相關新聞
Hacker leaks account data of 12 million Zacks Investment users
Zacks Investment Research (Zacks) last year reportedly suffered another data breach that exposed sensitive information related to roughly 12 million accounts. [...]
Bleepingcomputer
2025年02月14日 23 觀看次數

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now
Security researchers at Bishop Fox have published complete exploitation details for the CVE-2024-53704 vulnerability that allows bypassing the authentication mechanism in certain versions of the SonicOS SSLVPN application. [...]
Bleepingcomputer
2025年02月11日 48 觀看次數

Malicious ML Models on Hugging Face Leverage Broken Pickle Format to Evade Detection
Cybersecurity researchers have uncovered two malicious machine learning (ML) models on Hugging Face that leveraged an unusual technique of "broken" pickle files to evade detection. "The pickle files extracted from the mentioned PyTorch archives revealed the malicious Python content at the beginning of the file...
The Hacker News
2025年02月08日 50 觀看次數
Critical Cisco ISE bug can let attackers run commands as root
Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root. [...]
Bleepingcomputer
2025年02月07日 60 觀看次數

7-Zip 0-day was exploited in Russia’s ongoing invasion of Ukraine
Vulnerability stripped MotW tag Windows uses to flag Internet-downloaded files.
Ars Technica
2025年02月06日 57 觀看次數

AMD fixes bug that lets hackers load malicious microcode patches
AMD has released mitigation and firmware updates to address a high-severity vulnerability that can be exploited to load malicious CPU microcode on unpatched devices. [...]
Bleepingcomputer
2025年02月06日 41 觀看次數

Google releases responsible AI report while removing its anti-weapons pledge
The company's annual reflection on safe AI development comes amid shifting guidance around military AI.
ZDnet
2025年02月06日 38 觀看次數

Not Gouda-nough: Google removes AI-generated cheese error from Super Bowl ad
Unlike Google search, AI writing assistant doesn't even cite its sources.
Ars Technica
2025年02月06日 35 觀看次數

Credential Theft Becomes Cybercriminals' Favorite Target
Researchers measured a threefold increase in credential stealing between 2023 and 2024, with more than 11.3 million such thefts last year.
Dark Reading
2025年02月05日 43 觀看次數

Zyxel won’t patch newly exploited flaws in end-of-life routers
Zyxel has issued a security advisory about actively exploited flaws in CPE Series devices, warning that it has no plans to issue fixing patches and urging users to move to actively supported models. [...]
Bleepingcomputer
2025年02月05日 47 觀看次數
