相關新聞
The number of mis-issued 1.1.1.1 certificates grows. Here’s the latest.
Everything to know about about the mishap that threatened to expose millions of users' queries.
Ars Technica
2025年09月05日 673 觀看次數
Android drops mega patch bomb - 120 fixes, two already exploited
September bundle the largest this year, and possibly the most serious
Patch Tuesday is next week, but Android is ahead of the game, dropping its biggest patch bundle this year while attackers actively exploit two of the now-fixed flaws.…
The Register
2025年09月04日 738 觀看次數
MediaTek Security Update – Patch for Multiple Vulnerabilities Across Chipsets
MediaTek today published a critical security bulletin addressing several vulnerabilities across its latest modem chipsets, urging device OEMs to deploy updates immediately. The bulletin, issued two months after confidential OEM notification, confirms that no known in-the-wild exploits have been detected to date...
Cyber Security News
2025年09月01日 669 觀看次數
Anthropic AI Used to Automate Data Extortion Campaign
The company said the threat actor abused its Claude Code service to "an unprecedented degree," automating reconnaissance, intrusions, and credential harvesting.
Dark Reading
2025年08月28日 348 觀看次數
New AI attack hides data-theft prompts in downscaled images
Researchers have developed a novel attack that steals user data by injecting malicious prompts in images processed by AI systems before delivering them to a large language model. [...]
Bleepingcomputer
2025年08月26日 385 觀看次數
Hundreds of Thousands of Users’ Grok Chats Exposed in Google Search Results
A significant data exposure has revealed hundreds of thousands of private user conversations with Elon Musk’s AI chatbot, Grok, in public search engine results. The incident, stemming from the platform’s “share” feature, has made sensitive user data freely accessible...
Cyber Security News
2025年08月24日 447 觀看次數
'Impersonation as a service' the next big thing in cybercrime
Underground forums now recruiting English-speaking social engineers
English speakers adept at social engineering are a hot commodity in the cybercrime job market.…
The Register
2025年08月22日 350 觀看次數
AI Agents Access Everything, Fall to Zero-Click Exploit
Zenity CTO Michael Bargury joins the Black Hat USA 2025 News Desk to discuss research on a dangerous exploit, how generative AI technology has "grown arms and legs" —and what that means for cyber risk.
Dark Reading
2025年08月20日 339 觀看次數
Major password managers can leak logins in clickjacking attacks
Six major password managers with tens of millions of users are currently vulnerable to unpatched clickjacking flaws that could allow attackers to steal account credentials, 2FA codes, and credit card details. [...]
Bleepingcomputer
2025年08月20日 265 觀看次數
ERMAC Android malware source code leak exposes banking trojan infrastructure
The source code for version 3 of the ERMAC Android banking trojan has been leaked online, exposing the internals of the malware-as-a-service platform and the operator's infrastructure. [...]
Bleepingcomputer
2025年08月19日 272 觀看次數
