Bleeping Computer

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices. The ...
来自MSN

ChatGPT hit by a zero-click, server-side vulnerability that criminals can use to siphon ...

Enterprises are increasingly using AI tools such as ChatGPT’s Deep Research agent to analyze emails, CRM data, and internal reports for strategic decision-making, experts have warned. These platforms ...
CSOonline

Azure API Management flaws highlight server-side request forgery risks in API development

Microsoft recently patched three vulnerabilities in its Azure API Management service, two of which enabled server-side request forgery (SSRF) attacks that could have allowed hackers to access internal ...

CISA urges immediate patching of exploited Windows SMB client vulnerability

Tracked as CVE-2025-33073, the vulnerability affects the Windows Server Message Block client, a core component used for file and printer sharing and network resource access across enterprise ...
TechRepublic

Akamai’s new study: Bots, phishing and server attacks making commerce a cybersecurity hotspot

Akamai’s new study: Bots, phishing and server attacks making commerce a cybersecurity hotspot Your email has been sent Bots raining on retail drive flood in commerce attacks Led by LFI attacks, web ...
Bleeping Computer

Exploit released for Microsoft SharePoint Server auth bypass flaw

Proof-of-concept exploit code has surfaced on GitHub for a critical authentication bypass vulnerability in Microsoft SharePoint Server, allowing privilege escalation. Tracked as CVE-2023-29357, the ...