Security News
全球顶尖安全社区实时聚合,追踪最新漏洞、攻防技术与行业动态。
来源:先知社区 · Seebug · The Hacker News 等权威平台 | 每日自动更新
渗透测试实战对决:AI 代理与网络安全专业人员性能深度对比
作者:Justin W. Lin, Eliot Krzysztof Jones等 译者:知道创宇404实验室翻译组 原文链接:https://arxiv.org/html/2512.09882 摘要 我们首次在真实企业环境中对人工智能代理与人类网络安全专业人员进行了全面评估。我们在一个包含12个子网 ...
ObliInjection:针对多源数据 LLM 智能体的顺序无关提示注入攻击
作者:Reachal Wang, Yuqi Jia, Neil Zhenqiang Gong 译者:知道创宇404实验室翻译组 原文链接:https://arxiv.org/html/2512.09321v2 摘要 提示注入攻击旨在污染大型语言模型(LLM)的输入数据,误导其执行攻击者指定的任务而非 ...
基于 Transformer 的多模态融合用于视觉监控中可解释的可疑度评估
作者:Kuldeep Singh Yadav, Lalan Kumar 译者:知道创宇404实验室翻译组 原文链接:https://arxiv.org/html/2512.09311v1 摘要 可疑度评估对于复杂环境下的主动威胁检测和公共安全保障至关重要。本文提出了一个大规模标注数据集USE50k, ...
React2Shell 漏洞利用分析报告
作者:知道创宇积极防御实验室 1. 背景 根据创宇安全智脑监测,近期披露的React2shell漏洞正在被积极利用。React 是一个用于构建用户界面的 JavaScript 库,其中React Server Components(RSC)中的 react-server 相关包(如 react-se ...
面向企业安全的机器学习民主化:一种自持续攻击检测框架
作者:Sadegh Momeni, Ge Zhang, Birkett Huber 译者:知道创宇404实验室翻译组 原文链接:https://arxiv.org/html/2512.08802v1 摘要 尽管机器学习在安全领域取得了诸多进展,但由于机器学习解决方案存在资源密集型特性和技能门槛问题, ...
量子计算机距离攻破 RSA-2048 还有多远
Author: Guancheng Li of Tencent Xuanwu Lab 在当今数字世界中,RSA‑2048 与 ECC 等经典公钥密码是最广泛应用的加密标准,支撑着网络安全、金融交易和隐私保护的底层信任。然而,这一基石正面临量子计算的潜在威胁。理论上,量子计算机能够以远快于经典计算机的 ...
我们的AI发现了一个零知识证明库的漏洞,Sam Altman的项目也用了这个库
Author: Guancheng Li, Xiaolin Zhang and Yang Yu of Tencent Xuanwu Lab 2025 年 8 月,腾讯玄武实验室的阿图因自动化漏洞挖掘引擎在零知识证明库 gnark 中发现了一个高危漏洞(CVE-2025-57801,CVSS 8.6) ...
玄武在BlackHat揭示劫持智能体达成RCE的新方法
Author: Jiashuo Liang and Guancheng Li of Tencent Xuanwu Lab 0x00 前言大语言模型(LLM)正在从简单的对话工具演化为能够编写代码、操作浏览器、执行系统命令的智能体。随着大模型应用的演进,提示词注入攻击的威胁也在不断升级。 设想这样一个 ...
腾讯和清华的最新研究:利用“长度侧信道”绕过5G/4G/WiFi网络的加密
Author: Guancheng Li of Tencent Security Xuanwu Lab 在当今数字化时代,5G、4G和Wi-Fi等无线通信技术已成为我们日常生活的重要基础设施。这些网络普遍采用先进的加密协议,理论上能够有效保护用户通信安全。然而,近期由我们腾讯玄武实验室与清华大学陈建 ...
DeepSeek-671B纯CPU部署经验分享(一)
私有化部署大模型能够有效保护数据隐私、便于开展大模型安全研究和知识蒸馏。目前主流部署方式包括纯 GPU、CPU/GPU 混合以及纯 CPU 三种部署方式。本文介绍了我们针对 DeepSeek 大模型纯 CPU 本地化部署的推理探索与实践方案。我们以约 3.8 万元的整体成本,基于 llama.cpp ...
New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory
A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The vulnerabilit ...
Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code
Trust Wallet is urging users to update its Google Chrome extension to the latest version following what it described as a "security incident" that led ...
China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware
A China-linked advanced persistent threat (APT) group has been attributed to a highly-targeted cyber espionage campaign in which the adversary poisone ...
Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
A critical security flaw has been disclosed in LangChain Core that could be exploited by an attacker to steal sensitive secrets and even influence lar ...
ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories
It’s getting harder to tell where normal tech ends and malicious intent begins. Attackers are no longer just breaking in — they’re blending in, hijack ...
Dismantling Defenses: Trump 2.0 Cyber Year in Review
The Trump administration has pursued a staggering range of policy pivots this past year that threaten to weaken the nation’s ability and willingness t ...
Most Parked Domains Now Serving Malicious Content
Direct navigation -- the act of visiting a website by manually typing a domain name in a web browser -- has never been riskier: A new study finds the ...
Microsoft Patch Tuesday, December 2025 Edition
Microsoft today pushed updates to fix at least 56 security flaws in its Windows operating systems and supported software. This final Patch Tuesday of ...
Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill
A sprawling academic cheating network turbocharged by Google Ads that has generated nearly $25 million in revenue has curious connections to a Kremlin ...
SMS Phishers Pivot to Points, Taxes, Fake Retailers
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, ju ...
Friday Squid Blogging: Squid Camouflage
New research: Abstract: Coleoid cephalopods have the most elaborate camouflage system in the animal kingdom. This enables them to hide from or deceive ...
IoT Hack
Someone hacked an Italian ferry. It looks like the malware was installed by someone on the ferry, and not remotely.
Urban VPN Proxy Surreptitiously Intercepts AI Chats
This is pretty scary: Urban VPN Proxy targets conversations across ten AI platforms: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek, ...
Denmark Accuses Russia of Conducting Two Cyberattacks
News: The Danish Defence Intelligence Service (DDIS) announced on Thursday that Moscow was behind a cyber-attack on a Danish water utility in 2024 and ...
Microsoft Is Finally Killing RC4
After twenty-six years, Microsoft is finally upgrading the last remaining instance of the encryption algorithm RC4 in Windows. of the most visible hol ...
Mentorship and Diversity: Shaping the Next Generation of Cyber Experts
Patricia Voight, CISO at Webster Bank, shares her expertise on advancing cybersecurity careers, combating financial crimes, and championing diversity ...
As More Coders Adopt AI Agents, Security Pitfalls Lurk in 2026
Developers are leaning more heavily on AI for code generation, but in 2026, the development pipeline and security need to be prioritized.
Dark Reading Opens The State of Application Security Survey
Take part in the new survey from Dark Reading and help uncover trends, challenges, and solutions shaping the future of application security.
Industry Continues to Push Back on HIPAA Security Rule Overhaul
Healthcare cyberattacks are on the rise, but industry organizations say the proposed changes to the security rules fall short of what's needed.
ServiceNow Buys Armis for $7.75B, Boosts 'AI Control Tower'
Its latest cybersecurity acquisition will help further ServiceNow's plans for autonomous cybersecurity, and building a security stack to proactively m ...
Weekly Update 484
I think the start of this week's video really nailed it for the techies amongst us: shit doesn't work, you change something random and now shit works ...
Weekly Update 483
Building out an IoT environment is a little like the old Maslow's Hierarchy of Needs. All the stuff on the top is only any good if all the stuff on th ...
Weekly Update 482
Perhaps it's just the time of year where we all start to wind down a bit, or maybe I'm just tired after another massive 12 months, but this week's vid ...
Processing 630 Million More Pwned Passwords, Courtesy of the FBI
The sheer scope of cybercrime can be hard to fathom, even when you live and breathe it every day. It's not just the volume of data, but also the exten ...
Weekly Update 481
Twelve years (and one day) since launching Have I Been Pwned, it's now a service that Charlotte and I live and breathe every day. From the first thing ...