Palo Alto VPN bug graduates from advisory to active exploitation - 惯性聚合

推荐订阅源

Google Developers Blog

About on SuperTechFans

The Exploit Database - CXSecurity.com

Threat Research - Cisco Blogs

Google DeepMind News

大猫的无限游戏

The Hacker News

Proofpoint News Feed

Full Disclosure

www.infosecurity-magazine.com

Google DeepMind News

Security Affairs

Cyber Attacks, Cyber Crime and Cyber Security

Visual Studio Blog

The Cloudflare Blog

Stack Overflow Blog

Lohrmann on Cybersecurity

Microsoft Security Blog

Y Combinator Blog

Palo Alto Networks Blog

SegmentFault 最新的问题

宝玉的分享

Hugging Face - Blog

博客园 - 叶小钗

The GitHub Blog

aimingoo的专栏

Netflix TechBlog - Medium

cs.AI updates on arXiv.org

Simon Willison's Weblog

Attack and Defense Labs

Hacker News - Newest: "LLM"

酷壳 – CoolShell

Application and Cybersecurity Blog

博客园 - 聂微东

Know Your Adversary

cs.CL updates on arXiv.org

Cybersecurity and Infrastructure Security Agency CISA

Security Archives - TechRepublic

Privacy & Cybersecurity Law Blog

DataBreaches.Net

Proofpoint News Feed

The Register - Security

Chinese agents caught rebuilding botnets and stirring the pot on AI datacenter debate Angry bug hunter with Microsoft beef drops new Windows 0-day GitHub pulls pin on npm's auto-run scripts Ivanti tells Sentry customers to patch now as critical bugs hit 10.0 and 9.9 AI is making Patch Tuesday (kinda) fun again Miasma worms its way onto GitHub as attack kit goes open source Apple’s iOS 27 goes all agentic on compromised passwords, promises to change them with one tap Signal says UK plan to scan devices for nude images 'endangers us all' Chrome's zero-day Whac-A-Mole continues with fifth exploited bug of the year France probes compromise of gov messaging platform after account hijack Qilin NHS breach tally grows as Essex trust confirms stolen records Norks blast 250+ fake job offers to developers over 6 weeks to try and snarf creds and crypto Ransomware crims got a month-long head start on Check Point VPN 0-day that now has a fix Ransomware sends Illinois high school on an early summer vacation GitHub nukes 70+ Microsoft repos, breaks CI/CD pipelines, following suspected worm infections NSO Group back in Meta's crosshairs after alleged WhatsApp targeting Oxford Uni student data pwned yet again - this time via career platform breach If you don't fall for these extortionists' calls, they'll show up with USB sticks Yet another Cisco SD-WAN 0-day under attack, and no patch in sight World Food Programme breach exposes data of 600k vulnerable Gazan families Council in UK's City of York outs hundreds of disabled residents with a single email blunder Pink is the latest goon squad to use fake helpdesk calls to steal creds OpenAI's agent chained decade-old DoS attacks to crash web servers in seconds Five Eyes: Watch out for odd LinkedIn connection requests, China's back on the hunt for state secrets Duo who sold car crash victims' data must repay £118k Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine All the passwords were stored in Active Directory description fields Commvault says it's time to rethink resiliency as AI crooks leave victims in a 'dark, dead' state Bend the beam like Beckham to defeat anti-jamming tech Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosures Anthropic ups Glasswing partner count 4x, UK banks snubbed 'Dumbass' criminal breaks the 'first rule of ransomware club' Cisco praises AI bug hunt, won't reveal flaw tally Russian spy agency says foreign spies turned officials' smartphones into surveillance devices Microsoft reaches for olive branch after public dustup with 0-day researcher Claude celebrates Anthropic's stock market float with blockbuster ... outage Northern Ireland cops issue PSA after official phone number spoofed by scammers Shai-Hulud malware infects Red Hat npm packages downloaded 80K times weekly Election interlopers register 5K+ domains, hope to catch some voting phish GTA cheat service Atlas Menu hacked as attacker alleges screenshot spying Password manager Dashlane suspends customer accounts amid brute-force attacks Putin sends submarines to survey Britain's subsea cables. UK deploys Royal Navy, mobilizes parliamentary draftsmen Lone attacker published 14 malicious npm packages mimicking popular OpenSearch, Elasticsearch libraries ICE to keep an eye on your eyes under $25M biometric scanner deal No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out 23andMe inherits lawsuit over 'disturbing' DNA data breach Dutch cops wrest 17M devices from mystery botnet's clutches ChatGPT blindly trusts browser content, turning the page into a payload Russia-linked threat group put ChatGPT to work from lure to payload ShinyHunters adds Charter to trophy shelf after 4.9M customer records leak Troops’ phones gave away location data to foreign adversaries Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops Snowflake buys Natoma to help freeze out rogue agents Snowflake buys Natoma to help freeze out rogue agents Microsoft tests the 15-character limit of Windows Server admins' patience Carnival: ShinyHunters cruised off with 6M customer records Company CEO flooded file share with smut, called for help after he deleted it CrowdStrike, Google shatter Glassworm botnet Bosses blinded by confidence about shadow AI use by workers Extortion crews are visiting law firms pretending to be tech support, FBI warns India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat Are we human? MyPillow must decide whether to be firm or soft as ransomware crims demand pay Experts pour cold borscht on Farage's Russian hack claim Anthropic to release Mythos-class models to the public AI eyes scanning for bugs create a worrisome Linux security trend Jailbroken Gemini helped Russian-speaking fraudster target MAGA crypto users Megalodon chums the waters in 5.5K+ GitHub repo poisonings Techie claims Trump Mobile website was leaking thousands of people's data Cisco used AI to write security incident reports, with mixed results Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 'slush fund' Threat hunters find Google API keys still usable 23 minutes after deletion HackerOne takes an axe to its bug bounty rewards Attackers spill plaintext passwords of 46k Myspace93 users after 2021 breach Cisco serves up yet another perfect 10 bug with Secure Workload admin flaw Microsoft open-sources agentic AI safety tools Zombie user account let hackers control the city’s water Even Claude agrees: hole in its sandbox was real and dangerous GitHub says internal repos exfiltrated after poisoned VS Code extension attack London's police asked Big Tech for comms data over 700,000 times last year Are we human? America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames America's top cyber-defense agency left a GitHub repo open with passwords, keys, tokens – and incredibly obvious filenames Clear your calendar, Drupal user: You have a critically urgent patch to install Do fear the Reaper - stealer swipes macOS users' passwords, wallets, then backdoors them Shai-Hulud copycat worm infects yet another npm package Linux kernel flaw opens root-only files to unprivileged users TanStack weighs invitation-only pull requests after supply chain attack NGINX Rift attackers waste no time targeting exposed servers Poland directs officials to ditch Signal in favor of 'secure' state-developed alternative MPs want social media treated more like unsafe toys than harmless apps Security pros doubt Canvas attackers really deleted stolen student data To gain root access, intruder just had to ask AWS patched Quick auth bypass, says customers weren't using control Disgruntled researcher releases two more Microsoft zero-days Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub Foxconn confirms cyberattack after Nitrogen claims Apple, Nvidia data theft US bank reports itself after slinging customer data at 'unauthorized AI app' Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator Best Western Hotels confirms web app data breach

Palo Alto VPN bug graduates from advisory to active exploitation

Carly Page Carly Page · 2026-06-01 · via The Register - Security

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。