资讯

The Hacker News42 分钟
ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks
ConnectWise rotates ScreenConnect certificates by June 13 after config data concerns, impacting on-prem users to prevent ...
The Hacker News2 小时
Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool
A new ATO campaign using TeamFiltration breached 80,000+ Microsoft Entra ID accounts via password spraying, impacting ...
The Hacker News14 小时
Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks
Black Basta affiliates use Teams phishing, Python scripts, and cURL to attack finance, insurance, and construction sectors.
The Hacker News21 小时
SinoTrack GPS Devices Vulnerable to Remote Vehicle Control via Default Passwords
SinoTrack GPS flaws let attackers remotely control vehicles and track locations, affecting all platform versions. Change ...
The Hacker News20 小时
INTERPOL Dismantles 20,000+ Malicious IPs Linked to 69 Malware Variants in Operation Secure
INTERPOL and 26 countries dismantled 20,000+ malicious IPs tied to info-stealing malware, disrupting global cybercrime ...
The Hacker News18 小时
295 Malicious IPs Launch Coordinated Brute-Force Attacks on Apache Tomcat Manager
To that end, 295 unique IP addresses have been found to be engaged in brute-force attempts against Tomcat Manager on that ...
The Hacker News1 天
Microsoft Patches 67 Vulnerabilities Including WEBDAV Zero-Day Exploited in the Wild
Microsoft patches 67 vulnerabilities, including a WEBDAV zero-day actively exploited by Stealth Falcon. Critical for ...
The Hacker News20 小时
Why DNS Security Is Your First Defense Against Cyber Attacks?
DNS attacks threaten every online interaction; securing DNS with ClouDNS protects businesses and prevents costly disruptions.
The Hacker News1 天
Researchers Uncover 20+ Configuration Risks, Including Five CVEs, in Salesforce Industry Cloud
Salesforce Industry Cloud has 20+ config risks exposing sensitive data; customers must fix most issues to avoid compliance ...
The Hacker News1 天
Rust-based Myth Stealer Malware Spread via Fake Gaming Sites Targets Chrome, Firefox Users
The stealer, initially marketed on Telegram for free under beta in late December 2024, has since transitioned to a malware-as ...
The Hacker News1 天
FIN6 Uses AWS-Hosted Fake Resumes on LinkedIn to Deliver More_eggs Malware
FIN6 uses fake resumes hosted on AWS to deliver More_eggs malware, targeting recruiters to steal credentials and card data ...
The Hacker News2 天
Two Distinct Botnets Exploit Wazuh Server Vulnerability to Launch Mirai-Based Attacks
CVE-2025-24016 is far from the only vulnerability to be abused by Mirai botnet variants. In recent attacks, threat actors ...