Lucene search
K

1319 matches found

Trend Micro Simply Security
Trend Micro Simply Security
added 2026/04/01 12:0 a.m.8 views

TrendAI Insight: New U.S. National Cyber Strategy

TrendAI reviews the White House National Cyber Strategy, outlining six pillars to strengthen U.S. cybersecurity—from deterrence and regulation to federal modernization, critical infrastructure protection, AI leadership, and workforce development...

5.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/03/31 5:0 p.m.5 views

The threat to critical infrastructure has changed. Has your readiness?

Critical infrastructure CI organizations underpin national security, public safety, and the economy. In 2026, the cyber threat landscape facing these sectors is structurally different than it was even two years ago. What Microsoft Threat Intelligence is observing across critical infrastructure...

6AI score
Exploits0
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ability to change the hashing strategy during XDP loading, potentially leading to inconsisten...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References7
Packet Storm News
Packet Storm News
added 2026/03/24 12:0 a.m.7 views

TreeTeaming: Autonomous Red-Teaming of Vision-Language Models Via Hierarchical Strategy Exploration

The rapid advancement of Vision-Language Models VLMs has brought their safety vulnerabilities into sharp focus. However, existing red teaming methods are fundamentally constrained by an inherent linear exploration paradigm, confining them to optimizing within a predefined strategy set and...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/10 12:0 a.m.4 views

Game-Theoretic Modeling of Stealthy Intrusion Defense against MDP-Based Attackers

The rapid expansion of Internet use has increased system exposure to cyber threats, with advanced persistent threats APTs being especially challenging due to their stealth, prolonged duration, and multi-stage attacks targeting high-value assets. In this study, we model APT evolution as a strategi...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/03/05 6:31 p.m.7 views

EUVD-2026-9826

A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient Strategy sync, HTTP API client, config options engine modules allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files...

9.1CVSS5.9AI score0.00265EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/05 3:38 p.m.37 views

CVE-2026-30798 RustDesk Client Accepts Unauthenticated stop-service Command via Strategy Payload

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop, strategy processing modules allows Protocol Manipulation. This vulnerability is...

8.2CVSS0.00288EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/05 3:38 p.m.6 views

CVE-2026-30798 RustDesk Client Accepts Unauthenticated stop-service Command via Strategy Payload

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop, strategy processing modules allows Protocol Manipulation. This vulnerability is...

8.2CVSS5.8AI score0.00288EPSS
Exploits1References3
CVE
CVE
added 2026/03/05 3:38 p.m.33 views

CVE-2026-30798

CVE-2026-30798 affects RustDesk Client (rustdesk-client) on Windows, macOS, Linux, iOS, and Android up to version 1.4.5. The issue arises from insufficient verification of data authenticity and improper handling of exceptional conditions in the Heartbeat sync loop and strategy processing modules,...

8.2CVSS5.8AI score0.00288EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/05 3:14 p.m.5 views

CVE-2026-30792 RustDesk Client Blindly Merges Unauthenticated Strategy Payloads, Bypassing Local Security Settings

A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient Strategy sync, HTTP API client, config options engine modules allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files...

8.3CVSS5.8AI score0.00265EPSS
Exploits1References3
CVE
CVE
added 2026/03/05 3:14 p.m.26 views

CVE-2026-30792

CVE-2026-30792 affects RustDesk Client (Windows/macOS/Linux/iOS/Android/WebClient). Affected components include Strategy sync, HTTP API client, and Config::set_options() in files src/hbbs_http/sync.Rs and hbb_common/src/config.Rs. Root cause: the client blindly merges unauthenticated strategy pay...

8.3CVSS5.8AI score0.00265EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/05 3:14 p.m.33 views

CVE-2026-30792 RustDesk Client Blindly Merges Unauthenticated Strategy Payloads, Bypassing Local Security Settings

A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient Strategy sync, HTTP API client, config options engine modules allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files...

8.3CVSS0.00265EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.9 views

PT-2026-23457

Name of the Vulnerable Software and Affected Versions RustDesk Client versions through 1.4.5 Description A flaw exists in RustDesk Client on Windows, MacOS, Linux, iOS, Android, and WebClient that allows manipulation of Application API Messages through a Man-in-the-Middle attack. The issue is...

8.3CVSS5.8AI score0.00265EPSS
Exploits1References9
hivepro
hivepro
added 2026/03/03 6:14 p.m.6 views

5 Best Qualys Replacement Solutions Reviewed

Knowing you have vulnerabilities is one thing; knowing if your defenses can actually stop an attack is another. Traditional vulnerability scanners tell you where the holes are, but they don't tell you if your security controls are configured correctly or if they'll perform under pressure. This is...

6.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/03 12:0 a.m.6 views

Scores Know Bobs Voice: Speaker Impersonation Attack

Advances in deep learning have enabled the widespread deployment of speaker recognition systems SRSs, yet they remain vulnerable to score-based impersonation attacks. Existing attacks that operate directly on raw waveforms require a large number of queries due to the difficulty of optimizing in...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/24 12:0 a.m.13 views

AdapTools: Adaptive Tool-Based Indirect Prompt Injection Attacks on Agentic LLMs

The integration of external data services e.g., Model Context Protocol, MCP has made large language model-based agents increasingly powerful for complex task execution. However, this advancement introduces critical security vulnerabilities, particularly indirect prompt injection IPI attacks...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/20 12:0 a.m.5 views

Orbital Escalation: Modeling Satellite Ransomware Attacks Using Game Theory

Ransomware has yet to reach orbit, but the conditions for such an attack already exist. This paper presents the first game-theoretic framework for modeling ransomware against satellites: the orbital escalation game. In this model, the attacker escalates ransom demands across orbital passes, while...

5.9AI score
Exploits0
Akamai Blog
Akamai Blog
added 2026/02/18 6:0 p.m.4 views

Why CEOs' AI Hype Really Isn't Landing with Employees

Read about the disconnect between CEO enthusiasm for AI and employee perception of its value, and learn how to build communication that moves adoption forward...

5.5AI score
Exploits0
hivepro
hivepro
added 2026/02/17 4:8 p.m.6 views

Tenable vs. Hive Pro: Key Differences Explained

If your security team is drowning in a sea of vulnerability alerts and struggling to make sense of multiple risk scores, you know that more data doesn't always mean more clarity. “The right threat exposure management platform should cut through the noise, not add to it.” When evaluating your...

5.8AI score
Exploits0
Cvelist
Cvelist
added 2026/02/10 3:4 a.m.29 views

CVE-2026-24327 Missing Authorization Check in SAP Strategic Enterprise Management (Balanced Scorecard in BSP Application)

Due to missing authorization check in SAP Strategic Enterprise Management Balanced Scorecard in Business Server Pages, an authenticated attacker could access information that they are otherwise unauthorized to view. This leads to low impact on confidentiality and no effect on integrity or...

4.3CVSS0.00221EPSS
Exploits0References2
Rows per page
Query Builder