Why your AI girlfriend is a privacy time bomb: 150M users at risk

The post Why Your AI Girlfriend is a Privacy Time Bomb: 150M Users at Risk appeared first on Android Headlines.
SecurityWeek

Russian APT Exploits Zimbra Vulnerability Against Ukraine

Russia-linked APT28 has exploited a high-severity XSS vulnerability in Zimbra in attacks against Ukrainian entities.
腾讯网

Angular XSS漏洞致数千个Web应用面临跨站脚本攻击风险

Angular框架中被发现存在一个高危跨站脚本(XSS)漏洞(CVE-2026-32635/CWE-79),影响@angular/compiler和@angular/core组件包。由于Angular被全球无数企业和消费者Web应用采用,该漏洞可能为威胁行为者提供巨大的攻击面。 漏洞成因 该漏洞源于Angular处理国际化(i18n)安全敏感HTML属性的方式。虽然Angular默认提供强大的内置 ...

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS).