unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware
Large language models keep inventing web addresses that do not exist. Attackers have started buyi...
2026-7-1 07:20:51 | 阅读: 7 |
收藏
|
The Hacker News - thehackernews.com
attacker
phantom
malicious
phishing
invent
Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export Controls
Anthropic is putting Claude Fable 5 back online worldwide. On June 30, the U.S. Commerce Department...
2026-7-1 06:46:17 | 阅读: 4 |
收藏
|
The Hacker News - thehackernews.com
anthropic
claude
jailbreak
fable
mythos
Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts
Password Security / Cloud SecurityCybersecurity researchers have warned of a "massive, ongoing, au...
2026-7-1 05:46:3 | 阅读: 5 |
收藏
|
The Hacker News - thehackernews.com
ropc
huntress
logins
microsoft
enforcing
Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery
ClickFix, the trick that fools people into running malware by hand, has quietly grown a back office...
2026-7-1 05:32:12 | 阅读: 5 |
收藏
|
The Hacker News - thehackernews.com
clickfix
windows
pals
clipboard
powershell
Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
Vulnerability / Enterprise SecurityCitrix on Tuesday released security updates to address multiple...
2026-7-1 03:54:22 | 阅读: 4 |
收藏
|
The Hacker News - thehackernews.com
netscaler
2026
adc
memory
citrix
Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data
Artificial Intelligence / Supply Chain SecurityNew Microsoft research shows how attackers can hija...
2026-6-30 17:46:7 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
microsoft
mcp
poisoned
agents
security
RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
A new two-stage malware family called RustDuck is hijacking home routers, IP cameras, Android boxes...
2026-6-30 17:45:25 | 阅读: 8 |
收藏
|
The Hacker News - thehackernews.com
rustduck
routers
xlab
remote
newer
Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
Threat actors are continuing to exploit a critical Langflow vulnerability as part of fresh attacks...
2026-6-30 15:47:20 | 阅读: 6 |
收藏
|
The Hacker News - thehackernews.com
miner
langflow
ssh
rival
python
Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses
Cybersecurity researchers have flagged an active browser extension campaign that is designed to ste...
2026-6-30 15:40:18 | 阅读: 11 |
收藏
|
The Hacker News - thehackernews.com
clipboard
malicious
attacker
chrome
mcafee
GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks
AI Security / Software Supply ChainThe safety check that is supposed to stop an AI coding agent fr...
2026-6-30 14:26:15 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
adversa
agents
claude
destructive
roughly
282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
API Security / Mobile SecurityResearchers tested 444 AI chatbot apps for iPhone and found that 282...
2026-6-30 13:49:34 | 阅读: 2 |
收藏
|
The Hacker News - thehackernews.com
282
developers
revoke
openai
security
What the Numbers Say About FIFA 2026 Cyber Risk
The FIFA World Cup 2026 opened on June 11. By that date, according to Check Point Research, the fr...
2026-6-30 11:30:0 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
2026
fifa
tournament
brands
cup
Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security...
2026-6-30 11:18:47 | 阅读: 13 |
收藏
|
The Hacker News - thehackernews.com
stealer
taskweaver
cloud
oidc
AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks
Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features t...
2026-6-30 09:27:58 | 阅读: 6 |
收藏
|
The Hacker News - thehackernews.com
airdrop
attacker
crash
windows
network
New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials
Agent Security / Browser SecurityConvince an AI browser that it is playing a game, and it can hand...
2026-6-30 08:37:19 | 阅读: 10 |
收藏
|
The Hacker News - thehackernews.com
layerx
security
puzzle
repository
perplexity
Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth
Vulnerability / API SecurityA critical vulnerability in Progress Kemp LoadMaster can let an unauth...
2026-6-30 07:38:7 | 阅读: 14 |
收藏
|
The Hacker News - thehackernews.com
loadmaster
attacker
2026
memory
sanitized
Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs
Artificial Intelligence / VulnerabilityApple on Monday released security updates for iOS, macOS, a...
2026-6-30 07:15:7 | 阅读: 10 |
收藏
|
The Hacker News - thehackernews.com
2026
memory
security
addressed
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
Vulnerability / Enterprise SoftwareA critical security flaw impacting Oracle E-Business Suite has...
2026-6-30 05:4:6 | 阅读: 12 |
收藏
|
The Hacker News - thehackernews.com
security
2026
defused
exploited
Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input
Browser Security / Web SecurityMicrosoft has found a malicious Chrome extension that posed as the...
2026-6-29 18:40:9 | 阅读: 11 |
收藏
|
The Hacker News - thehackernews.com
microsoft
perplexity
attacker
chrome
branding
WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private
WhatsApp on Monday officially announced the start of global reservations of usernames with an aim t...
2026-6-29 16:9:21 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
username
rolling
inbound
Previous
-365
-364
-363
-362
-361
-360
-359
-358
Next