issues
search
chainreactors
/
picker
将你的repo变为讨论社区
GNU General Public License v3.0
104
stars
19
forks
source link
[每日信息流] 2024-07-25
#602
Closed
chainreactorbot
closed
1 month ago
chainreactorbot
commented
2 months ago
每日安全资讯(2024-07-25)
Doonsec's feed
[ ]
HVV-7-23 情报日记
[ ]
【HVV情报】2024-07-24
[ ]
【HVV情报】2024-07-23
[ ]
情报共享也有人搞事情,很无奈
[ ]
7.24hvv情报
[ ]
攻防演练情报-1
[ ]
HVV已经几天了,师傅们来聊聊
[ ]
2024HVV日记 | 新版Hvv倒计时出炉啦!更多精彩内容...
[ ]
吃瓜、又跟娱乐圈有关
[ ]
一款自动化SQL盲注(BSQLI)安全检测工具
[ ]
记一次任意文件读取漏洞的挖掘
[ ]
Apache CloudStack SAML 签名排除漏洞(CVE-2024-41107)
[ ]
秦安:美公布最新核弹数量,台海疑似出现美无人舰艇,到决战时刻
[ ]
牟林:特朗普推倒了拜登政府的贞洁牌坊,美媒如何自圆其说?
[ ]
王常胜:为挽救民主党的颓势,拜登可能被以非常规的方式退选!
[ ]
王常胜:人工智能的无原则滥用,必将扼杀科技创新、阻碍社会发展
[ ]
[7.24]护网第三天情报全面总结,棉花糖在朋友圈大骂?
[ ]
xxx的攻击xxx一直都很可以的
[ ]
7月24日hvv情报推送
[ ]
攻防演练中钓鱼全流程梳理
[ ]
Cobalt Strike流量改造
[ ]
2024Hvv【在线更新Poc合集】
[ ]
【工具】一行代码查询用户注册的所有网络平台-Sherlock
[ ]
【征稿通知】第四届全国开源情报技术大会(COSINT 2024)
[ ]
百家讲坛 | 裴伟伟:微软蓝屏史诗级事件深度分析与启示
[ ]
Formosa Crypto – 实践中的高可靠性加密软件
[ ]
SSO 和无密码技术攻击者指南
[ ]
车联网(智能网联汽车)密码支撑标准体系建设指南 2022
[ ]
绕过 Web 代理,这样您的网络钓鱼就不会窒息
[ ]
黑客组织正在利用CrowdStrike公司发起恶意攻击
[ ]
实战解读:Llama Guard 3 & Prompt Guard
[ ]
2024 HW漏洞威胁情报合集
[ ]
专题·漏洞治理 | 软件安全研发成熟度模型研究与实践
[ ]
专题·漏洞治理 | 安全验证导向的漏洞管理方案分析
[ ]
2024HW漏洞/IP/钓鱼样本等汇总(0724)
[ ]
夏风送来新的瓜
[ ]
消息称黑客泄露五角大楼IT服务提供商Leidos的内部文件
[ ]
猎鹰agent BSOD事件成因报告
[ ]
day2-HVV四贱客陆续登场:帆xx、xx微、xx远、xx友
[ ]
常态期讨老口子3: JeecgBoot 模板注入分析
[ ]
蝉鸣半夏,心向网安!2024InForSec夏令营圆满落幕
[ ]
【7/24特辑,就2个!】恒脑协助在野漏洞分析显神威
[ ]
网络安全信息与动态周报2024年第29期(7月15日-7月21日)
[ ]
java就业卷成麻花??这个新兴赛道还很宽→
[ ]
惊!Android手机请尽快升级:电报0DAY正在影响你的手机安全
[ ]
报告丨国家数据局:数字中国发展报告-数字安全和治理体系更加完善(附下载)
[ ]
荐读丨微软蓝屏事件,为何多数中国企业幸免
[ ]
今日hw情报-某小众CMS 0day 反序列化漏洞
[ ]
pulse - rust开发的一款红队快速信息探测工具
[ ]
【1day】小学智慧校园信息管理系统 Upload 文件上传漏洞【附poc】
[ ]
这个研发网约车外挂的犯罪团伙被打掉
[ ]
为什么直播间的福袋你一直抢不到?
[ ]
AWS S3 Bucket配置错误导致敏感信息泄露
[ ]
内网渗透-域内权限划分
[ ]
城市供暖系统遭网络攻击被关闭,大量居民在寒冬下停暖近2天
[ ]
数据泄漏论坛发生数据泄漏:20万BreachForums会员曝光
[ ]
第三天攻防漏洞更新,最快最新!
[ ]
人社部新工种 | 密码技术应用员(四级)培训招生开启
[ ]
2024HVV-day3 漏洞情报
[ ]
【论文速读】| MoRSE:利用检索增强生成技术填补网络安全专业知识的空白
[ ]
Wiz 拒绝谷歌 230 亿美元的收购要约
[ ]
【安全圈】Telegram曝零日漏洞,允许发送伪装成视频的恶意APK
[ ]
「漏洞复现」AnalyticsCloud 分析云 任意文件读取漏洞
[ ]
国安部披露一起间谍案
[ ]
赋能智慧社区建设!“图数融合”边缘智慧小站助力社区安全管理
[ ]
近期值得关注的IOC(2024-07-24)
[ ]
我们仔细分析了使数百万Windows 蓝屏死机的CrowdStrike代码
[ ]
SAP AI Core中严重的 “SAPwned” 缺陷可引发供应链攻击
[ ]
网络安全公司报告深度分析乌克兰供暖中断网络攻击事件
[ ]
ISC.AI 2024 360行“行行AI化”——AI应用与场景创新论坛议程“剧透”
[ ]
ISC.AI 2024 寻找明星场景·赋能垂直领域 安全大模型联合峰会论坛议程“剧透”
[ ]
ISC.AI 2024 行业未来与大模型融合论坛议程“剧透”
[ ]
ISC.AI 2024高级威胁狩猎分析论坛议程“剧透”
[ ]
Apache CloudStack 中标识为 CVE-2024-41107 的严重漏洞的 PoC
[ ]
自定义恶意payload 的 MSC(Microsoft 管理控制台)文件以供任意执行
[ ]
WhatsApp 技巧:Android 恶意软件可冒充 PDF 文件
[ ]
CVE-2024-4040:CrushFTP VFS 沙箱逃逸
[ ]
新一代权限维持|自定义协议加载恶意文件
[ ]
三原警方破获网络赌博案 | 龙华警方破获杀猪盘诈骗案——涉网犯罪每日情报
[ ]
赶快排查!2024实网攻防演练最新高危漏洞合集
[ ]
超级CSO研修班|“线上播课”预热学习开放报名
[ ]
【这两天一些神POC】不废话
[ ]
一键配置工控渗透测试系统的脚本设计与实现
[ ]
村长是你能干的吗?
[ ]
靖云甲ADR捕获WebLogic远程代码执行0day漏洞
[ ]
UnrealEngine POLYGON 全逆向笔记
[ ]
富士康10亿新能源项目落户郑州!
[ ]
无人驾驶频上热搜!厦门已具备整车信息安全合规检测能力
[ ]
马斯克一句话,特斯拉市值蒸发超4000亿
[ ]
攻防演练之请防守方重点关注威胁情报样本信息
[ ]
2024HW漏洞情报整合
[ ]
如何用traceroute命令发现负载均衡?
[ ]
网安证书怎么选?一篇文章教会你
[ ]
杀疯了!谁说“微软蓝屏”对你没影响?(上)
[ ]
安全简讯(2024.07.24)
[ ]
东南亚非法赌博和人口贩卖主谋赞助欧洲足球俱乐部来推广非法网站
[ ]
起底上门按摩乱象,加强行业监管推动行业自律是关键
[ ]
MySQL jdbc 反序列化分析
[ ]
中安协数安委主任委员赵林一行莅临绿盟科技考察调研
[ ]
2024HVV 威胁情报通(一)
[ ]
一键解密,网络安全神器现已问世!
[ ]
关于阿里云先知暂停漏洞测试的通知
[ ]
论坛·原创 | 强化保密法治建设 促进新时代保密事业高质量发展
[ ]
2024年上半年信贷欺诈风险态势报告
[ ]
腾讯安全招聘!
[ ]
安全跟我学|网络安全IT用语图鉴
[ ]
分享2024黑客最常用的10款黑客工具
[ ]
发布!xray社区又添“新朋” 一文揭秘XAPP!
[ ]
高级渗透测试工程师就业班火热招生中
[ ]
Gartner:跨国企业面临三大网络安全挑战
[ ]
『代码审计』从零开始的Laravel框架学习之旅(3)
[ ]
速测!针对HVV攻击模拟场景更新,网络安全的实战演练场
[ ]
CrowdStrike IT 的技术思考
[ ]
通过StarCTF oob题目学习V8 PWN 入门
[ ]
MS17-010永恒之蓝绕过数字上线
[ ]
【免费领】Kali Linux无线渗透测试入门宝典
[ ]
超级安全| ip已封禁,谁能匹敌
[ ]
创安实验室专栏丨2024年四川省“熊猫杯”网络安全大赛-初赛
[ ]
【非作者-非原创】PuppetMaster-Linux C2端项目
[ ]
万字深度 | Palantir:为我们看不见的数据服务
[ ]
天清汉马任意文件下载
[ ]
漏洞预警 电信 网关 ipping.php 命令执行漏洞
Private Feed for M09Ic
[ ]
kpcyrd forked kpcyrd/cargo-deny from EmbarkStudios/cargo-deny
[ ]
liamg forked liamg/go-getter from hashicorp/go-getter
[ ]
glzjin starred google/mesop
[ ]
gh0stkey starred microsoft/PowerToys
[ ]
nightRainy starred dtolnay/rustversion
[ ]
ourren starred mtianyan/django-react-tyadmin
[ ]
gh0stkey starred exo-explore/exo
[ ]
eust-w started following M09Ic
[ ]
gh0stkey starred iSECPartners/jailbreak
[ ]
gh0stkey starred QwenLM/Qwen2
[ ]
gh0stkey starred nicepkg/aide
[ ]
gh0stkey starred outlaws-bai/Galaxy
[ ]
ourren starred d3ckx1/today-news
[ ]
Safe3 released 南墙 社区版 v5.0.0 at Safe3/uuWAF
[ ]
whwlsfb starred waf/CSharpRepl
[ ]
INotGreen starred Rvn0xsy/Cooolis-ms
Security Boulevard
[ ]
KnowBe4 Unknowingly Hired Fake North Korean IT Worker
[ ]
The Future of Appsec is APIs | Impart Security
[ ]
Guide your SOC Leaders to More Engineering Wisdom for Detection(Part 9)
[ ]
Securing Hugging Face Workloads on Kubernetes
[ ]
USENIX Security ’23 – Detecting Multi-Step IAM Attacks in AWS Environments via Model Checking
[ ]
Are You Configured for Failure?
[ ]
Comic Agilé – Mikkel Noe-Nygaard, Luxshan Ratnaravi – #301 – Striking the Crowd
[ ]
Securing Your Data Center Servers at the Component Level
[ ]
Robot Dog Internet Jammer
[ ]
USENIX Security ’23 – Credit Karma: Understanding Security Implications of Exposed Cloud Services through Automated Capability Inference
SecWiki News
[ ]
SecWiki News 2024-07-24 Review
Recent Commits to cve:main
[ ]
Update Wed Jul 24 06:28:39 UTC 2024
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
[ ]
好City啊!XCon与KCon联合售票,这波重磅福利必须刷起
[ ]
黑客利用 BugSleep 恶意软件部署合法的 RMM
奇安信攻防社区
[ ]
wordperss_country-state-city-auto-dropdown插件未授权sql注入漏洞分析
Tenable Blog
[ ]
ConfusedFunction: A Privilege Escalation Vulnerability Impacting GCP Cloud Functions
Sucuri Blog
[ ]
How to Enable HTTP/2 On a Server
Jiajun的技术笔记
[ ]
2的补码
CXSECURITY Database RSS Feed - CXSecurity.com
[ ]
SRDB Wordpres Replace Title
[ ]
Perten Instruments Process Plus Software 1.11.6507.0 LFI / Hardcoded Credentials
[ ]
Designed by Winzone Softech" Bypass Admin With Noredirect
安全客-有思想的安全新媒体
[ ]
ISC.AI 2024即将召开!四大亮点抢“鲜”看
[ ]
Gcore 融资 6000 万美金推动人工智能创新
[ ]
网络安全公私合作伙伴关系正在兴起
[ ]
代码层面分析:CrowdStrike 配置文件如何导致数百万台 Windows 计算机崩溃
[ ]
可持续技术:边缘计算在能源效率中的作用
[ ]
针对关键基础设施的新 ICS 恶意软件“FrostyGoop”
[ ]
DDoS雇佣网站DigitalStress被警方关闭,疑似所有者被捕
[ ]
黑客利用交换文件对Magento网站进行电子浏览攻击
[ ]
尽管经济形势不明朗,企业仍优先考虑 SaaS 安全投资
[ ]
人工智能+数字安全,稳了!
[ ]
利用Azure人工智能和虚拟机进行尖端网络安全和道德黑客攻击
Files ≈ Packet Storm
[ ]
Ubuntu Security Notice USN-6912-1
[ ]
Gentoo Linux Security Advisory 202407-28
[ ]
Gentoo Linux Security Advisory 202407-27
[ ]
Ubuntu Security Notice USN-6906-1
[ ]
SIM Wisuda 1.0 Insecure Direct Object Reference
[ ]
SLiMS CMS 2.0 SQL Injection
[ ]
Ubuntu Security Notice USN-6910-1
[ ]
Ubuntu Security Notice USN-6530-2
[ ]
StarTask CRM 1.9 SQL Injection
[ ]
UBM CMS 1.2 Insecure Direct Object Reference
[ ]
Ubuntu Security Notice USN-6907-1
[ ]
TAIF LMS 5.8.0 Shell Upload
[ ]
Gentoo Linux Security Advisory 202407-26
[ ]
Ubuntu Security Notice USN-6911-1
[ ]
Ubuntu Security Notice USN-6908-1
[ ]
Vencorp 2.1.1 SQL Injection
[ ]
Webdenim AppUI 1.0 Insecure Direct Object Reference
[ ]
Ubuntu Security Notice USN-6909-1
[ ]
Red Hat Security Advisory 2024-4779-03
[ ]
Red Hat Security Advisory 2024-4776-03
[ ]
Red Hat Security Advisory 2024-4774-03
[ ]
Red Hat Security Advisory 2024-4766-03
[ ]
Red Hat Security Advisory 2024-4762-03
[ ]
Red Hat Security Advisory 2024-4761-03
[ ]
Red Hat Security Advisory 2024-4757-03
paper - Last paper
[ ]
逆向恢复 Protobuf 对象结构
GuidePoint Security
[ ]
Securing Hugging Face Workloads on Kubernetes
Reverse Engineering
[ ]
NES CHR Graphics
RET2 Systems Blog
[ ]
Pwn2Own Automotive: Popping the CHARX SEC-3100
Microsoft Security Response Center
[ ]
Congratulations to the Top MSRC 2024 Q2 Security Researchers!
Malwarebytes
[ ]
TracFone will pay $16 million to settle FCC data breach investigation
daniel.haxx.se
[ ]
changelog changes
[ ]
curl 8.9.0
FreeBuf网络安全行业门户
[ ]
锁定明早9点 | 红蓝军攻防与数据安全论坛 · 北京站
[ ]
R0bl0ch0n TDS——新型附属欺诈计划波及1.1亿用户
[ ]
Wiz 拒绝谷歌 230 亿美元的收购要约
[ ]
FreeBuf早报 | Wiz拒绝谷歌230亿美元的收购要约;20万BreachForums会员曝光
[ ]
谷歌取消在浏览器中弃用第三方cookie的计划,将选择权交还给用户
Wallarm
[ ]
How Can Deliberately Flawed APIs Help In Mastering API Security?
杨龙
[ ]
layui表格换行
Security Blog | Praetorian
[ ]
Exploiting Broken Authentication Control In GraphQL
[ ]
Recursive Amplification Attacks: Botnet-as-a-Service
半块西瓜皮
[ ]
用zig编写Windows的shellcode
rtl-sdr.com
[ ]
Deep-Tempest: Eavesdropping on HDMI via SDR and Deep Learning
黑海洋 - WIKI
[ ]
FinalShell 全版本 在线生成 专业版 离线激活码
腾讯玄武实验室
[ ]
每日安全动态推送(7-24)
微步在线研究响应中心
[ ]
微步 TDP&OneSIG 已于24年4月支持检测、拦截 WebLogic 0day
vivo千镜
[ ]
【vivo助力】大模型安全攻防探索与实践丨XCon2024议题
HackerNews
[ ]
R0bl0ch0n TDS——新型附属欺诈计划波及 1.1 亿用户
[ ]
Wiz 拒绝谷歌 230 亿美元的收购要约
[ ]
谷歌取消在浏览器中弃用第三方 cookie 的计划,将选择权交还给用户
[ ]
超 70% 智利公民遭数据泄露,数据库现于暗网出售
[ ]
安全人士可以从 CrowdStrike 事件中汲取的五点教训
[ ]
黑客论坛发生数据泄露:20 万 BreachForums 会员曝光
[ ]
警惕!黑客组织正在假冒 CrowdStrike 公司进行恶意攻击
[ ]
俄罗斯黑客攻击工业设施,在严冬季节切断乌克兰城市供暖
奇客Solidot–传递最新科技情报
[ ]
低地球轨道日益拥挤,碎片大量积累
[ ]
海底发现奇怪的氧气来源
[ ]
中国科学家在月壤中首次发现分子水
[ ]
日本 AI 用户对信息泄露风险表达担忧
[ ]
日铁与宝钢结束半个世纪的合作
安全内参
[ ]
城市供暖系统遭网络攻击被关闭,大量居民在寒冬下停暖近2天
[ ]
数据泄漏论坛发生数据泄漏:20万BreachForums会员曝光
天御攻防实验室
[ ]
CrowdStrike(乌合之众)恶意软件攻击事件疑似导致核电站停堆
dotNet安全矩阵
[ ]
.NET | 2024hvv 第2天漏洞威胁情报
[ ]
三个国内最专业的.NET安全知识库
丁爸 情报分析师的工具箱
[ ]
【工具】一行代码查询用户注册的所有网络平台-Sherlock
[ ]
【征稿通知】第四届全国开源情报技术大会(COSINT 2024)
KCon 黑客大会
[ ]
KCon·XCon联合购票|惊喜折扣,开启技术夏日狂欢!
关键基础设施安全应急响应中心
[ ]
全球数据跨境流动合规 半月观察(第三十三期)
[ ]
第九个攻击ICS的恶意软件曝光!乌克兰利沃夫市一供暖系统遭攻击中断两天
[ ]
坚持推进数据要素市场化配置改革——国家数据局介绍数据领域改革进展和成效
[ ]
攻击者正滥用URL保护服务来隐藏网络钓鱼链接
[ ]
Telegram零日漏洞被售卖数周:恶意APK文件可伪装成视频消息
中国信息安全
[ ]
论坛·原创 | 强化保密法治建设 促进新时代保密事业高质量发展
[ ]
专题·漏洞治理 | 安全验证导向的漏洞管理方案分析
[ ]
专题·漏洞治理 | 软件安全研发成熟度模型研究与实践
[ ]
关注 | “微软蓝屏”揭示出一个严峻现实
[ ]
专家解读 | 加强网络暴力信息治理 共筑清朗网络空间
[ ]
专家观点 | 加强人工智能伦理治理需“软硬兼施”
[ ]
国际 | 北约新建综合网络防御中心
[ ]
关注 | 警惕!打着“爱国”幌子的投资陷阱盯上了老年人……
默安科技
[ ]
杀疯了!谁说“微软蓝屏”对你没影响?(上)
情报分析师
[ ]
特工训练手册——秘密观察术
[ ]
从任务层面看人工智能对情报分析的影响
[ ]
《全球情报周刊》——洞察世界,一手掌握全球情报动态
极客公园
[ ]
Meta、Google 争相示好,雷朋眼镜为什么成了香饽饽?
[ ]
Meta 发布 LLAMA 3.1;特斯拉无人出租车推迟至 10 月;谷歌将向 Waymo 再投 50 亿美元|极客早知道
CNCERT国家工程研究中心
[ ]
全球数据跨境流动合规 半月观察(第三十三期)
[ ]
第九个攻击ICS的恶意软件曝光!乌克兰利沃夫市一供暖系统遭攻击中断两天
[ ]
Revolver Rabbit 团伙注册了 500,000 个域名用于恶意软件活动
[ ]
警惕!黑客组织正在假冒CrowdStrike公司进行恶意攻击
[ ]
充电桩助攻黑客:电动汽车对新型攻击毫无防御能力
数世咨询
[ ]
“微软蓝屏”启示录丨李少鹏:须做好“风险认知前移”
国家互联网应急中心CNCERT
[ ]
网络安全信息与动态周报2024年第29期(7月15日-7月21日)
京东安全应急响应中心
[ ]
极客集结!巅峰对决!第二届京麒CTF总决赛,5支特邀战队揭榜!
安全牛
[ ]
严打“网红”虚假人设欺诈,抖音安全中心发布专项治理公告;《国家密码管理局商用密码随机抽查事项清单(2024年版)》发布 | 牛览
[ ]
SQL注入攻击实例及防护方法分析
代码卫士
[ ]
我们仔细分析了使数百万Windows 蓝屏死机的CrowdStrike代码
[ ]
SAP AI Core中严重的 “SAPwned” 缺陷可引发供应链攻击
斗象智能安全
[ ]
谁动了我的资产?
黑伞安全
[ ]
常态期讨老口子3: JeecgBoot 模板注入分析
LuxSci
[ ]
Webinar: How to Harness HIPAA-Compliant Marketing & Workflows
字节跳动技术团队
[ ]
打造运营商实时分析平台——浩鲸科技 ByConity 应用实践
Beacon Tower Lab
[ ]
【0724】重保演习每日情报汇总
Over Security - Cybersecurity news aggregator
[ ]
Over 3,000 GitHub accounts used by malware distribution service
[ ]
How to Enable HTTP/2 On a Server
[ ]
Activists accuse proposed UN Cybercrime Treaty of empowering surveillance, repression
[ ]
National Defense University cyber professor tapped as ONCD deputy director
[ ]
Middle East financial institution hit with six-day DDoS attack
[ ]
Docker fixes critical 5-year old authentication bypass flaw
[ ]
Microsoft fixes bug behind Windows 10 Connected Cache delivery issues
[ ]
Encrypted apps still a challenge as FBI probes Trump shooter’s devices, Wray says
[ ]
Bug in update checker blamed for CrowdStrike outages as Congress demands hearing
[ ]
KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack
[ ]
CrowdStrike offers a $10 apology gift card to say sorry for outage
[ ]
Major Russian banks hit with DDoS attacks as Ukraine claims responsibility
[ ]
Google Chrome now warns about risky password-protected archives
[ ]
Qual è la causa dei disservizi di venerdì scorso? Ce la spiega CrowdStrike
[ ]
Popular Hamster Kombat game has become ‘ripe for abuse’ by cybercriminals, researchers warn
[ ]
Hot topics: Can’t-miss sessions at Mandiant’s 2024 mWISE event
[ ]
CrowdStrike: 'Content Validator' bug let faulty update pass checks
[ ]
Operation ShadowCat: Targeting Indian Political Observers via a Stealthy RAT
[ ]
Bangladesh is сoming back online after five days of near-total internet blackout
[ ]
Meta bans 63,000 accounts belonging to Nigeria’s sextortionist Yahoo Boys
[ ]
BreachForums v1 database leak is an OPSEC test for hackers
[ ]
Windows July security updates send PCs into BitLocker recovery
[ ]
A (somewhat) complete timeline of Talos’ history
[ ]
Cloud computing: per il Consorzio Italia Cloud bisogna ridurre la dipendenza da fornitori esteri
[ ]
Emulating and Detecting Scattered Spider-like Attacks
[ ]
COURT DOC: Two Foreign Nationals Plead Guilty to Participation in LockBit Ransomware Group
[ ]
Gestire efficacemente un’ispezione NIS 2, DORA e GDPR: aspetti tecnici e operativi
[ ]
Navigare in sicurezza con i migliori browser per la privacy
[ ]
Plugin WordPress sfruttati per violare i siti Web ed esfiltrare dati: update urgente
[ ]
Aggiornamenti Google Chrome: corrette quattro vulnerabilità con gravità alta
[ ]
Cyber security nell’era del quantum computing. Ci si difende così
[ ]
Modulo PrestaShop compromesso per rubare carte di credito su Facebook: i dettagli
[ ]
Gestione dei fornitori: come implementare un Cybersecurity Supply Chain Risk Management
[ ]
La rinnovata minaccia di StrelaStealer, il malware per il furto di credenziali
甲方安全建设
[ ]
「推安早报」0724 signal反制/wathsapp反制/LangChain风险/红队工具
SANS Internet Storm Center, InfoCON: green
[ ]
"Mouse Logger" Malicious Python Script, (Wed, Jul 24th)
[ ]
ISC Stormcast For Wednesday, July 24th, 2024 https://isc.sans.edu/podcastdetail/9066, (Wed, Jul 24th)
Securityinfo.it
[ ]
Qual è la causa dei disservizi di venerdì scorso? Ce la rivela CrowdStrike
[ ]
Cloud computing: per il Consorzio Italia Cloud bisogna ridurre la dipendenza da fornitori esteri
Schneier on Security
[ ]
Robot Dog Internet Jammer
迪哥讲事
[ ]
记一次任意文件读取漏洞的挖掘
Security Affairs
[ ]
U.S. CISA adds Microsoft Internet Explorer and Twilio Authy bugs to its Known Exploited Vulnerabilities catalog
[ ]
China-linked APT group uses new Macma macOS backdoor version
TorrentFreak
[ ]
Five Men Behind Huge Pirate Streaming Site Want Their Convictions Overturned
[ ]
Piracy Portal ‘Hikari-no-Akari’ Shuts Down Following Legal Pressure
Technical Information Security Content & Discussion
[ ]
Anyone can Access Deleted and Private Repository Data on GitHub
[ ]
Studying 0days: How we hacked Anki, the world's most popular flashcard app
[ ]
intercept network request from poker client
Your Open Hacker Community
[ ]
Open 554 Ports on Shodan
[ ]
Need help
ICT Security Magazine
[ ]
Email Security: I Protocolli di Sicurezza che garantiscono l’Autenticità, l’Integrità e la Riservatezza delle Comunicazioni
netsecstudents: Subreddit for students studying Network Security and its related subjects
[ ]
FrostyGoop: New ICS Malware Targeting Critical Infrastructure
[ ]
Can anyone help with information on IT security specialists and ISO27001?
The Hacker News
[ ]
How a Trust Center Solves Your Security Questionnaire Problem
[ ]
Telegram App Flaw Exploited to Spread Malware Hidden in Videos
[ ]
How to Reduce SaaS Spend and Risk Without Impacting Productivity
[ ]
Patchwork Hackers Target Bhutan with Advanced Brute Ratel C4 Tool
[ ]
CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices
[ ]
Microsoft Defender Flaw Exploited to Deliver ACR, Lumma, and Meduza Stealers
[ ]
CISA Adds Twilio Authy and IE Flaws to Exploited Vulnerabilities List
Information Security
[ ]
Attention Docker Users !! CVE-2024-41110 :: CVSS Score 10 :: Authentication Bypass Vulnerability in Docker may lead to COMPLETE SYSTEM TAKEOVER !!
[ ]
How to create a Burp Suite Extension from SCRATCH (Python)
[ ]
CVE-2024-22442 :: CVSS Score 9.8 :: Authentication Bypass Vulnerability in HPE 3PAR Service Processor.
Social Engineering
[ ]
How can learning social engineering change my perspective on people as a whole?
Computer Forensics
[ ]
What degree/certificate should I look for.
Deep Web
[ ]
Reminder for Newbies
[ ]
Deep web money
[ ]
Torch search engine
Graham Cluley
[ ]
Smashing Security podcast #382: CrowdStrike, Dark Wire, and the Paris Olympics
The Register - Security
[ ]
Oops. Apple relied on bad code while flaming Google Chrome's Topics ad tech
[ ]
Uncle Sam opens probe into CrowdStrike turbulence at Delta Air Lines
[ ]
Windows Patch Tuesday update might send a user to the BitLocker recovery screen
[ ]
Data pilfered from Pentagon IT supplier Leidos
[ ]
School gets an F for using facial recognition on kids in canteen
[ ]
Forget security – Google's reCAPTCHA v2 is exploiting users for profit
[ ]
CrowdStrike blames a test software bug for that giant global mess it made
[ ]
Security biz KnowBe4 hired fake North Korean techie, who got straight to work ... on evil
[ ]
Philippines wipes out its legit online gambling industry to take down scammers
每日安全资讯(2024-07-25)