issues
search
chainreactors
/
picker
将你的repo变为讨论社区
GNU General Public License v3.0
104
stars
19
forks
source link
[每日信息流] 2024-07-16
#594
Closed
chainreactorbot
closed
1 month ago
chainreactorbot
commented
2 months ago
每日安全资讯(2024-07-16)
Verne in GitHub
[ ]
VoceChat 一款可以自托管的在线聊天室
paper - Last paper
[ ]
Patchwork 组织更新武器库,首次利用 Brute Ratel C4 和 PGoshell 增强版发起攻击
Security Boulevard
[ ]
USENIX Security ’23 – FABRID: Flexible Attestation-Based Routing for Inter-Domain Networks
[ ]
Caught in the Act: StealC, the Cyber Thief in C
[ ]
Hacking Scientific Citations
[ ]
Randall Munroe’s XKCD ‘Number Line Branch’
[ ]
Beware of the Latest Phishing Tactic Targeting Employees
[ ]
Mythic 3.3 Beta: Rise of the Events
[ ]
CEO Corner: Building a Stronger Future Together: Nuspire and PDI Technologies
[ ]
What Happens When Scammers Get Their Hands on Artificial Intelligence?
[ ]
USENIX Security ’23 – Back to School: On the (In)Security of Academic VPNs
[ ]
Encoding Differentials: Why Charset Matters
SecWiki News
[ ]
SecWiki News 2024-07-15 Review
Recent Commits to cve:main
[ ]
Update Mon Jul 15 22:31:19 UTC 2024
[ ]
Update Mon Jul 15 14:39:55 UTC 2024
[ ]
Update Mon Jul 15 06:27:51 UTC 2024
Twitter @Nicolas Krassas
[ ]
CVE-2024-36401 (CVSS 9.8): Critical GeoServer Flaw Under Active Attack, PoC Available https://securityonline.info/cve-2024-36401-cvss-9-8-critical-geo...
[ ]
SharpHound Detection https://ipurple.team/2024/07/15/sharphound-detection/
[ ]
New Data-Stealing Poco RAT Campaign Targeting Spanish Speakers https://hackread.com/poco-rat-malware-exploits-spanish-speaking-users/
[ ]
This Meeting Should Have Been an Email https://objective-see.org/blog/blog_0x7A.html
[ ]
Rite Aid Becomes RansomHub's Latest Victim After Data Breach https://www.darkreading.com/cyberattacks-data-breaches/rite-aid-ransomhub-victim-data-bre...
[ ]
ZDI shames Microsoft for – yet another – coordinated vulnerability disclosure snafu https://go.theregister.com/feed/www.theregister.com/2024/07/15/z...
[ ]
Hacking Scientific Citations https://www.schneier.com/blog/archives/2024/07/hacking-scientific-citations.html
[ ]
Well-Established Cybercriminal Ecosystem Blooming in Iraq https://www.darkreading.com/threat-intelligence/cybercriminal-ecosystem-flourishes-iraq
[ ]
GitHub Token Leak Exposes Python's Core Repositories to Potential Attacks https://thehackernews.com/2024/07/github-token-leak-exposes-pythons-core.htm...
[ ]
Microsoft shares temp fix for Windows 11 Photos not launching https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-temp-fix-for-windows-11...
[ ]
Disney “breached”, data dumped online https://www.malwarebytes.com/blog/news/2024/07/disney-breached-data-dumped-online
[ ]
Data breach confirmed by Rite Aid following RansomHub claims https://www.scmagazine.com/brief/data-breach-confirmed-by-rite-aid-following-ransomhub-cl...
[ ]
Nearly $25M added to BlackSuit wallet after CDK Global hack https://www.scmagazine.com/brief/nearly-25m-added-to-blacksuit-wallet-after-cdk-global-hac...
[ ]
Immediate weaponization of PoC exploits detailed https://www.scmagazine.com/brief/immediate-weaponization-of-poc-exploits-detailed
[ ]
June Windows Server updates break Microsoft 365 Defender features https://www.bleepingcomputer.com/news/microsoft/june-windows-server-updates-break-mi...
[ ]
Facebook ads for Windows desktop themes push info-stealing malware https://www.bleepingcomputer.com/news/security/facebook-ads-for-windows-themes-push...
[ ]
RT web3 is going just great: Minterest hacked for $1.4 million July 14, 2024
[ ]
Squarespace-registered DeFi platforms subjected to DNS hijacking https://www.scmagazine.com/brief/squarespace-registered-defi-platforms-subjected-to-d...
[ ]
Medusa ransomware claims American Golf Corporation hack https://www.scmagazine.com/brief/medusa-ransomware-claims-american-golf-corporation-hack
[ ]
Alleged Disney breach admitted by suspected LockBit-linked hacktivist group https://www.scmagazine.com/brief/alleged-disney-breach-admitted-by-suspect...
Private Feed for M09Ic
[ ]
kpcyrd starred rustls/tokio-rustls
[ ]
mozhu1024 starred dim13/otpauth
[ ]
gh0stkey starred Lakr233/Asspp
[ ]
gh0stkey starred opendatalab/PDF-Extract-Kit
[ ]
gh0stkey starred microsoft/MInference
[ ]
4ra1n starred elliot-bia/nessus
[ ]
Rvn0xsy starred moloch--/sliver-py
[ ]
ourren starred usememos/memos
[ ]
gh0stkey started following evilsocket
[ ]
gh0stkey starred evilsocket/cake
[ ]
Ridter starred rzte/pdf-exploit
[ ]
phith0n starred usememos/memos
[ ]
theLSA starred Doriandarko/claude-engineer
[ ]
theLSA starred melody27/behinder_decrypt
[ ]
theLSA starred senzhk/ADBKeyBoard
[ ]
theLSA starred Guovin/TV
[ ]
theLSA starred BlackSnufkin/BYOVD
[ ]
theLSA starred sgxgsx/BlueToolkit
[ ]
theLSA starred MInggongK/jeecg-
[ ]
theLSA started following ben-sb
[ ]
theLSA starred shanshanerxi/Memory-horse
[ ]
theLSA starred atlantsecurity/windows-hardening-scripts
[ ]
theLSA starred jingsongliujing/OnnxOCR
[ ]
theLSA starred leondz/garak
[ ]
theLSA starred agencyenterprise/PromptInject
[ ]
theLSA starred ottosulin/awesome-ai-security
[ ]
theLSA starred rzte/pdf-exploit
[ ]
theLSA starred ProcessusT/Venoma
[ ]
theLSA starred outflanknl/Scripts
[ ]
theLSA starred mvelazc0/BadZure
安全客-有思想的安全新媒体
[ ]
超过200万人在针对Snowflake的攻击中受到影响
[ ]
在 NuGet 供应链攻击中发现的 60 个新恶意包
[ ]
基于RADIUS协议的重大安全漏洞“BlastRADIUS”被发现
[ ]
Exim MTA 中的关键漏洞可能允许攻击者向用户收件箱投递恶意软件
[ ]
欧盟表示,埃隆·马斯克(Elon Musk)的X允许虚假信息肆虐
[ ]
新型 Poco RAT 在网络钓鱼活动中瞄准讲西班牙语的受害者
[ ]
再次发现了 mSpy 的漏洞:数百万监控软件购买者的信息曝光
[ ]
Google 为 VM Hypervisor 举办 $250K 漏洞赏金竞赛
[ ]
微软如何考虑网络安全,以及在网络安全方面的投资和战略
[ ]
360 AI员工[红衣]入职事业部,一人带飞全部门,提效300%!
CXSECURITY Database RSS Feed - CXSecurity.com
[ ]
lajeh - SQL Injection vulnerability
Files ≈ Packet Storm
[ ]
Geoserver Unauthenticated Remote Code Execution
[ ]
Ubuntu Security Notice USN-6898-1
[ ]
Ubuntu Security Notice USN-6897-1
[ ]
Red Hat Security Advisory 2024-4549-03
[ ]
Red Hat Security Advisory 2024-4548-03
[ ]
Red Hat Security Advisory 2024-4547-03
[ ]
jSQL Injection 0.101
[ ]
Red Hat Security Advisory 2024-4546-03
[ ]
Red Hat Security Advisory 2024-4545-03
[ ]
Red Hat Security Advisory 2024-4544-03
[ ]
Red Hat Security Advisory 2024-4543-03
[ ]
Red Hat Security Advisory 2024-4542-03
[ ]
Red Hat Security Advisory 2024-4541-03
[ ]
Red Hat Security Advisory 2024-4537-03
[ ]
Red Hat Security Advisory 2024-4533-03
[ ]
Red Hat Security Advisory 2024-4529-03
[ ]
Red Hat Security Advisory 2024-4528-03
[ ]
Red Hat Security Advisory 2024-4527-03
[ ]
Red Hat Security Advisory 2024-4517-03
[ ]
Red Hat Security Advisory 2024-4508-03
[ ]
Red Hat Security Advisory 2024-4502-03
[ ]
Red Hat Security Advisory 2024-4501-03
[ ]
Red Hat Security Advisory 2024-4500-03
[ ]
Red Hat Security Advisory 2024-4326-03
[ ]
Red Hat Security Advisory 2024-2106-03
Doonsec's feed
[ ]
一款集成了fofa、zoomeye、censys、鹰图平台、360quake的信息收集工具
[ ]
再下一城,美国NSA和FBI完全封禁中国大陆IP的访问
[ ]
《讲点带劲的》
[ ]
招聘|南京|中高级渗透测试工程师|15-30K
[ ]
【0 day】阿里 NACOS 远程命令执行漏洞
[ ]
标识沪通行 | 上海市通信管理局副局长戴斌一行赴市第六人民医院临港院区开展标识应用调研
[ ]
逆向学习汇编篇 -- 二进制移位与数学原理
[ ]
逆向学习汇编篇 -- 深入解析有符号除法与负数运算
[ ]
红队武器库漏洞利用工具合集整理(7月11日更新)
[ ]
fastjson漏洞批量检测工具(7月12日更新)
[ ]
红队实战教学 -- 内网安全扫描与权限维持策略
[ ]
每日资源(7月15日更新)
[ ]
国家数据局数据资源司2024年研究课题征集公告
[ ]
首届全国智能算法对抗挑战赛正式启动
[ ]
赛迪顾问启动《2023-2024中国商用密码行业发展报告》调研工作
[ ]
美国国防部再次发起AI安全“军备竞赛” 加速建立AI安全攻防研究、验证机制迫在眉睫
[ ]
重大事故!美国电信巨头AT&T几乎所有用户的电话记录泄露
[ ]
关于最新 Nacos RCE 限制条件
[ ]
关于网传的nacos最新0day
[ ]
哥斯拉PHP webshell 全版本免杀,可直接使用!
[ ]
多人协同信息安全渗透测试报告编写/导出平台 - SecReport
[ ]
专家剖析:涉诈案件电子数据线索挖掘
[ ]
奖奖奖!2024年美亚柏科司法鉴定中心满意度问卷正式开启
[ ]
新的 HardBit 勒索软件 4.0 使用密码保护来逃避检测
[ ]
从甲方视角看乙方商业化安全产品的需求
[ ]
G.O.S.S.I.P 阅读推荐 2024-07-15 ProveriT
[ ]
API渗透测试
[ ]
一名合格红队的成长之路
[ ]
加入T00ls,与网络安全精英同行!
[ ]
最新Nacos 漏洞复现与修复建议
[ ]
0day预警 | 已复现Github公开nacos rce的exp(小白友好)
[ ]
登陆功能中存在的请求走私问题
[ ]
攻防世界misc题目删库跑路
[ ]
Linux | UPX变形壳脱壳Tips
[ ]
十周年庆典 | 冠程科技十周年庆典圆满举办!
[ ]
NACOS RCE 0day POC分析及复现
[ ]
紧急修复!Nacos 0day POC 及修复方式
[ ]
MOMENTUM: 1靶场实战
[ ]
【IoT安全】大疆御 3 无人机研究第一部分:固件分析(转载)
[ ]
【漏洞预警-已复现】FOGPROJECT 文件名命令注入漏洞(CVE-2024-39914)
[ ]
全球视野 | 国际网安快讯(第19期)
[ ]
前沿 | 美国国防部再次发起AI安全“军备竞赛” 加速建立AI安全攻防研究、验证机制迫在眉睫
[ ]
关注 | 中央网信办启动“清朗·2024年暑期未成年人网络环境整治”专项行动
[ ]
专家观点 | 推动人工智能治理迈向创新发展阶段
[ ]
议题征集 | 2024 CCS成都网络安全系列活动定档9月
[ ]
国际 | 日本提升网络空间战力凸显野心
[ ]
观点 | “刷脸”技术应用的风险防范与规制
[ ]
起底电诈丨转给父母!500元投资“国家项目”获利30万元?这些骗局专坑老年人→
[ ]
报告 | 仪综所欧阳劲松:以高水平安全保障新质生产力发展(附视频+PPT)
[ ]
荐读丨美军零信任体系工程将武器IT系统纳入范围
[ ]
【倒计时】2024数字政府和政府网站评估指标意见征求研讨会即将召开
[ ]
0day?传疯了
[ ]
干货|安全方面的笔记/工具/漏洞合集 建议收藏
[ ]
「HVV须知」内网渗透-常用工具免杀
[ ]
【论坛】回顾 | u200b第八届“中国网络法治30人论坛”分论坛一“网络强国与新质生产力的法治保障”
[ ]
【论坛】回顾 | u200b第八届“中国网络法治30人论坛”分论坛二“网络法律体系与党内法规建设”
[ ]
【资讯】内蒙古自治区工信厅印发《内蒙古自治区数字化车间和智能工厂认定管理办法》
[ ]
Apple地理定位API暴露了全球WiFi接入点
[ ]
迪士尼遭黑客攻击 超1.1TB数据外泄
[ ]
渗透测试红队工具Cobalt strike
[ ]
腾讯云作为ZTNA领域代表厂商入选Gartner®《2024年中国基础设施战略成熟度曲线》报告
[ ]
Java安全-CC6反序列化
[ ]
Nacos最新0day漏洞的临时修补方案
[ ]
新浪对话齐向东:大模型应用从书呆子到专家还有很长的路要走
[ ]
攻防演习丢分“重灾区”避坑指南(内附免费高级工具)
[ ]
SW-5010&S3200-10T-2F全千兆网管型交换管理员密码重置
[ ]
【新】nacos RCE 0day
[ ]
【安全圈】北京海淀警方发布三起严厉打击涉网违法犯罪案例
[ ]
【安全圈】超过200万人在针对Snowflake的攻击中受到影响
[ ]
【安全圈】仅需22分钟,刚公开的漏洞PoC就被黑客利用
[ ]
【安全圈】在 NuGet 供应链攻击中发现的 60 个新恶意包
[ ]
仅22分钟,漏洞PoC刚公开就被黑客利用
[ ]
国光:透彻掌握Web安全,只要花499
[ ]
迪士尼遭黑客入侵,泄露1.2TB内部数据
[ ]
PingRAT:一款基于ICMP的隐蔽型C2流量转发工具
[ ]
第二十期《平航电子取证技术简报》实物刊来了!
[ ]
“去NAT44”时代的关键挑战——IPv6应用安全防护
[ ]
《数据安全技术 个人信息保护合规审计要求(征求意见稿)》发布
[ ]
230亿美元!Alphabet据称接近达成最大收购案 加速进军网络安全领域
[ ]
ForCloud全栈安全体验 | 一站式云安全托管限时试用 开启全能高效攻防
[ ]
并购新纪录!Google拟豪掷230亿美金收购Wiz
[ ]
中安协数安委主任委员赵林一行莅临天防安全参观调研
[ ]
我把自己的书签导出,然后整理成了自己的专属导航页
[ ]
ISC.AI 2024白帽峰会议题征集+街区招募,不负期待,热血开场!
[ ]
亿级安全能力礼包,免费ING!
[ ]
喜讯!数字安全基地+1!产教融合中心+1!
[ ]
第二届“天网杯”网络安全大赛启动
[ ]
实力认可!360斩获信息技术应用创新典型解决方案殊荣
[ ]
金盾信安 | 网络和数据领域资讯第19期(2024.7.9-2024.7.15)
[ ]
网安标委就国家标准《数据安全技术 个人信息保护合规审计要求》征求意见
[ ]
《全国公共数据运营年度报告(2023)》发布
[ ]
网络工程师干货:TCP/IP协议大全
[ ]
安全卫士 | 魔方安全漏洞周报
[ ]
动态 | 第四十四期安世加沙龙之外企企业网络安全与隐私合规在上海成功举办
[ ]
重磅官宣 | 2024 CCS成都网络安全系列活动定档9月,全球议题征集中!
[ ]
漏洞通告|Nacos Server 远程命令执行 0day
[ ]
中运科技、中移集成、启明星辰携手共筑数据要素安全流通新篇章
[ ]
【已复现】泛微 E-COLOGY存在SQL注入漏洞
[ ]
在STM32F4微控制器上进行电压故障注入
[ ]
【0day】Nacos SQL注入导致的命令执行
cloud world
[ ]
构建并运行 eBPF 应用 - Part 2
Cerbero Blog
[ ]
Cerbero Suite 7.7 Release
[ ]
File Miner Package
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
[ ]
新的 Blast-RADIUS 攻击可绕过广泛使用的 RADIUS 身份验证
[ ]
安全动态回顾 | “数安护航”专项行动工作推进会在京召开 RockYou2024数据泄露近100亿明文密码流入黑市
[ ]
重磅官宣 | 2024 CCS成都网络安全系列活动定档9月,全球议题征集中!
Blogs dade
[ ]
Weekly Retro 2024-W28
Binary Ninja
[ ]
Debug Visualizations
Reverse Engineering
[ ]
/r/ReverseEngineering's Weekly Questions Thread
[ ]
Reversing .net application
SentinelOne
[ ]
PinnacleOne ExecBrief | AI’s Potential for Hacking
[ ]
Managed Detection and Response (MDR) Beyond the Endpoint
Malwarebytes
[ ]
How an AI “artist” stole a woman’s face, with Ali Diamond (Lock and Code S05E15)
[ ]
Disney “breached”, data dumped online
[ ]
A week in security (July 8 – July 14)
奇客Solidot–传递最新科技情报
[ ]
新加坡 2023 年总和生育率降至 0.97
[ ]
AI 公司股价上涨速度远超收益预期
[ ]
新加坡要求银行在三个月内淘汰一次性密码
[ ]
GNOME 基金会执行董事 Holly Million 卸任
[ ]
圆周率 π 计算到 202 万亿位
[ ]
两只狮子在河马和鳄鱼出没的水域游了约 1.5 公里
[ ]
PCSX2 2.0 释出
[ ]
韩国计划用激光器打击来自北方的无人机
[ ]
美国半导体设备对华销售占比增至四成
[ ]
德国将于 2026 年底前在 5G 网络禁用华为和中兴
[ ]
AT&T 向黑客支付了 37 万美元赎金
[ ]
Valve Steam 平台在 2021 年只有 79 名员工
[ ]
Linux Kernel 6.10 释出
FreeBuf网络安全行业门户
[ ]
招聘!桔子数科招人啦!
[ ]
并购新纪录!Google将豪掷230亿美金震撼收购Wiz!
[ ]
VSRC,邀你加入暑期计划!
[ ]
迪士尼遭黑客入侵,泄露1.2 TB内部数据
[ ]
万万没想到,这类隐秘的“漏洞”才是黑客最喜欢的目标
[ ]
仅需22分钟,刚公开的漏洞PoC就被黑客利用
[ ]
FreeBuf早报 | 南非矿业巨头遭网络攻击;日本拟修订《个人信息保护法》
text/plain
[ ]
Browser Features: Find in Page
奇安信 CERT
[ ]
【已复现】泛微e-cology9 WorkflowServiceXml SQL注入漏洞安全风险通告
[ ]
安全热点周报:本周新增两个微软在野利用漏洞,请及时更新修复!
腾讯玄武实验室
[ ]
每日安全动态推送(7-15)
雷神众测
[ ]
雷神众测漏洞周报2024.07.08-2024.07.14
看雪学苑
[ ]
春秋杯Re 2024 赛题解析
[ ]
几乎所有1.1亿客户都受影响,美国电信巨头通话记录数据遭窃
[ ]
最新!0day windows 课程更新3节
吾爱破解论坛
[ ]
暑假开放注册微信抽奖活动,先送20个账号注册码或300论坛币,下午两点开奖,详见:【开放注册公告】吾爱破解论坛2024年7月21日暑假开放注册公告。
微步在线研究响应中心
[ ]
已捕获在野利用,泛微e-cology9 远程命令执行漏洞
安全内参
[ ]
重大事故!美国电信巨头AT&T几乎所有用户的电话记录泄露
[ ]
并购新纪录!Google拟豪掷230亿美金收购Wiz
虎符智库
[ ]
深度:头部网安企业半年度市场重点与产品方向盘点
信息安全国家工程研究中心
[ ]
近期网安资讯动态盘点(2024-7上)
360漏洞云
[ ]
ISC.AI 2024白帽峰会议题征集+街区招募,不负期待,热血开场!
关键基础设施安全应急响应中心
[ ]
关键基础设施安全资讯周报20240715期
[ ]
全球数据跨境流动合规 半月观察(第三十二期)
[ ]
当前美国漏洞治理体系面临的挑战与应对举措
[ ]
南非矿业巨头遭网络攻击:被迫隔离IT系统 企业运营受干扰
信安之路
[ ]
四川大学不要信息安全专业啦?
极客公园
[ ]
成立 1 年估值超 100 亿、红杉软银争投,这家人形机器人公司做对了什么?
[ ]
借「AI 东风」,智能戒指可能是下一个 Apple Watch
[ ]
谷歌或 230 亿美元收购安全公司;特朗普遇刺,硅谷巨头发声支持;特斯拉新 Model Y 设计曝光 | 极客早知道
安全牛
[ ]
5项网络安全推荐性国家标准计划下达;谷歌拟以230亿美元收购以色列初创云安全公司Wiz|牛览
[ ]
FishXProxy:一款“终极强大”的新型网络钓鱼工具包
青衣十三楼飞花堂
[ ]
WEB前端逆向看过的参考资源
山石网科安全技术研究院
[ ]
针对NGFW的防护规则绕过方法研究
CNCERT国家工程研究中心
[ ]
全球数据跨境流动合规 半月观察(第三十二期)
[ ]
CNCERT国家工程研究中心安全资讯周报20240715期
[ ]
Apple地理定位API暴露了全球WiFi接入点
[ ]
新出现的 Eldorado 勒索软件针对 Windows、VMware ESXi VM
京东安全应急响应中心
[ ]
JSRC 外部威胁处理规则V8.1
安全研究GoSSIP
[ ]
G.O.S.S.I.P 阅读推荐 2024-07-15 ProveriT
数世咨询
[ ]
4thDSC闭门讨论观点分享——以数据为中心的网络安全
字节跳动技术团队
[ ]
字节跳动基于TrafficRoute DNS的超千亿级调度解析优化实践
CNVD漏洞平台
[ ]
CNVD漏洞周报2024年第28期
[ ]
上周关注度较高的产品安全漏洞(20240708-20240714)
甲方安全建设
[ ]
专题:2024 一些 C2 反制
迪哥讲事
[ ]
登陆功能中存在的请求走私问题
360数字安全
[ ]
亿级安全能力礼包,免费ING!
[ ]
喜讯!数字安全基地+1!产教融合中心+1!
[ ]
第二届“天网杯”网络安全大赛启动
[ ]
实力认可!360斩获信息技术应用创新典型解决方案殊荣
知道创宇404实验室
[ ]
威胁情报 |Patchwork 组织更新武器库,首次利用 Brute Ratel C4 和 PGoshell 增强版发起攻击
安全419
[ ]
安全419企业探营 | 走进安恒信息
[ ]
2024 CCS成都网络安全系列活动定档9月 全球议题征集中
[ ]
资料下载 | 个人信息保护合规审计要求国标、中国互联网发展报告
希潭实验室
[ ]
Nacos最新0day漏洞的临时修补方案
Securityinfo.it
[ ]
Proteggere le nuove superfici di attacco con il Cloud Security Posture Management
[ ]
HardBit 4.0, il ransomware che usa passphrase per eludere i controlli
ICT Security Magazine
[ ]
No Secure SDLC, No Party. Perchè è fondamentale implementare la sicurezza in ogni fase del Ciclo di Vita del Prodotto
SANS Internet Storm Center, InfoCON: green
[ ]
Protected OOXML Spreadsheets, (Mon, Jul 15th)
[ ]
ISC Stormcast For Monday, July 15th, 2024 https://isc.sans.edu/podcastdetail/9052, (Mon, Jul 15th)
Schneier on Security
[ ]
Hacking Scientific Citations
TaoSecurity Blog
[ ]
My First Book is 20 Years Old Today
Over Security - Cybersecurity news aggregator
[ ]
Patagonia invaded privacy by using AI to analyze customer service interactions, lawsuit alleges
[ ]
AT&T reportedly paid ransom for deletion of stolen call logs after culprit allegedly detained
[ ]
Feds break into suspected Trump shooter’s phone
[ ]
Kaspersky is shutting down its business in the United States
[ ]
MuddyWater replaces Atera by custom MuddyRot implant in a recent campaign
[ ]
Tether freezes $29 million of cryptocurrency connected to Cambodian marketplace accused of fueling scams
[ ]
Car dealership company AutoNation says CDK ransomware incident cut into quarterly earnings
[ ]
New BugSleep malware implant deployed in MuddyWater attacks
[ ]
Hacktivist Groups “People’s Cyber Army” And “HackNeT” Launch Trial DDoS Attacks on French Websites; prior to the Onslaught during Paris Olympics
[ ]
Microsoft shares temp fix for Windows 11 Photos not launching
[ ]
SEXi ransomware rebrands to APT INC, continues VMware ESXi attacks
[ ]
Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks
[ ]
Investigating the New Jellyfish Loader
[ ]
Facebook ads for Windows desktop themes push info-stealing malware
[ ]
June Windows Server updates break Microsoft 365 Defender features
[ ]
Australia tells Russia to 'back off' after Kremlin criticizes espionage allegations
[ ]
Proteggere le nuove superfici di attacco con il Cloud Security Posture Management
[ ]
HardBit 4.0, il ransomware che usa passphrase per eludere i controlli
[ ]
How insecure is Avast Secure Browser?
[ ]
Rite Aid confirms a ‘limited cybersecurity incident’ after ransomware group claims attack
[ ]
La sicurezza dei dispositivi mobile: focus su tre minacce per Android
[ ]
How to install NetHunter on TicWatch Pro
[ ]
Detecting Living Off The Land attacks with Wazuh
Trend Micro Research, News and Perspectives
[ ]
CVE-2024-38112: Void Banshee Targets Windows Users Through Zombie Internet Explorer in Zero-Day Attacks
TorrentFreak
[ ]
Canada’s Federal Court Grants NBA, NHL, & Premier League Piracy Blockades
[ ]
RIAA Sues Verizon After ISP “Buried Head in Sand” Over Subscribers’ Piracy
The Register - Security
[ ]
Kaspersky culls staff, closes doors in US amid Biden's ban
[ ]
ZDI shames Microsoft for – yet another – coordinated vulnerability disclosure snafu
[ ]
Infoseccers claim Squarespace migration linked to DNS hijackings at Web3 firms
[ ]
Google reportedly in talks to buy infosec outfit Wiz for $23 billion
[ ]
I spy another mSpy breach: Millions more stalkerware buyers exposed
[ ]
UK cyber-boss slams China's bug-hoarding laws
Krebs on Security
[ ]
Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks
Computer Forensics
[ ]
Volatility3 on windows 11 current update
[ ]
Mounting Linux Disk Images in Windows
[ ]
Digital Corpora Narcos Scenario Discussion
[ ]
Use of shadow copying
[ ]
Unlocking phones protected by passwords with Cellebrite
Technical Information Security Content & Discussion
[ ]
Getting Started with Hollow Process Injection for beginners to intermediate
[ ]
SharpHound Detection
[ ]
Security's Achilles' Heel: Vulnerable Drivers on the Prowl
[ ]
MailGoose: Your Solution to Curb E-mail Spoofing
Your Open Hacker Community
[ ]
Hi so im basically trying to simulate a dos attack on a wireless network. Has anyone got any ideas as to what I can use for the wireless network? I have tried to maybe use my own mobile hotspot but have not been able to get this work. Once i have done the attack i will capture the packets in wiresha
The Hacker News
[ ]
GitHub Token Leak Exposes Python's Core Repositories to Potential Attacks
[ ]
10,000 Victims a Day: Infostealer Garden of Low-Hanging Fruit
[ ]
CRYSTALRAY Hackers Infect Over 1,500 Victims Using Network Mapping Tool
[ ]
Singapore Banks to Phase Out OTPs for Online Logins Within 3 Months
[ ]
New HardBit Ransomware 4.0 Uses Passphrase Protection to Evade Detection
Security Affairs
[ ]
Ransomware groups target Veeam Backup & Replication bug
[ ]
AT&T paid a $370,000 ransom to prevent stolen data from being leaked
[ ]
HardBit ransomware version 4.0 supports new obfuscation techniques
[ ]
Dark Gate malware campaign uses Samba file shares
Information Security
[ ]
Another example of phishing using trusted resources
[ ]
CVE-2024-4879 :: Improper Input Validation Vulnerability in ServiceNOW
[ ]
Week in Brief #60: Blast-RADIUS Flaw, AI Disinformation Tool, CISO Lawsuits, Interview Tips
Deeplinks
[ ]
EFF to FCC: SS7 is Vulnerable, and Telecoms Must Acknowledge That
威胁猎人Threat Hunter
[ ]
2024年上半年保险行业数据泄露风险态势报告
Posts By SpecterOps Team Members - Medium
[ ]
Mythic 3.3 Beta: Rise of the Events
Security Weekly Podcast Network (Audio)
[ ]
Solving the Complexities of Cyber Insurance for SMBs - Brian Fritton - BSW #356
每日安全资讯(2024-07-16)