相關新聞
Experts Warn of Widespread SonicWall VPN Compromise Impacting Over 100 Accounts
Cybersecurity company Huntress on Friday warned of "widespread compromise" of SonicWall SSL VPN devices to access multiple customer environments. "Threat actors are authenticating into multiple accounts rapidly across compromised devices," it said. "The speed and scale of these attacks imply that the attackers appear to...
The Hacker News
2025年10月11日 627 觀看次數
7-Zip Vulnerabilities Let Attackers Execute Arbitrary Code Remotely
Two high-severity vulnerabilities have been discovered in the popular open-source file archiver, 7-Zip, which could allow remote attackers to execute arbitrary code. Identified as CVE-2025-11001 and CVE-2025-11002, the flaws affect all versions...
Cyber Security News
2025年10月10日 617 觀看次數
New Android spyware ClayRat imitates WhatsApp, TikTok, YouTube
A new Android spyware called ClayRat is luring potential victims by posing as popular apps and services like WhatsApp, Google Photos, TikTok, and YouTube. [...]
Bleepingcomputer
2025年10月10日 748 觀看次數
Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files
A hacking crew claims to have broken into Red Hat's private GitLab repositories, exfiltrating some 570GB of compressed data, including sensitive documents belonging to customers. […]
The Register
2025年10月05日 810 觀看次數
Hackers exploited Zimbra flaw as zero-day using iCalendar files
Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. [...]
Bleepingcomputer
2025年10月05日 844 觀看次數
VMware Tools and Aria Operations Vulnerabilities Let Attackers Escalate Privileges to Root
VMware has released an advisory to address three high-severity vulnerabilities in VMware Aria Operations, VMware Tools, VMware Cloud Foundation, VMware Telco Cloud Platform, and VMware Telco Cloud Infrastructure. […]
The post VMware Tools and Aria Operations Vulnerabilities Let Attackers Escalate Privileges to Root appeared...
Cyber Security News
2025年10月02日 873 觀看次數
Akira ransomware breaching MFA-protected SonicWall VPN accounts
Ongoing Akira ransomware attacks targeting SonicWall SSL VPN devices continue to evolve, with the threat actors found to be successfully authenticating despite OTP MFA being enabled on accounts. Researchers suspect this may through the use of previously stolen OTP seeds, though the exact method remains unconfirmed at...
Bleepingcomputer
2025年09月29日 494 觀看次數
Unitree 機械人爆「殭屍網絡」漏洞 可被黑客遙距控制、自動感染同類
中國機械人製造商宇樹科技 (Unitree) 旗下多款機械人爆出嚴重安全漏洞,黑客可輕易控制這些機械人,更可怕的是漏...
Cyber Security News
2025年09月29日 295 觀看次數
WhatsApp 0-Click Vulnerability Exploited Using Malicious DNG File
WhatsApp -click remote code execution (RCE) vulnerability affecting Apple’s iOS, macOS, and iPadOS platforms, detailed with a proof of concept demonstration. The attack chain exploits two distinct vulnerabilities, identified as CVE-2025-55177 and CVE-2025-...
Cyber Security News
2025年09月29日 294 觀看次數
Fake Microsoft Teams installers push Oyster malware via malvertising
Hackers have been spotted using SEO poisoning and search engine advertisements to promote fake Microsoft Teams installers that infect Windows devices with the Oyster backdoor, providing initial access to corporate networks. [...]
Bleepingcomputer
2025年09月28日 313 觀看次數
