microsoft entra upn powershell upns

Kubernetes关键漏洞CVE-2024-9042：Windows节点远程代码执行 A critical vulnerability in Kubernetes, designated as CVE-2024-9042, has... 2025-1-24 18:57:55 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com kubernetes windows attackers clusters peled

利用硬件断点绕过EDR检测机制 Adversaries continue to innovate methods to bypass Endpoint Detection and... 2025-1-24 10:33:5 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com breakpoints hardware etw monitoring attackers

新型勒索软件通过SSH隧道隐蔽入侵VMware ESXi主机 New ransomware strains are quietly infiltrating VMware ESXi hosts by sett... 2025-1-24 04:23:20 | 阅读: 7 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com attackers ssh network malicious ransomware

Microsoft Outlook OLE 双重释放漏洞的零点击远程代码执行概念验证 A new proof-of-concept (PoC) has been released for Microsoft Outlook zero... 2025-1-24 02:32:49 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com microsoft security johansen windows rtf

Palo Alto网络安全防火墙的关键漏洞 A recent cybersecurity report has identified critical vulnerabilities in... 2025-1-23 19:44:1 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security firmware attackers pa

新Mirai变种Murdoc_Botnet大范围攻击AVTECH摄像头和华为路由器 Cybersecurity researchers have uncovered a new large-scale campaign invol... 2025-1-23 14:32:57 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com murdoc avtech malicious cameras censys

针对Chrome扩展的供应链攻击威胁260万用户 A sophisticated supply chain attack targeting Chrome browser extensions h... 2025-1-23 08:13:47 | 阅读: 5 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com chrome malicious sekoia phishing developers

新型“Cookie三明治”攻击绕过HttpOnly标志 A newly discovered attack technique, dubbed the “cookie sandwich,” enable... 2025-1-23 07:59:29 | 阅读: 8 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com sandwich security quoted exposing attackers

Windows 文件资源管理器中的关键安全漏洞 (CVE-2024-38100) 被积极利用 A critical security flaw in Windows File Explorer, identified as CVE-2024... 2025-1-22 14:13:43 | 阅读: 9 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows security attackers shells 38100

新型勒索软件Helldown利用Zyxel防火墙漏洞入侵企业网络 A new ransomware threat dubbed “Helldown” has emerged, actively exploitin... 2025-1-22 13:35:1 | 阅读: 5 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com helldown zyxel yarix ransomware encryption

恶意扩展伪装Zoom应用窃取VS Code用户数据 Cybersecurity researchers have uncovered a new threat targeting developer... 2025-1-22 09:0:58 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security malicious chrome developers hunt