黑客利用恶意npm包通过Gmail基础设施窃取Solana私钥 Hackers have deployed malicious npm packages designed to exfiltrate Solan... 2025-1-20 08:36:5 | 阅读: 6 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com malicious solana mutex security github

QNAP QTS/QuTS Hero 操作系统中的关键远程代码执行漏洞（CVE-2024-53691） A critical remote code execution (RCE) vulnerability designated as CVE-20... 2025-1-20 08:2:57 | 阅读: 7 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com attacker qnap malicious remote privileges

HPE Aruba网络设备中发现多个关键漏洞 Multiple critical vulnerabilities have been discovered in HPE Aruba Netwo... 2025-1-20 07:36:2 | 阅读: 10 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com aos hpe aruba security

Windows CLFS驱动的零日漏洞（CVE-2024-49138） A zero-day vulnerability in the Windows Common Log File System (CLFS) dri... 2025-1-20 06:28:17 | 阅读: 11 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com security 49138 windows exploited clfs

Bitpixie漏洞：攻击者如何绕过BitLocker安全启动 Researchers demonstrated how attackers can bypass its protections without... 2025-1-20 04:53:29 | 阅读: 2 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com windows bitlocker bitpixie attackers encryption

Microsoft配置管理器严重漏洞CVE-2024-43468：远程代码执行风险 A critical vulnerability, CVE-2024-43468, has been identified in Microsof... 2025-1-20 03:47:5 | 阅读: 22 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com configmgr attackers injection database 43468

量子Diffie-Hellman密钥交换协议的设计与研究 Georgios M. Nikolopoulos, a researcher at the Institute of Electronic Str... 2025-1-19 17:56:0 | 阅读: 0 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com exchange qkd security classical

Palo Alto Networks Expedition工具OS命令注入漏洞 A recently disclosed vulnerability in Palo Alto Networks’ Expedition tool... 2025-1-18 08:57:38 | 阅读: 3 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com expedition malicious attackers palo alto

FlowerStorm: 模拟合法凭证请求行为的云/软件即服务平台钓鱼工具包 FlowerStorm is a PaaS kit that mimics the legitimate credential-request b... 2025-1-18 05:25:0 | 阅读: 1 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com phishing flowerstorm rockstar2fa php decoy

Ivanti Connect Secure等产品的远程代码执行漏洞PoC披露 A serious security flaw has been identified in Ivanti Connect Secure, des... 2025-1-17 08:13:52 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com ivanti attackers 0282 remote security

微软Active Directory组策略中的重大漏洞：NTLMv1身份验证绕过 Silverfort’s cybersecurity research team has uncovered a significant flaw... 2025-1-17 05:33:45 | 阅读: 7 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com ntlmv1 security microsoft attackers

Pumakit 高级 Linux 根据套件威胁分析 In recent months, a stealthy and highly sophisticated Linux rootkit named... 2025-1-17 04:18:52 | 阅读: 4 | 收藏 | 玄武实验室每日安全 - cybersecuritynews.com pumakit security malicious monitoring processes

Threat Actor 888 Allegedly Claims Leak of SAP Employees Data A Twitter account known as DarkWebInformer has claimed that a notorious h... 2024-9-24 18:49:19 | 阅读: 7 | 收藏 | Over Security - Cybersecurity news aggregator - cybersecuritynews.com claimed software claims alleged