Nation-State hackers exploit Libraesva Email Gateway flaw 国家支持的黑客利用Libraesva邮件安全网关中的CVE-2025-59689漏洞，通过恶意附件实施命令注入攻击，影响版本4.5至5.5。该漏洞允许攻击者以非特权用户身份执行任意命令。... 2025-9-24 14:29:37 | 阅读: 6 | 收藏 | Security Affairs - securityaffairs.com libraesva privileged nation attacker

SolarWinds fixed a critical RCE flaw in its Web Help Desk software SolarWinds修复了Web Help Desk软件中的一个关键远程代码执行（RCE）漏洞（CVE-2025-26399），该漏洞允许攻击者在未认证情况下通过AjaxProxy反序列化执行任意命令。建议用户尽快安装热修复以缓解风险。... 2025-9-24 11:50:45 | 阅读: 10 | 收藏 | Security Affairs - securityaffairs.com desk software bypass 28988 pierluigi

How threat actors breached a U.S. federal civilian agency by exploiting a GeoServer flaw 美国CISA披露威胁分子利用GeoServer漏洞CVE-2024-36401入侵联邦机构网络,导致远程代码执行。攻击者横向移动并部署恶意软件,利用公开工具和LOTL技术逃避检测。CISA强调及时修补漏洞和加强安全措施的重要性。... 2025-9-24 10:14:48 | 阅读: 15 | 收藏 | Security Affairs - securityaffairs.com geoserver network laterally exploited 36401

Cloudflare mitigates largest-ever DDoS attack at 22.2 Tbps Cloudflare成功抵御了有史以来最大的DDoS攻击，峰值达到22.2 Tbps和10.6 Bpps。这是继6月7.3 Tbps攻击后再次刷新纪录。... 2025-9-24 05:18:20 | 阅读: 44 | 收藏 | Security Affairs - securityaffairs.com tbps peaking bpps hd

U.S. CISA adds Google Chromium flaw to its Known Exploited Vulnerabilities catalog read file error: read notes: is a directory... 2025-9-23 18:50:42 | 阅读: 7 | 收藏 | Security Affairs - securityaffairs.com exploited catalog 10585 security

US Secret Service dismantled covert communications network near the U.N. in New York 美国特勤局在纽约联合国附近查获一秘密通信网络，内含10万张SIM卡及300台服务器。该网络可发送3千万条短信/分钟，并能干扰手机塔及进行大规模监视。同时查获非法武器、毒品等物品。专家怀疑其与国家行为者或犯罪组织有关。... 2025-9-23 14:20:34 | 阅读: 9 | 收藏 | Security Affairs - securityaffairs.com network covert nation york security

A suspected Scattered Spider member suspect detained for casino network attacks 拉斯维加斯警方逮捕一名涉嫌Scattered Spider成员，并指控其参与赌场网络攻击。英国警方也逮捕两名该组织成员，涉及伦敦交通局的网络攻击。... 2025-9-23 11:34:22 | 阅读: 8 | 收藏 | Security Affairs - securityaffairs.com spider scattered tfl vegas london

$150K awarded for L1TF Reloaded exploit that bypasses cloud mitigations 研究人员发现“L1TF Reloaded”漏洞，结合L1TF和半-Spectre技术绕过云防护，在Google Cloud上窃取虚拟机内存中的敏感数据如Nginx TLS密钥，并因此获得$151,515奖励。... 2025-9-23 10:5:43 | 阅读: 11 | 收藏 | Security Affairs - securityaffairs.com l1tf cloud victim memory spectre

Canada’s RCMP closes TradeOgre, seizes $40M in country’s largest crypto bust 加拿大皇家骑警关闭加密交易所TradeOgre，并查获价值4000万美元的加密资产。这是加拿大首次关闭加密交易所，并创下最大规模资产没收记录。TradeOgre以交易隐私币和低市值币著称，未实施KYC政策。调查显示其未注册并违反反洗钱规定。... 2025-9-23 06:59:38 | 阅读: 5 | 收藏 | Security Affairs - securityaffairs.com tradeogre exchange canadian rcmp 40m

Stellantis probes data breach linked to third-party provider Stellantis正在调查一起数据泄露事件，未经授权的访问导致第三方供应商平台可能暴露客户联系信息。受影响平台不存储财务或敏感个人信息。公司已启动应急响应措施，并通知相关部门和受影响客户。... 2025-9-22 17:48:13 | 阅读: 6 | 收藏 | Security Affairs - securityaffairs.com stellantis security paganini pierluigi

FBI alerts public to spoofed IC3 site used in fraud schemes read file error: read notes: is a directory... 2025-9-22 13:22:40 | 阅读: 6 | 收藏 | Security Affairs - securityaffairs.com ic3 crime complaint spoofing spoofed

EU agency ENISA says ransomware attack behind airport disruptions 欧盟网络安全机构ENISA证实，针对Collins Aerospace的勒索软件攻击导致欧洲多个机场运营中断。此次事件影响了希思罗、布鲁塞尔和柏林机场，造成航班延误和取消。Muse软件受损，迫使机场采用手动操作。... 2025-9-22 09:58:30 | 阅读: 13 | 收藏 | Security Affairs - securityaffairs.com airports collins airport enisa disruptions

Researchers expose MalTerminal, an LLM-enabled malware pioneer SentinelOne发现MalTerminal是首款内置LLM功能的恶意软件，其可在运行时生成恶意代码以提高隐蔽性。研究人员通过分析API密钥和提示结构发现该恶意软件，并揭示了其他利用LLM的攻击工具。此发现为防御者提供了应对新兴威胁的机会。... 2025-9-22 08:59:55 | 阅读: 9 | 收藏 | Security Affairs - securityaffairs.com llm malterminal prompts malicious llms

Beware: GitHub repos distributing Atomic Infostealer on macOS read file error: read notes: is a directory... 2025-9-22 06:49:42 | 阅读: 12 | 收藏 | Security Affairs - securityaffairs.com github lastpass infostealer repos fraudulent

ESET uncovers Gamaredon–Turla collaboration in Ukraine cyberattacks ESET发现俄罗斯关联的网络攻击组织Gamaredon和Turla于2025年2月至4月期间合作攻击乌克兰的关键系统。Gamaredon利用自身工具重启系统后，Turla部署恶意软件进行进一步攻击。这种罕见的合作表明两国网络间谍在紧张局势下协同行动的能力。... 2025-9-21 17:28:42 | 阅读: 6 | 收藏 | Security Affairs - securityaffairs.com gamaredon turla ukraine kazuar eset

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 63 read file error: read notes: is a directory... 2025-9-21 15:54:30 | 阅读: 15 | 收藏 | Security Affairs - securityaffairs.com remembering repeat visits

Security Affairs newsletter Round 542 by Pierluigi Paganini – INTERNATIONAL EDITION 本网站使用cookies以提升用户体验并记住您的偏好和访问记录。点击“接受全部”即表示您同意使用所有cookies；您也可通过“Cookie设置”进行个性化管理。... 2025-9-21 15:44:19 | 阅读: 10 | 收藏 | Security Affairs - securityaffairs.com repeat visits remembering

A cyberattack on Collins Aerospace disrupted operations at major European airports 网络攻击导致Collins Aerospace系统故障，影响欧洲多个主要机场运营，航班延误取消严重。专家指出依赖单一供应商使基础设施脆弱，需加强安全措施应对风险。... 2025-9-20 16:43:26 | 阅读: 8 | 收藏 | Security Affairs - securityaffairs.com collins aerospace airports heathrow berlin

CISA warns of malware deployed through Ivanti EPMM flaws CISA警告称，通过Ivanti EPMM漏洞传播的恶意软件可能导致服务器被入侵和数据窃取。... 2025-9-20 14:6:5 | 阅读: 15 | 收藏 | Security Affairs - securityaffairs.com epmm ivanti attackers malicious

Fortra addressed a maximum severity flaw in GoAnywhere MFT software read file error: read notes: is a directory... 2025-9-19 17:32:39 | 阅读: 9 | 收藏 | Security Affairs - securityaffairs.com fortra goanywhere mft 0204 addressed