HKLUG

Hong Kong Linux User Group  香港Linux用家協會 (HKLUG)

HK Open Source Community

( Chinese Version Only ) 🚀 創科盛事|2026 香港資訊及通訊科技獎:資訊科技初創企業獎現正接受報名!

2026-06-28 08:08:56

News Feed - Source : Open Source Hong Kong - ( Chinese Version Only ) 🚀 創科盛事|2026 香港資訊及通訊科技獎:資訊科技初創企業獎現正接受報名! 開源香港非常榮幸能夠支持一年一度的創科界盛事 ! 此文章 ( Chinese Version Only ) 🚀 創科盛事|2026 香港資訊...

Read more →

Hong Kong Open Source Conference 2026 - 6th June 2026

2026-05-23 21:29:00

Hong Kong Open Source Conference 2026 (HKOSCon 2026) 日期 Date: 6th June 2026 (Saturday 星期六) 地點 Venue: Hong Kong Institute of Information Technology, VTC Tsing Yi Complex 香港資訊科技學院,職業...

Read more →

OSHK Meetup #99 One Step Beyond w/ Open Claw

2026-05-06 02:59:14

News Feed - Source : Open Source Hong Kong - OSHK Meetup #99 One Step Beyond w/ Open Claw AI Ready: From Claude Code to OpenClaw, ClawPro, MCP and Agentic Workflows 此文章 OSHK Meetup...

Read more →

IT News

No image

Roundcube漏洞被利用针对大学研究部门:Proofpoint揭露针对学术机构的间谍活动

2026-07-07 10:22:00

A suspected China-aligned threat actor, designated UNK_MassTraction by security researchers at Proofpoint, has been exploiting vulnerabilities in the open-source Roundcube webmail ...

Read more →
No image

BeyondTrust紧急修补两个可绕过认证的高危漏洞,管理后台面临接管风险

2026-07-07 10:23:00

访问管理解决方案供应商BeyondTrust近日发布紧急安全公告,披露了其远程支持(RS)和特权远程访问(PRA)软件中存在的两个高危漏洞。攻击者可利用这些漏洞绕过身份验证,从而潜在接管受影响系统的管理控制台。 这两个漏洞分别被追踪为CVE-2024-1049和CVE-2024-1050,CVSS v3评分均为8.8分(高危)。其本质是身份验证绕过,允许远程...

Read more →
No image

Hidden Backdoor Bypasses Admin Login in Tenda Router Firmware, CERT/CC Warns

2026-07-07 10:29:00

``` A critical vulnerability in multiple Tenda router firmware versions is creating a hidden administrative backdoor, potentially granting attackers complete control of home and sm...

Read more →
No image

Critical 16-Year-Old KVM Flaw Risks Cloud VM Escape Attacks

2026-07-07 10:34:00

A critical, 16-year-old vulnerability in the Linux Kernel-based Virtual Machine (KVM) hypervisor could allow a guest virtual machine to crash its host or escape its sandboxed envir...

Read more →
No image

BeyondTrust修补远程支持与PRA认证绕过漏洞,预认证攻击风险引关注

2026-07-07

安全厂商BeyondTrust近日发布更新,修复旗下远程支持(RS)和特权远程访问(PRA)产品中的多个安全漏洞。据The Hacker News报道,其中至少包含两个关键的预认证漏洞——攻击者可在无需任何有效凭证的情况下,透过这些漏洞绕过设备访问控制,接管受影响系统,潜在威胁波及大量企业IT基础设施。 本次披露的漏洞中,CVE-2026-40138被明确描...

Read more →
No image

Iranian State-Backed Operators Deploy Modular Cavern C2 Framework Against IT Supply Chains

2026-07-06 21:41:00

Security researchers have uncovered a previously undocumented command-and-control (C2) framework dubbed Cavern (also referenced as Cav3rn), currently being deployed by an Iranian s...

Read more →
No image

Attackers Rapidly Target Unpatched Gitea Containers Following Critical Auth Bypass Disclosure

2026-07-06 19:28:00

Threat actors have begun actively scanning and exploiting a critical authentication bypass vulnerability in self-hosted Gitea instances deployed via Docker, just 13 days after the ...

Read more →
No image

AMD Releases Custom Debian-Based OS for Ryzen AI Hardware, Challenging NVIDIA's Software Stack

2026-07-06 16:22:00

AMD has begun shipping a custom, first-party Linux distribution with its Ryzen AI Halo developer platform, marking a significant step from providing hardware to delivering a fully ...

Read more →