-
# 每日安全资讯(2023-08-02)
- HackerOne Hacker Activity
- [ ] [XMLRPC does not limit deserializable classes.](https://hackerone.com/reports/1189419)
- [ ] [Steam Deck Single Click Root Remote Code Execu…
-
# 每日安全资讯(2023-06-15)
- HackerOne Hacker Activity
- [ ] [internal dev tokens disclosure](https://hackerone.com/reports/1940443)
- 先知安全技术社区
- [ ] [dedeCMS后台RCE](https://xz.aliyun.com/t/12609)
- […
-
Mallox ransomware activities in 2023 have witnessed a 174% increase when compared to the previous year, new findings from Palo Alto Networks Unit 42 reveal.
"Mallox ransomware, like many other ranso…
-
Cybersecurity researchers and threat actors are targeted by a fake proof of concept (PoC) CVE-2023-35829 exploit that installs a Linux password-stealing malware. \[...\]
-
From CISA Release Date: July 06, 2023 Alert Code: AA23-187A SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Multi-State Informatio…
-
Threat actors are actively exploiting a recently disclosed critical security flaw in the WooCommerce Payments WordPress plugin as part of a massive targeted campaign.
The flaw, tracked as CVE-2023-2…
-
Threat actors are taking advantage of Android's WebAPK technology to trick unsuspecting users into installing malicious web apps on Android phones that are designed to capture sensitive personal inf…
-
The top-level domain for the United States — **.US** — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new r…
-
The US government is warning that threat actors breached the network of a U.S. organization in the critical infrastructure sector after exploiting a zero-day RCE vulnerability currently identified a…
-
# 每日安全资讯(2023-06-13)
- SecWiki News
- [ ] [SecWiki News 2023-06-12 Review](http://www.sec-wiki.com/?2023-06-12)
- 安全脉搏
- [ ] [PyPI恶意存储库fshec2攻击分析](https://www.secpulse.com/archives/201724.html)
…