北韩网络攻击新趋势：精心策划的恶意软件攻击 A new wave of North Korean cyberattacks, employing a sophisticated and co... 2025-1-22 04:54:3 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com software malicious analysis beavertail

新型勒索软件Contacto：高级逃避技术与Windows控制台执行 A new ransomware strain dubbed “Contacto” has emerged, showcasing advance... 2025-1-21 11:53:39 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com encryption ransomware contacto windows

Windows BitLocker中的关键漏洞CVE-2025-21210：针对AES-XTS加密模式的新型随机化攻击 A critical vulnerability in Windows BitLocker, identified as CVE-2025-212... 2025-1-21 11:13:40 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com ciphertext xts encryption bitlocker security

TP-Link TL-WR940N路由器缓冲区溢出漏洞分析 A critical buffer overflow vulnerability, identified as CVE-2024-54887, h... 2025-1-21 07:34:26 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security overflow firmware firmadyne dnsserver1

Gootloader恶意软件家族利用黑帽SEO技术感染用户 The Gootloader malware family has been employing sophisticated blackhat S... 2025-1-21 07:18:53 | 阅读: 18 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com gootloader wordpress malicious stage blackhat

MintsLoader：利用DGA和反虚拟机技术的高级恶意软件 The cybersecurity landscape has witnessed a significant evolution with th... 2025-1-20 15:22:15 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com mintsloader security dga evade analysis

ChatGPT API漏洞导致DDoS攻击 OpenAI’s ChatGPT API has been found to have a significant crawler vulnera... 2025-1-20 13:39:56 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com openai chatgpt microsoft crawler hyperlinks

针对德国组织的复杂网络攻击：利用LNK文件部署Sliver植入程序 A sophisticated cyberattack campaign targeting German organizations has b... 2025-1-20 12:25:56 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com malicious sliver shellcode phishing reveals

新识别的物联网僵尸网络全球发动大规模DDoS攻击 A newly identified Internet of Things (IoT) botnet has been orchestrating... 2025-1-20 11:47:43 | 阅读: 10 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com floods security routers payload

针对印度南亚地区的高级Android恶意软件活动 A sophisticated Android malware campaign targeting users in South Asia, p... 2025-1-20 09:40:16 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com cyfirma malicious advised tanzeem

黑客利用恶意npm包通过Gmail基础设施窃取Solana私钥 Hackers have deployed malicious npm packages designed to exfiltrate Solan... 2025-1-20 08:36:5 | 阅读: 6 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com malicious solana mutex security github

QNAP QTS/QuTS Hero 操作系统中的关键远程代码执行漏洞（CVE-2024-53691） A critical remote code execution (RCE) vulnerability designated as CVE-20... 2025-1-20 08:2:57 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com attacker qnap malicious remote privileges

HPE Aruba网络设备中发现多个关键漏洞 Multiple critical vulnerabilities have been discovered in HPE Aruba Netwo... 2025-1-20 07:36:2 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com aos hpe aruba security

Windows CLFS驱动的零日漏洞（CVE-2024-49138） A zero-day vulnerability in the Windows Common Log File System (CLFS) dri... 2025-1-20 06:28:17 | 阅读: 5 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security 49138 windows exploited clfs

Bitpixie漏洞：攻击者如何绕过BitLocker安全启动 Researchers demonstrated how attackers can bypass its protections without... 2025-1-20 04:53:29 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows bitlocker bitpixie attackers encryption

Microsoft配置管理器严重漏洞CVE-2024-43468：远程代码执行风险 A critical vulnerability, CVE-2024-43468, has been identified in Microsof... 2025-1-20 03:47:5 | 阅读: 22 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com configmgr attackers injection database 43468

量子Diffie-Hellman密钥交换协议的设计与研究 Georgios M. Nikolopoulos, a researcher at the Institute of Electronic Str... 2025-1-19 17:56:0 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com exchange qkd security classical

Palo Alto Networks Expedition工具OS命令注入漏洞 A recently disclosed vulnerability in Palo Alto Networks’ Expedition tool... 2025-1-18 08:57:38 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com expedition malicious attackers palo alto

FlowerStorm: 模拟合法凭证请求行为的云/软件即服务平台钓鱼工具包 FlowerStorm is a PaaS kit that mimics the legitimate credential-request b... 2025-1-18 05:25:0 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com phishing flowerstorm rockstar2fa php decoy

Ivanti Connect Secure等产品的远程代码执行漏洞PoC披露 A serious security flaw has been identified in Ivanti Connect Secure, des... 2025-1-17 08:13:52 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com ivanti attackers 0282 remote security