chainreactors / picker

将你的repo变为讨论社区

GNU General Public License v3.0

104 stars 19 forks source link

[每日信息流] 2024-09-28 #661

Open chainreactorbot opened 20 hours ago

chainreactorbot commented 20 hours ago

每日安全资讯（2024-09-28）

SecWiki News
- [ ] SecWiki News 2024-09-27 Review
奇安信攻防社区
- [ ] 威胁行为者利用GeoServer漏洞CVE-2024-36401
- [ ] 深入探究agent内存马攻击原理
先知安全技术社区
- [ ] 活动正式开始｜14家SRC邀您加入双11安全保卫战
- [ ] Vaadin New Gadgets分享
- [ ] 朝鲜组织Kimsuky投放xml恶意软件
- [ ] 内网渗透该怎么学-小白篇
- [ ] 2024御网杯WEB&MISC WP全解
Files ≈ Packet Storm
- [ ] Nexus Repository Traversal Scanner
- [ ] Linux OverlayFS Local Privilege Escalation
- [ ] Lynis Auditing Tool 3.1.2
- [ ] Ubuntu Security Notice USN-7045-1
- [ ] Ubuntu Security Notice USN-7044-1
- [ ] Ubuntu Security Notice USN-7043-1
- [ ] Ubuntu Security Notice USN-7042-1
- [ ] Ubuntu Security Notice USN-7041-1
- [ ] Red Hat Security Advisory 2024-7312-03
- [ ] Red Hat Security Advisory 2024-7262-03
- [ ] Red Hat Security Advisory 2024-7261-03
- [ ] Red Hat Security Advisory 2024-7260-03
- [ ] Red Hat Security Advisory 2024-7237-03
- [ ] Red Hat Security Advisory 2024-7227-03
- [ ] Red Hat Security Advisory 2024-7213-03
- [ ] Red Hat Security Advisory 2024-7208-03
- [ ] Red Hat Security Advisory 2024-7207-03
- [ ] Red Hat Security Advisory 2024-7206-03
- [ ] Red Hat Security Advisory 2024-7205-03
- [ ] Red Hat Security Advisory 2024-7204-03
- [ ] Red Hat Security Advisory 2024-7203-03
- [ ] Red Hat Security Advisory 2024-7202-03
- [ ] Debian Security Advisory 5775-1
- [ ] Ubuntu Security Notice USN-7040-1
- [ ] Simple Online Banking System 1.0 Insecure Settings
安全客-有思想的安全新媒体
- [ ] 新的恶意软件活动在 Docker 和 Kubernetes 中挖掘加密货币
- [ ] RAISECOM 网关中的严重漏洞被积极利用，数千人面临远程攻击
- [ ] 网络犯罪分子入侵英国铁路网络 Wi-Fi
- [ ] 新的 MIT 协议可在基于云的计算期间保护敏感数据
- [ ] HPE 修补了 Aruba PAPI 中的三个关键安全漏洞
- [ ] 在 OpenPLC 中发现的严重 RCE 漏洞
- [ ] 研究人员称十年前的严重漏洞影响所有 GNU/Linux 系统
- [ ] 内存安全代码的采用使Android更安全
- [ ] Torq宣布C轮融资7000万美元，2024年融资总额达到1.12亿美元
- [ ] 360数字安全联合运营中心正式揭牌，携手源宝科技共筑安全防线！
Doonsec's feed
- [ ] 闭门造车不如同行交流
- [ ] 网络安全交流帮会
- [ ] 黑客囤了9500万条公民数据，竟直接免费公开了
- [ ] TeamViewer for Windows 漏洞可让攻击者提升权限
- [ ] 3191 名美国国会工作人员的数据在暗网中泄露
- [ ] TOP课程狂欢学！好礼包邮送到家！
- [ ] PMP®/ ITIL®有了，下一个证书考什么？！
- [ ] UNC1860组织利用复杂技术手段针对中东地区发起网络攻击——每周威胁情报动态第194期（09.20-09.26）
- [ ] 红蓝攻防实战技术———实战化运营体系的落地（文末赠书3本）
- [ ] 论文一直投不中？保姆级SCI全程投稿发表服务来了！润色、选刊、投稿、返修，直至中刊！
- [ ] Gartner新名词‘可达性’，是炒作吗？
- [ ] .NET 安全基础入门学习知识库
- [ ] web指纹finger字典合并（附源码）
- [ ] [工具测评]16款常见端口扫描工具横向对测评
- [ ] .NET 一款通过虚拟键盘绕过UAC的工具
- [ ] 网络安全网格架构，这个战略级的趋势将如何影响你的安全建设？
- [ ] OpenTelemetry 实战：从 0 到 1 编写一个 Instrumentation
- [ ] 【资料】7月13日刺杀特朗普未遂事件中期审查报告
- [ ] 深入理解linux惊群效应（超详细）
- [ ] 征集启动 | 《基于云计算的金融风控大模型能力要求》标准参编单位公开征集！
- [ ] 工具 | Poc-Monitor
- [ ] 风电场网络安全防护建议与方案
- [ ] 东北大学“谛听”团队受邀参加2024全球工业互联网大会
- [ ] 天地和兴网络准入管理系统荣获2024世界计算大会专题展优秀成果
- [ ] 台湾APT组织攻击活动披露，渗透测试实战指南
- [ ] 人工智能安全认证专家
- [ ] 云计算机安全（2024）
- [ ] 数字银行安全技术解决方案，数字人才白皮书，金融科技人才报告，6G白皮书
- [ ] 关于CWE，你所需要知道的
- [ ] 冯登国院士：网络空间安全未来发展方向
- [ ] 着力推动党的思想建设和中华优秀传统文化贯通融合
- [ ] 企业如何快速实施数据安全态势管理 (DSPM)？
- [ ] 外卖骑手用上“黑科技”？新昌公安捣毁3000万元黑灰团伙
- [ ] 安全研究员在ChatGPT中永久植入虚假信息和恶意指令还可用来窃取用户数据
- [ ] 2024年甲骨文全球云大会152套嘉宾报告分享
- [ ] 从“攻防演习”看：安全的实战化、体系化、常态化
- [ ] 【脚本编写】Nuclei-yaml脚本速成新手教程--文件上传篇3
- [ ] 跨平台漏洞扫描器 -- EZ（9月25日更新）
- [ ] 渗透测试 -- 拿WEBSHELL篇
- [ ] 网络安全知识之家庭和小型办公室防火墙
- [ ] 无意的内部威胁：社会工程-3
- [ ] 【免杀】蚁剑 | 哥斯拉免杀过雷池、D盾、安全狗的 XlByPassWAF 正式发布！
- [ ] 2024年五大危险的网络攻击技术
- [ ] 网络安全知识：网络安全中的EDR是什么？
- [ ] 多款端口扫描工具横向对测评|端口扫描
- [ ] 安卓逆向 -- frida_unpack脱壳脚本原理分析
- [ ] PC逆向 -- DB_TYPE
Der Flounder
- [ ] Moving on to a new place
Tenable Blog
- [ ] Cybersecurity Snapshot: NIST Program Probes AI Cyber and Privacy Risks, as U.S. Gov’t Tackles Automotive IoT Threat from Russia, China
Private Feed for M09Ic
- [ ] INotGreen started following yaojiaogegehe
- [ ] nightRainy starred capstone-engine/capstone
- [ ] phith0n starred heyform/heyform
- [ ] ring04h starred Bogdanp/dramatiq
- [ ] zer0yu starred CISPA-SysSec/atropos-legacy
- [ ] zer0yu starred sv3nbeast/ReadSun2Desk
- [ ] zer0yu starred tw93/Pake
- [ ] zer0yu starred outflanknl/linux_bof_template
- [ ] Rvn0xsy starred ekzhang/sshx
- [ ] Ridter forked Ridter/CppDevShellcode from clownfive/CppDevShellcode
- [ ] Ridter starred clownfive/CppDevShellcode
- [ ] timwhitez starred timwhitez/META-ATTACK-Framework
- [ ] jeffzh3ng starred Dump-GUY/EXE-or-DLL-or-ShellCode
- [ ] Ridter starred CICADA8-Research/COMThanasia
- [ ] timwhitez created a repository timwhitez/META-ATTACK-Framework
- [ ] killeven starred tidwall/gjson
- [ ] 4ra1n starred Bin-Huang/chatbox
- [ ] Ridter starred 1ucky7/jmg-for-Godzilla
- [ ] SeeNanshaneisurely starred M09Ic/SharpRDPConns
- [ ] c0ny1 starred outflanknl/linux_bof_template
- [ ] kondeck2020 started following M09Ic
- [ ] gh0stkey starred onewinner/VulToolsKit
- [ ] 1n7erface started following wh1t3zer
- [ ] Rvn0xsy starred containers/podman
- [ ] Rvn0xsy starred mifi/lossless-cut
- [ ] mozhu1024 starred langgenius/dify
- [ ] ourren starred Shuffle/Shuffle
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
- [ ] GitLab 公布存在严重的管道执行漏洞
Trustwave Blog
- [ ] 2024 Election Threats: Misinformation, Deepfakes, and Cybersecurity
Sucuri Blog
- [ ] How to Know if Your Website Is Hacked
Security Boulevard
- [ ] Locked In – The Cybersecurity Event of the Year
- [ ] How Long Does it Take You to Successfully Identify Phishing Emails?
- [ ] The Kaseya Advantage: 10 Years and $12B in the Making
- [ ] When Innovation Outpaces Financial Services Cybersecurity
- [ ] Unlocking Deeper Visibility and Control Over SaaS Risks
- [ ] USENIX NSDI ’24 – Harmony: A Congestion-free Datacenter Architecture
- [ ] “Hacking” an Election is Harder Than You Think – But Security is Still a Priority
- [ ] Daniel Stori’s Turnoff US: ‘Disney Buys Linux’
- [ ] Daniel Stori’s Turnoff.US: ‘Disney Buys Linux’
- [ ] Daniel Stori’s Turnoff.US: ‘’
一个被知识诅咒的人
- [ ] 华为仓颉语言入门（6）：if条件表达式
- [ ] 华为仓颉语言入门（5）：条件测试
Recent Commits to cve:main
- [ ] Update Fri Sep 27 22:29:07 UTC 2024
- [ ] Update Fri Sep 27 14:32:23 UTC 2024
- [ ] Update Fri Sep 27 06:35:53 UTC 2024
ElcomSoft blog
- [ ] When Speed Matters: Optimizing Disk Imaging
Horizon3.ai
- [ ] Enhancing Cybersecurity Post-Breach: A Comprehensive Guide
Reverse Engineering
- [ ] Ghidra 11.2 has been released!
- [ ] Looking for an iOS reverse engineer
Webroot Blog
- [ ] What you need to know: The biggest cyber threats in 2024
SentinelOne
- [ ] The Good, the Bad and the Ugly in Cybersecurity – Week 39
FreeBuf网络安全行业门户
- [ ] FreeBuf 全球网络安全产业投融资观察（8月）
- [ ] FreeBuf周报 | 起亚经销商网站曝出严重漏洞；黑客囤积法国9500万条公民数据
- [ ] CUPS 漏洞能使攻击者对Linux电脑远程执行任意代码
- [ ] 起亚经销商网站曝出严重漏洞！黑客可在30秒内远程操控数百万辆汽车
安全牛
- [ ] 新品斩获大奖 |国利网安“专项隔离系统”荣获CCIA“2024年网络安全优秀创新成果大赛”优胜奖
- [ ] 黎巴嫩移动设备爆炸事件敲响我国加快信创发展的警钟
- [ ] 股票竞价交易出现异常，上交所发布公告称正在排查原因；印尼税务局遭遇大规模数据泄露，总统等政要个人信息被兜售 | 牛览
- [ ] 2024年攻防场景，0day+Nday组合利用成最主流手段
- [ ] TOP课程狂欢学！好礼包邮送到家！
- [ ] 《新一代网络安全服务应用指南（2024版）》报告发布
- [ ] CSTIS就防范KTLVdoor恶意软件发布风险提示；山西农商联合银行因数据安全管理不力被监管处罚 | 牛览
- [ ] 蝉联！爱加密再次荣获网络安全优秀创新成果大赛优胜奖！
奇客Solidot–传递最新科技情报
- [ ] 英特尔释出最新微码更新修正 13/14 代酷睿处理器崩溃问题
- [ ] 吃鱼可能有助于预防认知衰退
- [ ] OpenAI 领导层变更令外界对其未来产生疑问
- [ ] Libgen 被勒令赔偿出版商 3000 万美元
- [ ] 干细胞逆转女子的糖尿病
- [ ] 企业和机构需要重新训练使用笔和纸
- [ ] Google 在俄罗斯限制创建新账号
- [ ] 苹果从俄罗斯应用商店下架 60 款 VPN 应用
HackerNews
- [ ] 研究人员称十年前的严重漏洞影响所有 GNU/Linux 系统
- [ ] 起亚经销商网站曝出严重漏洞！黑客可在30秒内远程操控数百万辆汽车
腾讯玄武实验室
- [ ] 每日安全动态推送(9-27)
奇安信威胁情报中心
- [ ] 每周高级威胁情报解读(2024.09.20~09.26)
奇安信病毒响应中心
- [ ] 每周勒索威胁摘要
安全客
- [ ] 英国19个火车站公共无线网络遭攻击，恐怖主义信息引发公众恐慌
知道创宇404实验室
- [ ] 【知道创宇404实验室】警惕 Unix 系列 CUPS 多个安全漏洞最终可导致远程代码执行
虎符智库
- [ ] 热点透视 | 黎巴嫩寻呼机爆炸事件颠覆了哪些网络战传统认知？
安全内参
- [ ] 英国主要火车站紧急关停公共WiFi：被黑后传播恐怖主义信息
- [ ] 起亚汽车曝严重漏洞：仅凭车牌号就可远程控制汽车
丁爸情报分析师的工具箱
- [ ] 【资料】7月13日刺杀特朗普未遂事件中期审查报告
奇安信 CERT
- [ ] cups-browsed 远程代码执行漏洞(CVE-2024-47176)安全风险通告
代码卫士
- [ ] 仅凭车牌就能远程控制起亚汽车，漏洞已修复
- [ ] CUPS 缺陷可被用于在 Linux 系统上执行远程代码
青衣十三楼飞花堂
- [ ] 冀朝铸口述回忆录
黑奇士
- [ ] 零一万物曹大鹏出走，两月内三高管离职，数亿美元投资并未照亮黯淡前景
微步在线研究响应中心
- [ ] Unix系统打印服务爆RCE漏洞
阿里云应急响应
- [ ] Unix CUPS 远程代码执行漏洞
看雪学苑
- [ ] Windows PE 文件签名的解析与验证
- [ ] 起亚汽车曝严重漏洞，仅凭车牌便可远程控制起亚汽车
- [ ] 速投简历！本周职位更新
- [ ] Linux pwn 探索篇
安全研究GoSSIP
- [ ] G.O.S.S.I.P 阅读推荐 2024-09-27 Certifiable Black-box Attack 可验证黑盒攻击
中国信息安全
- [ ] 招聘启事 | 中国信息安全测评中心招聘非编资质测评人员
- [ ] 通知 | 国家数据局就《关于促进数据产业高质量发展的指导意见》向社会公开征求意见（附全文）
- [ ] 通知 | 国家数据局就《关于促进企业数据资源开发利用的意见》向社会公开征求意见（附全文）
- [ ] 公布 | 《人工智能能力建设普惠计划》全文
- [ ] 预告 | 2024中国国际社会公共安全产品博览会暨智能与安全产业发展大会将于10月开启
- [ ] 关注 | 北京市人民检察院、北京市公安局召开打击治理电信网络诈骗犯罪新闻发布会
- [ ] 发布 | 2023年度北京市公安机关、检察机关打击治理电信网络诈骗犯罪典型案例
- [ ] 国际 | 韩国加快人工智能军事化应用
安全圈
- [ ] 【安全圈】上午上交所系统被股民买崩了？异常卡顿、交易延迟……现已陆续恢复
- [ ] 【安全圈】Linux圈曝出高危漏洞：远程代码执行风险升级
dotNet安全矩阵
- [ ] .NET 9月红队武器库和资源集合
- [ ] .NET 安全基础入门学习知识库
- [ ] .NET 一款支持哥斯拉的免杀WebShell
- [ ] .NET 内网攻防实战电子报刊
- [ ] .NET 一款通过虚拟键盘绕过UAC的工具
青藤云安全
- [ ] 青藤荣登2024北京民营企业科技创新百强榜单
微步在线
- [ ] 【更新】Unix打印机组件RCE漏洞已复现
数世咨询
- [ ] 保险公司对 CISO 的期望越来越高，网络安全保险价格涨幅趋于稳定
奇安盘古
- [ ] 闵行公安分局网安支队携手奇安信开展“拒绝网络谣言，清朗网络环境”警企互联倡议活动
慢雾科技
- [ ] 慢雾：Sui - Move 合约审计入门
极客公园
- [ ] 海淀区全力打造 AI 全景赋能第一城，首批应用场景重磅发布
- [ ] 2024，大模型的 iOS 时刻
- [ ] 特斯拉 Robotaxi 定档 10 月 10 日；三只羊被罚近 6800 万并道歉；Altman：没拿大量股权 | 极客早知道
b1ngz的笔记本
- [ ] SaaS多租户自动化渗透平台-数据安全隔离实践
小米安全中心
- [ ] 活动｜MiSRC邀您加入双11安全保卫战
百度安全实验室
- [ ] 2024 百度安全月圆满收官：让百度更安全，让用户更放心
- [ ] “2024年网络安全国家标准贯标深度行（互联网行业—百度站）”活动在北京举办
情报分析师
- [ ] 西方多国如何进行信息心理操控战略分析
- [ ] 与伊朗有关联的黑客组织声称寻呼机爆炸与以色列电池公司有关
火绒安全
- [ ] 【火绒安全周报】国安部揭露台独黑客真面目/警惕虚假LOL骗局
阿里安全响应中心
- [ ] 先知安全沙龙 - 杭州站 10月19日开启！
深信服千里目安全技术中心
- [ ] 干货分享 | 2024年漏洞利用五大关键趋势
360数字安全
- [ ] 坚持创新驱动三六零荣获2024北京民营企业科技创新榜单第二名
- [ ] 上亿公民隐私信息遭曝光，原因竟是数据库未加密？
嘶吼专业版
- [ ] 峰会议程公布！SDC 2024 超强阵容抢先看
- [ ] GitLab 公布存在严重的管道执行漏洞
迪哥讲事
- [ ] 一个$2000的帐户接管
安全419
- [ ] 全民开放国家计算机病毒协同分析平台应时而生
- [ ] 网安招聘直通车 | 基调听云众多岗位诚聘英才！
悬镜安全
- [ ] 悬镜Random：数字供应链开源安全情报建设与实践分享
- [ ] 首批SBOM工作组成员 | 国家工业信息安全发展研究中心正式颁予悬镜安全会员单位
娜璋AI安全之家
- [ ] [转] 从开发者视角浅谈供应链安全
Qualys Security Blog
- [ ] Qualys Ranked as a “Strong Performer” Among Top Vendors in Forrester Wave™ for Attack Surface Management
Securityinfo.it
- [ ] Protetto: Rischio umano: con Mimecast si minimizzano i rischi di attacchi a dipendenti e manager
- [ ] Una vulnerabilità critica di NVIDIA permette di prendere il controllo di interi ambienti cloud
ICT Security Magazine
- [ ] Email Forensics: Studio di email malevola e principali tool di analisi
Over Security - Cybersecurity news aggregator
- [ ] UK national hacked public companies for stock trading intel, DOJ says
- [ ] Iranian hackers charged with hacking Trump campaign to ‘stoke discord’
- [ ] Incontro tra Musk e Meloni: impatti sulla sicurezza nazionale
- [ ] Iranian hackers charged for ‘hack-and-leak’ plot to influence election
- [ ] US charges three Iranians allegedly behind Trump campaign hack
- [ ] US government charges three Iranian hackers with Trump campaign hack
- [ ] Microsoft: Windows Recall now can be removed, is more secure
- [ ] U.S. charges Joker's Stash and Rescator money launderers
- [ ] Two Russian Nationals Indicted in Operating Billion-Dollar Money Laundering Services
- [ ] Embargo ransomware escalates attacks to cloud environments
- [ ] IOC Feed
- [ ] Sintesi riepilogativa delle campagne malevole nella settimana del 21 – 27 settembre
- [ ] Pentagon gives thumbs-down to cyber service proposal in defense bill
- [ ] Tracking airplanes with a Raspberry Pi and an ADS-B receiver
- [ ] GCHQ: Lawyers don’t undermine cyber capabilities, they underpin them
- [ ] Progress urges admins to patch critical WhatsUp Gold bugs ASAP
- [ ] Meta fined $101 million for storing hundreds of millions of passwords in plaintext
- [ ] Windows 11 KB5043145 update released with 13 changes and fixes
- [ ] Tosint: Open-source Telegram OSINT tool - Help Net Security
- [ ] Protetto: Rischio umano: con Mimecast si minimizzano i rischi di attacchi a dipendenti e manager
- [ ] WiFiPumpkin3 integrated into NetHunter: Powerful Duo allows malware distribution via Captive Portal
- [ ] Top ICS Vulnerabilities This Week: Cyble Urges Siemens and Rockwell Automation Fixes
- [ ] Ranveer Allahbadia YouTube Channel Hack: What Happened and What’s Next
- [ ] Millions of Vehicles Could Be Hacked and Tracked Thanks to a Simple Website Bug
- [ ] Una vulnerabilità critica di NVIDIA permette di prendere il controllo di interi ambienti cloud
bellingcat
- [ ] Nagorno-Karabakh: Satellite Imagery Shows City-Wide Ransacking
Schneier on Security
- [ ] Squid Fishing in Japan
- [ ] NIST Recommends Some Common-Sense Password Rules
Troy Hunt's Blog
- [ ] The Data Breach Disclosure Conundrum
Tor Project blog
- [ ] New Alpha Release: Tor Browser 14.0a7
SANS Internet Storm Center, InfoCON: green
- [ ] ISC Stormcast For Friday, September 27th, 2024 https://isc.sans.edu/podcastdetail/9156, (Fri, Sep 27th)
Trend Micro Research, News and Perspectives
- [ ] Delivering Proactive Protection Against Critical Threats to NVIDIA-powered AI Systems
- [ ] First to Detect AI Threats, Including NVIDIA-powered Systems
- [ ] Trend Detects NVIDIA AI Toolkit Vulnerability
The Register - Security
- [ ] Feds charge 3 Iranians with 'hack-and-leak' of Trump 2024 campaign
- [ ] Recall the Recall recall? Microsoft thinks it can make that Windows feature palatable
- [ ] Ransomware gang using stolen Microsoft Entra ID creds to bust into the cloud
Security Affairs
- [ ] The Tor Project and Tails have merged operations
- [ ] Cyber vandalism on Wi-Fi networks at UK train stations spread an anti-Islam message
- [ ] CUPS flaws allow remote code execution on Linux systems under certain conditions
- [ ] U.S. sanctioned virtual currency exchanges Cryptex and PM2BTC for facilitating illegal activities
Deeplinks
- [ ] New Email Scam Includes Pictures of Your House. Don’t Fall For It.
TorrentFreak
- [ ] Will Piracy Kill Football in Italy? Not if Football Damages the Internet First
Instapaper: Unread
- [ ] Hacking Kia cars made after 2013 using just their license plate
Technical Information Security Content & Discussion
- [ ] DNS poisoning in 30M domains caused by the Great Firewall
Graham Cluley
- [ ] Deepfake Ukrainian diplomat targeted US senator on Zoom call
Your Open Hacker Community
- [ ] Thinking about majoring in cybersecurity, please rate my colleges (PSU) program
- [ ] How to set up an openvpn connection within a proxy tunnel?
- [ ] Can someone help me
Computer Forensics
- [ ] Factory Reset Date on Apple Device
Bill Demirkapi's Blog
- [ ] Secrets and Shadows: Leveraging Big Data for Vulnerability Discovery at Scale
Blackhat Library: Hacking techniques and research
- [ ] Create Local Administrator Accounts without elevated Administrator Priviliges.
- [ ] Is there such a thing as an online defaming tool/service?
Social Engineering
- [ ] Help me Please
- [ ] What's The Best Time To Talk Business?
netsecstudents: Subreddit for students studying Network Security and its related subjects
- [ ] Metasploit to Bypass Windows PC and take screen and webcam snapshots
- [ ] Which one of these do I use for Professor Messer CEUs? Is it easier to just do CertMaster?
Information Security
- [ ] New Threat Using DLL-Sideloading to Hijack Popular RPG
The Hacker News
- [ ] Progress Software Releases Patches for 6 Flaws in WhatsUp Gold – Patch Now
- [ ] Critical Linux CUPS Printing System Flaws Could Allow Remote Command Execution
- [ ] How to Plan and Prepare for Penetration Testing
- [ ] Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks
- [ ] Cybersecurity Certifications: The Gateway to Career Advancement
- [ ] New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users
- [ ] U.S. Sanctions Two Crypto Exchanges for Facilitating Cybercrime and Money Laundering
- [ ] Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers
Security Weekly Podcast Network (Audio)
- [ ] Passwords, CUPS, KIA, Gilbert Gottfried, Salt Typhoon, Rob Allen from ThreatLocker... - Rob Allen - SWN #417
- [ ] SIEM: Shakeup in Event Management - What's Happening in the SIEM market today? - Jason Shockey, Seth Goldhammer - ESW #377