Aggregator

许斐确认：小米 15 发布会三个半小时，雷军晒小米 15 发布会首次彩排合影小米 15 系列发布会将于 10 月 29 日晚 7 点召开。这是小米的年度重磅旗舰发布会，将推出一大波旗舰产品，被网友称之

Matrix 首页推荐 Matrix 是少数派的写作社区，我们主张分享真实的产品体验，有实用价值的经验与思考。我们会不定期挑选 Matrix 最优质的文章，展示来自用户的最真实的体验和观点。文章代表作

AI 有多火爆，最大 AI 芯片供应商英伟达的市值是最明显的体现。英伟达周五短暂取代苹果成为全球市值最高的企业。英伟达的市值一度达到 3.53 万亿美元，略高于苹果的 3.52 万亿美元。这不是英伟达第一次成为全球市值最高的企业。它在今年 6 月也一度称雄全球市值，但之后被微软和苹果超越，三家公司的市值过去几个月处于不相上下的胶着状态。周五收盘时英伟达的市值未能维持其峰值，跌至 3.47万亿美元，苹果仍然是第一的 3.52 万亿美元.

今日暂未更新资讯~
更多最新文章，请访问SecWiki

埃及博主 Alaa Abd El Fattah 是一位活跃的民主人士，同时也是埃及开源运动的积极倡导者。2014 年，他因未经授权组织政治抗议活动被捕，之后获准保释，但重审后被判处五年监禁。他于 2019 年 3 月获释，但 9 月再次被国家安全局以传播虚假新闻的罪名逮捕，被判入狱五年。他本应该于今年 9 月 29 日重获自由，然而 28 天之后他仍然身陷囹圄。埃及政府拒绝在刑期结束之后释放他，这违反了该国的《刑事诉讼法》。《刑事诉讼法》要求将审前拘留时间计算在服刑时间内，但埃及当局拒绝这么做。人权观察、国际特赦组织和电子前哨基金会（EFF）都呼吁释放他。

OverFlame Targeted the Website of Federal Ministry for Economic Affairs and Climate Action

A vulnerability classified as critical has been found in Microsoft Azure Machine Learning Service, Azure API Management Service, Azure Functions and Azure Digital Twins Explorer. Affected is an unknown function. The manipulation leads to server-side request forgery. The attack needs to be approached within the local network. There is no exploit available. This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

AnonymousActivist Targeted the Website of Visa

DDOS TEAM ANONYMOUS Targeted the Website of TRANS TV

A Threat Actor is Allegedly Selling a Database of NotaryStars

A vulnerability classified as problematic was found in Roi Revolution Urchin 5.7.03. This vulnerability affects unknown code of the file report.cgi. The manipulation leads to improper authentication. This vulnerability was named CVE-2007-5113. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in OpenBSD 3.0/3.1. Affected by this issue is the function select. The manipulation of the argument size with the input -1 leads to integer coercion error. This vulnerability is handled as CVE-2002-1420. Local access is required to approach this attack. There is no exploit available.

TorCrawl: Crawl and Extract (Regular or Onion) Webpages Through TOR Network

A vulnerability classified as critical has been found in Linux Kernel 2.6.16.59. Affected is the function ip6_dst_lookup_tail. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2010-0437. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Name: ISITDTU CTF 2024 Quals (an ISITDTU CTF event.)
Date: Oct. 26, 2024, 2 a.m. — 27 Oct. 2024, 10:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://ctf.isitdtu.com/
Rating weight: 51.00
Event organizers: ISITDTU

Name: Russian CTF Cup 2024 Qualifier (an Russian CTF Cup event.)
Date: Oct. 26, 2024, 9 a.m. — 27 Oct. 2024, 09:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://ctfcup.ru/
Rating weight: 24.21
Event organizers: ctfcup

Authors/Presenters:Iggy

Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudite content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.

Permalink

The post DEF CON 32 – AppSec Village – Ticking SQLi appeared first on Security Boulevard.

henrymans0n has Allegedly LEaked Data of NGO Department of Iraq

A vulnerability, which was classified as critical, has been found in Apple macOS. This issue affects some unknown processing. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2024-23283. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Apple iOS and iPadOS. Affected is an unknown function. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2024-23283. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.