波兰和德国的复杂网络攻击：使用多种恶意软件的钓鱼邮件 A financially motivated threat actor has been linked to a sophisticated c... 2025-1-28 14:53:59 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com network tornet windows c2 purecrypter

过时的无线电脉冲控制系统的安全漏洞及其对电力供应的威胁 Researchers Fabian Bräunlein and Luca Melette demonstrated how outdated R... 2025-1-28 13:39:12 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com grid signals ripple software

结合Windows符号链接增强BYOVD技术的新方法 A new method of exploiting the “Bring Your Own Vulnerable Driver” (BYOVD)... 2025-1-28 11:22:13 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows symbolic attackers byovd blocklist

利用多播投毒执行预认证Kerberos中继攻击的新方法 A novel attack method leveraging multicast poisoning to execute pre-authe... 2025-1-27 15:41:21 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com llmnr attacker poisoning relaying

谷歌Chrome稳定版更新修复关键安全漏洞 Google has rolled out a new Stable Channel Update for its Chrome browser,... 2025-1-27 12:23:39 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security chrome attackers corruption

针对新手黑客的复杂攻击活动：XWorm 远程访问木马 A sophisticated attack campaign have been uncovered recently by the cyber... 2025-1-27 12:16:20 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com cloudsek xworm malicious trojanized

SCAVY：自动发现Linux内核中的内存损坏目标以防止权限提升 Researchers have unveiled SCAVY, a novel framework designed to automate t... 2025-1-27 10:38:14 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com memory scavy corruption analysis

Windows最佳匹配字符转换漏洞：WorstFit攻击面 Security researchers have uncovered a critical vulnerability in Windows s... 2025-1-27 08:28:52 | 阅读: 9 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows ansi attackers php conversion

GitLab 发布关键安全更新，修复多个漏洞包括高危跨站脚本攻击 GitLab has released critical security updates for its Community Edition (... 2025-1-27 07:57:24 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com gitlab security malicious rendering

Andariel黑客组织利用RID劫持技术创建隐藏管理员账户 The North Korean-linked Andariel hacking group has been identified using... 2025-1-27 06:35:3 | 阅读: 8 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com rid hijacking security andariel attackers

Git相关项目中的关键安全漏洞 Critical security vulnerabilities in Git-related projects, including GitH... 2025-1-27 05:55:13 | 阅读: 9 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com github newline security improper

Meta的Llama Stack框架中的严重安全漏洞CVE-2024-50050 A critical security flaw, CVE-2024-50050, has been discovered in Meta’s L... 2025-1-27 03:26:18 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com llama security python pickle pyobj

微软允许非特权用户更新UPN引发安全担忧 Microsoft has allowed unprivileged users to update their own User Princip... 2025-1-25 05:39:1 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com microsoft entra upn powershell upns

Kubernetes关键漏洞CVE-2024-9042：Windows节点远程代码执行 A critical vulnerability in Kubernetes, designated as CVE-2024-9042, has... 2025-1-24 18:57:55 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com kubernetes windows attackers clusters peled

利用硬件断点绕过EDR检测机制 Adversaries continue to innovate methods to bypass Endpoint Detection and... 2025-1-24 10:33:5 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com breakpoints hardware etw monitoring attackers

新型勒索软件通过SSH隧道隐蔽入侵VMware ESXi主机 New ransomware strains are quietly infiltrating VMware ESXi hosts by sett... 2025-1-24 04:23:20 | 阅读: 7 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com attackers ssh network malicious ransomware

Microsoft Outlook OLE 双重释放漏洞的零点击远程代码执行概念验证 A new proof-of-concept (PoC) has been released for Microsoft Outlook zero... 2025-1-24 02:32:49 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com microsoft security johansen windows rtf

Palo Alto网络安全防火墙的关键漏洞 A recent cybersecurity report has identified critical vulnerabilities in... 2025-1-23 19:44:1 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security firmware attackers pa

新Mirai变种Murdoc_Botnet大范围攻击AVTECH摄像头和华为路由器 Cybersecurity researchers have uncovered a new large-scale campaign invol... 2025-1-23 14:32:57 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com murdoc avtech malicious cameras censys

针对Chrome扩展的供应链攻击威胁260万用户 A sophisticated supply chain attack targeting Chrome browser extensions h... 2025-1-23 08:13:47 | 阅读: 5 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com chrome malicious sekoia phishing developers