unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that...
2026-7-3 20:19:31 | 阅读: 0 |
收藏
|
The Hacker News - thehackernews.com
fatfs
runzero
2026
memory
firmware
New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no...
2026-7-3 19:40:1 | 阅读: 0 |
收藏
|
The Hacker News - thehackernews.com
epoll
2026
chung
lands
memory
New Avalon Malware Framework Packs CrownX Ransomware Capabilities
Cybersecurity researchers have discovered a previously undocumented modular malware framework cod...
2026-7-3 18:55:24 | 阅读: 1 |
收藏
|
The Hacker News - thehackernews.com
llm
avalon
ransomware
windows
stage
North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages th...
2026-7-3 16:7:15 | 阅读: 1 |
收藏
|
The Hacker News - thehackernews.com
rollup
polyfill
ssh
payload
cloud
Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks...
2026-7-3 13:36:33 | 阅读: 7 |
收藏
|
The Hacker News - thehackernews.com
stealer
c2
likho
armored
remote
European Parliament Member Investigating Spyware Was Hacked With Pegasus
A new report from the Citizen Lab has revealed that former Member of the European Parliament Stel...
2026-7-3 11:5:43 | 阅读: 5 |
收藏
|
The Hacker News - thehackernews.com
spyware
citizen
committee
kouloglou
pega
PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login Passwords
Cybersecurity researchers have flagged a new macOS information stealer called PamStealer that empl...
2026-7-3 08:3:37 | 阅读: 7 |
收藏
|
The Hacker News - thehackernews.com
maccy
stealer
payload
applescript
victim
Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices
Google has significantly degraded NetNut, one of the biggest networks that turns home devices into...
2026-7-2 18:54:6 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
netnut
network
proxy
popa
synthient
Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials
Threat actors associated with the Anubis ransomware operation have been observed exploiting the Cit...
2026-7-2 18:30:33 | 阅读: 10 |
收藏
|
The Hacker News - thehackernews.com
ransomware
vect
teampcp
anubis
partnership
ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories
This week’s security news is mostly about weak spots.Browsers, bots, sandboxes, AI systems, and emai...
2026-7-2 15:24:18 | 阅读: 7 |
收藏
|
The Hacker News - thehackernews.com
security
phishing
malicious
bots
ransomware
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API
API Security / CyberespionageThe threat actor known as ToddyCat has been attributed to a new malwa...
2026-7-2 13:4:13 | 阅读: 10 |
收藏
|
The Hacker News - thehackernews.com
umbrij
microsoft
chrome
toddycat
remote
Identity Lifecycle Management Wasn't Built for AI Agents
Identity lifecycle management was architected around a person with an employment record, a manager,...
2026-7-2 11:30:0 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
lifecycle
agents
iga
governance
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
Security firm Sysdig says it has found what it believes is the first ransomware attack run from sta...
2026-7-2 09:13:13 | 阅读: 16 |
收藏
|
The Hacker News - thehackernews.com
sysdig
database
langflow
nacos
jadepuffer
FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
Network Security / RansomwareThe recently discovered financially-motivated FortiBleed campaign has...
2026-7-2 08:0:49 | 阅读: 9 |
收藏
|
The Hacker News - thehackernews.com
ransomware
fortibleed
fortigate
socradar
lynx
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt b...
2026-7-2 07:24:23 | 阅读: 19 |
收藏
|
The Hacker News - thehackernews.com
sekoia
skytext
2026
pocs
trojan
SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
Vulnerability / Threat IntelligenceThe U.S. Cybersecurity and Infrastructure Security Agency (CISA...
2026-7-2 05:46:45 | 阅读: 30 |
收藏
|
The Hacker News - thehackernews.com
microsoft
ransomware
network
2026
security
Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters
Kubernetes / Server SecurityArgo CD, a widely used tool for deploying software to Kubernetes, has...
2026-7-1 19:40:6 | 阅读: 17 |
收藏
|
The Hacker News - thehackernews.com
argo
network
kubernetes
synacktiv
helm
19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges
A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finl...
2026-7-1 19:28:7 | 阅读: 13 |
收藏
|
The Hacker News - thehackernews.com
scattered
stokes
court
spider
desk
SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT
Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and ex...
2026-7-1 17:53:6 | 阅读: 16 |
收藏
|
The Hacker News - thehackernews.com
powershell
microsoft
attackers
asyncrat
VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer
Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses so...
2026-7-1 17:18:50 | 阅读: 14 |
收藏
|
The Hacker News - thehackernews.com
loader
powershell
payload
stage
securonix
Previous
-417
-416
-415
-414
-413
-412
-411
-410
Next