issues
search
chainreactors
/
picker
将你的repo变为讨论社区
GNU General Public License v3.0
104
stars
19
forks
source link
[每日信息流] 2024-07-12
#590
Closed
chainreactorbot
closed
1 month ago
chainreactorbot
commented
2 months ago
每日安全资讯(2024-07-12)
奇安信攻防社区
[ ]
探讨SM4算法本质
[ ]
Python prototype chain pollution
SecWiki News
[ ]
SecWiki News 2024-07-11 Review
Twitter @Nicolas Krassas
[ ]
CRYSTALRAY hacker expands to 1,500 breached systems using SSH-Snake tool https://www.bleepingcomputer.com/news/security/crystalray-hacker-expands-to-1...
[ ]
Akira Ransomware Targets the LATAM Airline Industry https://blogs.blackberry.com/en/2024/07/akira-ransomware-targets-the-latam-airline-industry
[ ]
Apple Is Alerting iPhone Users of Spyware Attacks https://www.schneier.com/blog/archives/2024/07/apple-is-alerting-iphone-users-of-spyware-attacks.htm...
[ ]
Google increases bug bounty rewards five times, up to $151K https://www.bleepingcomputer.com/news/security/google-increases-bug-bounty-rewards-five-ti...
[ ]
Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool https://thehackernews.com/2024/07/palo-alto-networks-patches-critical.html
[ ]
Kimsuky sets sights on Japanese organizations https://www.scmagazine.com/brief/kimsuky-sets-sights-on-japanese-organizations
[ ]
Nearly 39M legal records leaked by misconfigured database https://www.scmagazine.com/brief/nearly-39m-legal-records-leaked-by-misconfigured-database
[ ]
Unauthorized content alteration bug found in NSA platform https://www.scmagazine.com/brief/unauthorized-content-alteration-bug-found-in-nsa-platform
[ ]
Apple agrees to open up Apple Pay in Europe https://www.computerworld.com/article/2516133/apple-agrees-to-open-up-apple-pay-in-europe.html
[ ]
SaladCat: Distributed Password Cracking on the Cheap Using Salad Cloud https://hardcidr.com/posts/saladcat/
[ ]
FishXProxy Phishing Kit Outfits Cybercriminals for Success https://www.darkreading.com/endpoint-security/fishxproxy-phishing-kit-cybercriminals-succes...
[ ]
Dallas County: Data of 200,000 exposed in 2023 ransomware attack https://www.bleepingcomputer.com/news/security/dallas-county-data-of-200-000-exposed-...
[ ]
SiegedSec Hacks Heritage Foundation; Leaks Data Over “Project 2025” https://hackread.com/siegedsec-hacks-heritage-foundation-project-2025/
[ ]
50 Shades of Bulletproof Hosting – BPH Landscape on Russian-Language Cybercrime Forums https://www.own.security/ressources/blog/50-shades-of-bulletpr...
[ ]
More On The Halvening https://blog.dshr.org/2024/07/more-on-halvening.html
[ ]
Dynamics 365 Business Central - A Journey With Ups and Downs https://frycos.github.io/vulns4free/2024/07/10/dynamics-ups-and-downs.html
[ ]
Getting Started with Exploit Development https://dayzerosec.com/blog/2024/07/11/getting-started-2024.html
[ ]
You had a year to patch this Veeam flaw and now it's going to hurt https://go.theregister.com/feed/www.theregister.com/2024/07/11/estate_ransomware_ve...
[ ]
VMware Patches Critical SQL Injection Flaw In Aria Automation https://packetstormsecurity.com/news/view/36091/VMware-Patches-Critical-SQL-Injection-Fl...
[ ]
Advance Auto Parts: 2.3M people's data accessed when crims broke into our Snowflake account https://go.theregister.com/feed/www.theregister.com/2024/0...
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
[ ]
攻防演练进入AI助力时代,奇安信威胁分析平台ALPHA打造最强“外援”
[ ]
XCon2024议题||大模型智能体Agent技术驱动下的下一代检测与响应技术探索
[ ]
报名火热进行中|2024中关村论坛系列活动——第二届北京数字安全大会议程公布
Recent Commits to cve:main
[ ]
Update Thu Jul 11 22:22:40 UTC 2024
[ ]
Update Thu Jul 11 14:32:27 UTC 2024
[ ]
Update Thu Jul 11 06:33:27 UTC 2024
Files ≈ Packet Storm
[ ]
Wireshark Analyzer 4.2.6
[ ]
Atlassian Confluence Administrator Code Macro Remote Code Execution
[ ]
LumisXP 16.1.x Cross Site Scripting
[ ]
LumisXP 16.1.x Hardcoded Credentials / IDOR
[ ]
Debian Security Advisory 5728-1
[ ]
Debian Security Advisory 5727-1
[ ]
WordPress Poll Maker 5.3.2 SQL Injection
[ ]
Ubuntu Security Notice USN-6891-1
[ ]
Ubuntu Security Notice USN-6892-1
[ ]
Ubuntu Security Notice USN-6868-2
[ ]
Ubuntu Security Notice USN-6866-3
[ ]
ESET NOD32 Antivirus 17.2.7.0 Unquoted Service Path
[ ]
Red Hat Security Advisory 2024-4505-03
[ ]
Red Hat Security Advisory 2024-4504-03
[ ]
Red Hat Security Advisory 2024-4499-03
[ ]
Red Hat Security Advisory 2024-4464-03
[ ]
Red Hat Security Advisory 2024-4462-03
[ ]
Red Hat Security Advisory 2024-4460-03
[ ]
Red Hat Security Advisory 2024-4457-03
[ ]
Red Hat Security Advisory 2024-4456-03
[ ]
Red Hat Security Advisory 2024-4455-03
[ ]
Red Hat Security Advisory 2024-4321-03
[ ]
Red Hat Security Advisory 2024-2096-03
CXSECURITY Database RSS Feed - CXSecurity.com
[ ]
LumisXP 16.1.x Cross Site Scripting
[ ]
Atlassian Confluence Administrator Code Macro Remote Code Execution
[ ]
WordPress Poll Maker 5.3.2 SQL Injection
[ ]
ESET NOD32 Antivirus 17.2.7.0 Unquoted Service Path
Der Flounder
[ ]
Slides from the “macOS application packaging 101” session at Penn State MacAdmins 2024
Doonsec's feed
[ ]
【红队武器库|漏洞利用工具】2024HVV准备均收集来源于Github(包含海康威视、大华等等一把梭)
[ ]
【工具二开】符合个人渗透习惯的Fscan
[ ]
工具推荐|简单又强大的隧道代理工具
[ ]
一名合格红队的成长之路
[ ]
甲方安全建设- Velociraptor初体验协助应急响应
[ ]
若依4.7.8版本计划任务rce复现
[ ]
利用某种组件来实现SSRF
[ ]
秦安:慌乱了!北约不允许俄获胜,美提供十亿,美德反对乌入北约
[ ]
秦安:红蓝融合管理支撑治理、传承基因、依托网络,就是一场革命
[ ]
牟林:美又批准售台武器,我们有权阻止它运进台湾
[ ]
牟林:用海警执行《反分裂国家法》,这个建议好
[ ]
牟林:人类又要重返母系氏族社会?
[ ]
王常胜:把饭碗端自己手里,装自己的粮食,吃自己生产加工的食物
[ ]
白中石:看清“房间里的大象”,推动一些工作打开新局面
[ ]
maven搭建tomcat环境(支持jsp)
[ ]
微软警告称 Windows Hyper-V 零日漏洞正受到利用
[ ]
逆向学习汇编篇 -- 手动编写PE文件
[ ]
逆向学习汇编篇 -- 导出表
[ ]
网络安全学习资料 -- 信息收集
[ ]
黑客工具MSF与社交软件的联动使用
[ ]
每日资源分享(7月10日更新)
[ ]
API-Explorer - API接口管理工具2.0版本发布!
[ ]
每年必有苕皮哥[破涕为笑]
[ ]
2024年网络安全等级保护工作会议在京召开
[ ]
什么是DHCP Snooping?它工作在第几层?
[ ]
SSRF之Microsoft Azure Functions
[ ]
标识沪通行|打造数字底座 工业互联网标识解析体系赋能企业数字化转型
[ ]
大华综合漏洞利用工具 - dahuaExploitGUI
[ ]
CTF学习-PWN-uaf2
[ ]
网络工程师应该知道的40个存储技术概念,3分钟看完!
[ ]
靶场中跨网段的互联互通
[ ]
强力亲推:专属于大学生的SRC漏洞挖掘课程来啦!!
[ ]
【实战】log4j2绕过jdk高版本拿shell
[ ]
FastJson全版本Docker漏洞环境
[ ]
【论坛】u200b第八届“中国网络法治30人论坛”在内蒙古大学成功举办
[ ]
【资讯】《关于开展“网络去NAT”专项工作 进一步深化IPv6部署应用的通知》解读
[ ]
【资讯】北京市数据局发布《2024 北京“数据要素×”典型案例集》
[ ]
全球数字经济大会 | 百度安全运营智能体平台入选信通院“安全守卫者计划”优秀案例
[ ]
Java代码审计之JFinalCMS
[ ]
中国互联网大会 | 百度智能云千帆大模型数据安全解决方案荣获“金灵光杯”
[ ]
第98篇:Struts2全版本漏洞检测工具19.32版本更新
[ ]
决胜蓝天!中国电信“云猎”无人机侦测反制系统,守护低空安全无虞
[ ]
通知 | 工信部、中央网信办组织开展“网络去NAT”专项工作 进一步深化IPv6部署应用
[ ]
中国密码学会2024年密码数学理论学术会议通知
[ ]
CNNVD | 关于微软多个安全漏洞的通报
[ ]
美军可重构电子战系统发展现状分析
[ ]
RADIUS身份验证协议惊现三十年的漏洞,CERT呼吁紧急关注
[ ]
无可执行权限加载 ShellCode 技术原理
[ ]
Java安全-案例审计&数据库注入实例&框架篇
[ ]
警民反诈|网络黑灰产物料供应之公民个人信息
[ ]
数据安全专项行动重要阶段该如何部署?腾讯一体化智能数据安全解决方案来了!
[ ]
原创-人生经验之谈善可善非常善,情可情非常情,义可义非常义,忙可帮,要看人,因人而异
[ ]
分享 | 一文简述模糊测试智能体技术实践
[ ]
【安全圈】新版 RockYou 文件曝光:含近 100 亿条明文密码
[ ]
【安全圈】微软警告称 Windows Hyper-V 零日漏洞正受到利用
[ ]
【安全圈】替代传统物理密钥,谷歌高级保护计划迎来重大更新!
[ ]
【安全圈】官方强烈建议升级,GitLab又曝严重的账户接管漏洞
[ ]
6个绝佳AI短视频生成工具
[ ]
官方强烈建议升级,GitLab又曝严重的账户接管漏洞
[ ]
2024网安行业优质播客精选集①
[ ]
替代传统物理密钥,谷歌高级保护计划迎来重大更新!
[ ]
headerpwn:一款针对服务器响应与HTTP Header的模糊测试工具
[ ]
ARL联动AWVS脚本项目
[ ]
勒索防御第一关 亚信安全AE防毒墙全面升级 勒索检出率提升150%
[ ]
共建漏洞协同防御体系,亚信安全成为麒麟软件漏洞协同优秀合作伙伴
[ ]
美国国会拟立法整治网络安全“九龙治水”监管乱象
[ ]
北约正式宣布将建立首个综合网络防御中心
[ ]
全领域覆盖 奇安信入选《数字安全护航技术能力全景图》
[ ]
攻防演练进入AI助力时代,奇安信威胁分析平台ALPHA打造最强“外援”
[ ]
虎符扬州基地:专注网络安全人才培养
[ ]
探索零信任:《零信任安全技术详解与应用实践》读书系列(二)数字化时代的安全挑战
[ ]
三问+一图,读懂《关于开展“网络去NAT”专项工作 进一步深化IPv6部署应用的通知》
[ ]
微软2024年7月补丁星期二修复了2个被积极利用的漏洞
[ ]
天帷动态丨舟山市决策咨询委领导一行莅临天帷信息考察调研
Tenable Blog
[ ]
How Risk-based Vulnerability Management Boosts Your Modern IT Environment's Security Posture
Sucuri Blog
[ ]
How to Set Cache Control Headers
Private Feed for M09Ic
[ ]
timwhitez starred Yaxser/CobaltStrike-BOF
[ ]
Rvn0xsy starred jfjallid/go-smb
[ ]
timwhitez starred abc123info/Struts2VulsScanTools
[ ]
timwhitez starred pumpbin/pumpbin
[ ]
evilcos starred slowmist/Account-Abstraction-Security-Audit-Checklist
[ ]
whwlsfb forked whwlsfb/MS-SharePoint-July-Patch-RCE-PoC from testanull/MS-SharePoint-July-Patch-RCE-PoC
[ ]
whwlsfb starred erebe/wstunnel
[ ]
shmilylty starred lintstar/CS-AutoPostChain
[ ]
INotGreen started following memN0ps
[ ]
WAY29 starred uber-go/gopatch
[ ]
XiaoliChan started following M09Ic
Security Boulevard
[ ]
Most Websites and Apps Use Dark Patterns to Cheat Consumers: FTC
[ ]
Anton’s Security Blog Quarterly Q2 2024
[ ]
USENIX Security ’23 – How Library IT Staff Navigate Privacy, Security Challenges and Responsibilities
[ ]
Emulating the Long-Term Extortionist Nefilim Ransomware
[ ]
Comic Agilé – Mikkel Noe-Nygaard, Luxshan Ratnaravi – #297 – Line Management Deadlock
[ ]
Hyperproof Sweeps G2 Summer Awards (Again)
[ ]
Why Do Phishers Target New Employees?
[ ]
OIDC vs SAML: A Comprehensive Technical Comparison
[ ]
MoonWalk: A deep dive into the updated arsenal of APT41 | Part 2
[ ]
Liquidmatrix Security Digest Podcast – Episode 7C
gynvael.coldwind//vx.log (en)
[ ]
Gynvael on SECURITYbreak podcast
obaby@mars
[ ]
抄作业–我的设备
ElcomSoft blog
[ ]
Password Breaking A to Z
Securelist
[ ]
When spear phishing met mass phishing
Reverse Engineering
[ ]
Modding TikTok to only show Cat Videos (Bryce Bostwick on YouTube)
[ ]
Free and Open Source AI Reverse Engineering with Binary Ninja and Ollama
Didier Stevens
[ ]
Update: oledump.py Version 0.0.77
SentinelOne
[ ]
The Impact of AI in Accelerating Autonomous Security Operations
Microsoft Security Response Center
[ ]
Announcing the CVRF API 3.0 upgrade
FreeBuf网络安全行业门户
[ ]
官方强烈建议升级,GitLab又曝严重的账户接管漏洞
[ ]
FreeBuf早报 | 菲律宾医保系统泄露4200万用户数据;英美警方联手打击麒麟勒索软件
[ ]
标品软件有限公司诚招安卓逆向开发工程师,氛围轻松不内卷
[ ]
替代传统物理密钥,谷歌高级保护计划迎来重大更新!
杨龙
[ ]
js复制文本到剪贴板
HackerNews
[ ]
替代传统物理密钥,谷歌高级保护计划迎来重大更新!
[ ]
菲律宾立法者质询卫生部高管,称其违规行为影响了 4200 万人
[ ]
GitLab严重漏洞(CVE-2024-6385,CVSS评分9.6)攻击者可以以其他用户身份运行管道作业
[ ]
加密货币分析师揭露 HuiOne 担保为东南亚价值 110 亿美元的网络犯罪中心
[ ]
美国政府捣毁 X 平台上的俄罗斯人工智能机器人农场
[ ]
大规模数据泄露:未加密数据库致使 3860 万敏感法律文件曝光
安全牛
[ ]
工信部、中央网信办组织开展“网络去NAT”专项工作;《纽约时报》270G隐私数据或从GitHub泄露 | 牛览
[ ]
SDLC融合自动化已经势在必行
小迪随笔
[ ]
大模型两则:尚不存在的AI手机和大模型产品化的两条路
奇客Solidot–传递最新科技情报
[ ]
Arm 将 AMD FSR2 带到其平台
[ ]
人类基因组项目未被讲述的故事
[ ]
香港 Open Books 计划发布首批开放阅读电子书
[ ]
发货帮下架油罐车轨迹查询功能
[ ]
东京居民反对建造巨大数据中心
[ ]
英国研究发现夜猫子在认知能力上超过早起者
[ ]
中国在可控核聚变研究上的投入超过了美国
[ ]
科学家发现红斑狼疮病因和潜在逆转方法
[ ]
二季度 PC 出货量增长 3%,中国市场继续低迷
[ ]
三星电子最大工会宣布无限期罢工
看雪学苑
[ ]
自实现Linker加载SO
[ ]
三十多年历史的RADIUS网络协议被发现可绕过身份验证
[ ]
实战大师课!ARM系统深度调试与逆向(赠价值4500元硬件设备)
奇安信 CERT
[ ]
GitLab身份认证绕过漏洞(CVE-2024-6385)安全风险通告
[ ]
攻防演习丢分“重灾区”避坑指南(内附免费高级工具)
奇安信威胁情报中心
[ ]
攻防演习丢分“重灾区”避坑指南(内附免费高级工具)
Black Hills Information Security
[ ]
How to Install LineageOS on Your Android Device
dotNet安全矩阵
[ ]
.NET 一款绕过WAF拦截的新思路和工具
[ ]
两个国内最专业的.NET安全知识库
安全内参
[ ]
美国国会拟立法整治网络安全“九龙治水”监管乱象
[ ]
北约正式宣布将建立首个综合网络防御中心
腾讯玄武实验室
[ ]
每日安全动态推送(7-11)
黑奇士
[ ]
真正的食品运输高科技是什么样的?给你们看看新西兰的奶罐车
虎符智库
[ ]
万字长文!AI技术在威胁情报运营的应用实践
网安杂谈
[ ]
网络黑灰产物料供应之公民个人信息
[ ]
“链上调查分析师”实战培训硬核开班!少量席位余留,报名从速!
代码卫士
[ ]
VMware 修复Aria Automation 中严重的SQL注入漏洞
[ ]
NSA 的开源员工培训平台 SkillTree 中存在CSRF漏洞
360漏洞云
[ ]
360斩获NVDB两大年度奖项 漏洞治理能力再获国家级认定!
补天平台
[ ]
暑季大礼包任务返场 | 新人福利请速速领取
[ ]
补天6月榜单发布 | 恭喜各位白帽黑客!
微步在线
[ ]
漏洞报送最具贡献+1,这次来自NVDB
极客公园
[ ]
如果 MaaS 是个伪命题,大模型时代的「云」应该怎么建?
[ ]
腾讯宣布全员调薪;微软放弃 OpenAI 董事会观察员席位;北京拟支持自动驾驶汽车跑网约车|极客早知道
[ ]
四大成果同期发布|2024 WAIC「探索下一代大模型的基础研究」论坛成功举办
青藤云安全
[ ]
青藤天睿RASP入选信通院首批“数字安全护航计划技术支撑产品”
CNCERT国家工程研究中心
[ ]
PLC变身C2服务器!警惕这种由OT到IT的新型攻击技战术!
[ ]
美国防部《2024年国防工业基础网络安全战略》解读
[ ]
RADIUS身份验证协议惊现三十年的漏洞,CERT呼吁紧急关注
[ ]
国家医保系统泄露超4200万用户数据,这家国企高管遭议会公开质询
[ ]
全球最强朋友圈NATO!准备启动首个综合网络防御中心
数世咨询
[ ]
年度 SaaS 安全报告:2025 年 CISO 计划和优先事项
[ ]
【十佳案例】某大型央企办公网终端安全新防线案例
关键基础设施安全应急响应中心
[ ]
PLC变身C2服务器!警惕这种由OT到IT的新型攻击技战术!
[ ]
美国防部《2024年国防工业基础网络安全战略》解读
[ ]
网络攻防对抗下的漏洞治理探索与实践
[ ]
网络犯罪分子利用人工智能手段进行发票欺诈
[ ]
RADIUS协议遭破解,全球大量设备恐沦为“黑客跳板”
小米安全中心
[ ]
小米获 NVDB “2023年度漏洞管理实践先进企业” 荣誉
信息安全国家工程研究中心
[ ]
三问+一图,读懂《关于开展“网络去NAT”专项工作 进一步深化IPv6部署应用的通知》
[ ]
微软2024年7月补丁星期二修复了2个被积极利用的漏洞
山石网科安全技术研究院
[ ]
CVE-2024-34331:Parallels Desktop权限提升漏洞分析
慢雾科技
[ ]
慢雾:安全审计检查项之账户抽象钱包
中国信息安全
[ ]
《话说安全》视频节目:积极做好新时代数据安全工作
[ ]
评论 | “伏特台风”再证美国网络霸权恶行
[ ]
CNNVD | 关于微软多个安全漏洞的通报
[ ]
专家观点 | 推动数据跨境流动安全有序
[ ]
发布 | 中国信通院发布《大模型基准测试体系研究报告(2024年)》
[ ]
前沿 | 数字人产业的发展与规制
[ ]
起底电诈丨航班取消?返赔偿金?“机票退改签”骗局近期高发 已有多人中招
[ ]
关注 | 2024年6月全国受理网络违法和不良信息举报1992.3万件
国家互联网应急中心CNCERT
[ ]
网络安全信息与动态周报2024年第27期(7月1日-7月7日)
[ ]
CNVD漏洞周报2024年第27期
[ ]
上周关注度较高的产品安全漏洞(20240701-20240707)
深信服千里目安全技术中心
[ ]
【漏洞通告】GitLab身份认证绕过漏洞(CVE-2024-6385)
OPPO安全中心
[ ]
【众测挑战赛2403】金融专场重磅来袭!
百度安全实验室
[ ]
全球数字经济大会 | 百度安全运营智能体平台入选信通院“安全守卫者计划”优秀案例
甲方安全建设
[ ]
Evernote 应用中PDF.js字体注入导致跨平台远程代码执行漏洞
字节跳动技术团队
[ ]
3个企业级最佳实践,教你ByteHouse云数仓这么用
纽创信安
[ ]
OSR硬件安全实战训练营,热浪来袭!
渊龙Sec安全团队
[ ]
【文末红包】Syscall免杀的高阶对抗
TrustedSec
[ ]
dirDevil: Hiding Code and Content Within Folder Structures
Securityinfo.it
[ ]
L’adozione del cloud aumenta, ma anche le sfide di sicurezza
[ ]
Una nuova vulnerabilità OpenSSH consente l’esecuzione remota di codice
Krypt3ia
[ ]
Recruiting Scams On LinkedIn
安全419
[ ]
基于网络靶场开展安全测评 云众可信的最佳实践探索
ICT Security Magazine
[ ]
Il Cybersecurity Lab di ZTE Italia: Un centro all’avanguardia per la ricerca e il testing in ambito di sicurezza
[ ]
Cos’è Managed Data Detection and Response (MDDR)?
bellingcat
[ ]
To Blur Or Not To Blur: Exposing Finland’s Lakeside Neo-Nazi Meetup
SANS Internet Storm Center, InfoCON: green
[ ]
Understanding SSH Honeypot Logs: Attackers Fingerprinting Honeypots, (Thu, Jul 11th)
[ ]
ISC Stormcast For Thursday, July 11th, 2024 https://isc.sans.edu/podcastdetail/9048, (Thu, Jul 11th)
Schneier on Security
[ ]
Apple Is Alerting iPhone Users of Spyware Attacks
希潭实验室
[ ]
第98篇:Struts2全版本漏洞检测工具19.32版本更新
Over Security - Cybersecurity news aggregator
[ ]
ARRL finally confirms ransomware gang stole data in cyberattack
[ ]
Indiana county files disaster declaration following ransomware attack
[ ]
Signal downplays encryption key flaw, fixes it after X drama
[ ]
Hacker ‘Tank’ gets prison sentence for connections to Zeus and IcedID malware
[ ]
How to Set Cache Control Headers
[ ]
Advance Auto Parts says more than 2 million impacted by data breach
[ ]
Google increases bug bounty rewards five times, up to $151K
[ ]
Checking in on the state of cybersecurity and the Olympics
[ ]
Russian disinformation network’s infrastructure is spread across Europe, report says
[ ]
Florida Department of Health, thousands of sensitive data records have been published by the RansomHub group
[ ]
Dallas County: Data of 200,000 exposed in 2023 ransomware attack
[ ]
Apple warns Indian iPhone users of possible ‘mercenary spyware’ attack
[ ]
Chinese cyber agency accused of 'false and baseless' claims about US interfering in Volt Typhoon research
[ ]
CRYSTALRAY hacker expands to 1,500 breached systems using SSH-Snake tool
[ ]
Advance Auto Parts data breach impacts 2.3 million people
[ ]
Macau government websites hit with cyberattack by suspected foreign hackers
[ ]
NATO members commit to creating new cyber center in Belgium
[ ]
Introducing Investigations Management: Your Centralized Workspace for Threat Intelligence
[ ]
L’adozione del cloud aumenta, ma anche le sfide di sicurezza
[ ]
A Race to the Bottom - Database Transactions Undermining Your AppSec
[ ]
When spear phishing met mass phishing
[ ]
Impact of data breaches is fueling scam campaigns
[ ]
Una nuova vulnerabilità OpenSSH consente l’esecuzione remota di codice
NetSPI
[ ]
17 Resources You Can’t Miss When Starting Your Career in Application Security
The Hacker News
[ ]
Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool
[ ]
60 New Malicious Packages Uncovered in NuGet Supply Chain Attack
[ ]
Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk
[ ]
Streamlined Security Solutions: PAM for Small to Medium-sized Businesses
[ ]
New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign
[ ]
PHP Vulnerability Exploited to Spread Malware and Launch DDoS Attacks
[ ]
GitLab Patches Critical Flaw Allowing Unauthorized Pipeline Jobs
Security Affairs
[ ]
CrystalRay operations have scaled 10x to over 1,500 victims
[ ]
Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware
[ ]
AI-Powered Russia’s bot farm operates on X, US and its allies warn
[ ]
VMware fixed critical SQL-Injection in Aria Automation product
Deep Web
[ ]
If I ordered something on the dw where would I get it delivered?
Blackhat Library: Hacking techniques and research
[ ]
I need a roadmap.
[ ]
Outlook
[ ]
recode login page
Computer Forensics
[ ]
Axiom Cloud - Opinions
[ ]
Cellebrite - Exporting chats as raw text files
[ ]
AI generated videos
[ ]
DFIR CTFs
[ ]
Scheduled Text Message - Android Question
[ ]
Forensic email collector issue
[ ]
Identify file created by malicious file
Trend Micro Research, News and Perspectives
[ ]
An In-Depth Look at Crypto-Crime in 2023 Part 2
Information Security
[ ]
An Analysis of Password Managers’ Password Checkup Tools [PDF]
[ ]
Critical: CVE-2024-5910 :: PaloAlto Expedition MISSING AUTHENTICATION LEADS TO ADMIN ACCOUNT TAKEOVER
[ ]
Safeguarding AI with Zero Trust Architecture and Data-Centric Security
Your Open Hacker Community
[ ]
A Way To Make APK Accept CA Certificate
TorrentFreak
[ ]
DAZN: Force Cloudflare to Join Piracy Shield, Prosecute IPTV Buyers ASAP
[ ]
BREIN Shuts Down Pirate IPTV Service, Users Get a ‘Warning’
Graham Cluley
[ ]
Exposed! The AI-enhanced social media bot farm that pumped out Kremlin propaganda on Twitter
[ ]
Smashing Security podcast #380: Teachers TikTok targeted, and fraud in the doctors’ waiting room
Full Disclosure
[ ]
CVE-2024-33326
[ ]
CVE-2024-33327
[ ]
CVE-2024-33328
[ ]
CVE-2024-33329
Instapaper: Unread
[ ]
Europol says mobile roaming tech is making its job too hard
[ ]
Scammers double-scam victims by offering to help recover from scams
[ ]
Sideloading Low-Level Extraction Agent with Regular Apple IDs from Windows and Linux
[ ]
10 Consequences of a Data Breach and How To Protect Yourself
[ ]
Massive Truecaller Data Leak Exposes 273 Million Indian Users’ Information
[ ]
Reverse-Engineering Ticketmaster’s Barcode System
[ ]
Exclusive! Meow Leaks The Interview
[ ]
Arresti ingiusti causa intelligenza artificiale la lezione di Detroit contro il rischio abusi
[ ]
Google's dark web monitoring service will soon be free for all users - here's how to use it
Technical Information Security Content & Discussion
[ ]
Preventing the worst supply chain attack you can imagine in the Python ecosystem
[ ]
CORS: the ultimate guide
[ ]
Chaining Three Bugs to Access All Your ServiceNow Data
[ ]
A Race to the Bottom - Database Transactions Undermining Your AppSec
[ ]
SaladCat: open-source and highly scalable password cracking using gamer GPUs
The Register - Security
[ ]
OpenSSH bug leaves RHEL 9 and the RHELatives vulnerable
[ ]
Advance Auto Parts: 2.3M people's data accessed when crims broke into our Snowflake account
[ ]
Privacy expert put away for 9 years after 'grotesque' cyberstalking campaign
[ ]
You had a year to patch this Veeam flaw – and now it's going to hurt some more
[ ]
Japanese space agency spotted zero-day attacks while cleaning up attack on M365
Deeplinks
[ ]
Decoding the Courts’ Digital Decisions | EFFector 36.9
Security Weekly Podcast Network (Audio)
[ ]
RFID hacking & More Vulnerability Shenanigans - Iceman - PSW #834
每日安全资讯(2024-07-12)