资讯

The Hacker News2 小时
SocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and Others
SocGholish malware spreads via fake updates, impacting major threat actors through TDS systems and JavaScript loaders.
The Hacker News7 小时
6,500 Axis Servers Expose Remoting Protocol, 4,000 in U.S. Vulnerable to Exploits
Claroty said it found more than 6,500 servers that expose the proprietary Axis.Remoting protocol and its services over the ...
The Hacker News10 小时
The AI-Powered Security Shift: What 2025 Is Teaching Us About Cloud Defense
Now that we are well into 2025, cloud attacks are evolving faster than ever and artificial intelligence (AI) is both a weapon ...
The Hacker News10 小时
SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero-Day
SonicWall confirms recent SSL VPN attacks link to patched CVE-2024-40766 and reused passwords, urging password resets.
The Hacker News10 小时
Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups
"In an Exchange hybrid deployment, an attacker who first gains administrative access to an on-premises Exchange server could ...
The Hacker News13 小时
Webinar: How to Stop Python Supply Chain Attacks—and the Expert Tools You Need
Malicious PyPI packages, repo hijacks, and CVEs in Python containers put devs at risk. Learn how to stay secure.