资讯

The Hacker News12 小时
⚡ Weekly Recap: Chrome 0-Day, Ivanti Exploits, MacOS Stealers, Crypto Heists and More
A China-linked intrusion set known as Houken targeted a number of entities spanning governmental, telecommunications, media, ...
The Hacker News12 小时
SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools
According to data compiled by Kaspersky, small- and medium-sized businesses (SMBs) are being increasingly targeted by cyber ...
The Hacker News18 小时
Manufacturing Security: Why Default Passwords Must Go
Default passwords like "1111" put critical infrastructure at risk. CISA urges manufacturers to fix this vulnerability.
The Hacker News1 天
TAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors
The activity has been attributed by Recorded Future's Insikt Group to a threat actor tracked as TAG-140, which it said ...
The Hacker News1 天
Automation ≠ Autopilot: Rethinking AI in Corporate Security and Compliance
AI accelerates security but needs human oversight to prevent risks like misconfigurations and compliance errors. Ensure AI ...
The Hacker News3 天
Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major ...
Two critical vulnerabilities in Sudo command-line tool allow privilege escalation for local attackers on Linux systems ...
The Hacker News1 天
Alert: Exposed JDWP Interfaces Lead to Crypto Mining, Hpingbot Targets SSH for DDoS
Threat actors leverage exposed JDWP interfaces for code execution and cryptocurrency mining, with global scanning activity ...
The Hacker News2 天
Taiwan NSB Alerts Public on Data Risks from TikTok, Weibo, and RedNote Over China Ties
Taiwan NSB warns of security risks from Chinese apps, citing excessive data collection and sharing with China.
The Hacker News4 天
The Hidden Weaknesses in AI SOC Tools that No One Talks About
Adaptive AI platforms for SOCs offer real-time alert triage, faster response times, and full-spectrum security coverage.
The Hacker News4 天
Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms
Chinese hackers exploited Ivanti CSA zero-days, targeting French government, media, and telecom sectors in September 2024.
The Hacker News6 天
TA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware Campaigns
Proofpoint tracks overlapping tactics of TA829 and UNK_GreenSec, deploying TransferLoader and RomCom RAT globally.
The Hacker News4 天
North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign
North Korean cyber group targets Web3 businesses with Nim-based malware, exploiting AppleScript and Telegram for persistent ...