Aggregator

360打造数据安全“自动驾驶”标杆，获多位领导认可

2024数博会：360呼吁打造“小模型”解决大模型数据安全问题

JWST раскрыл тайну ярких ранних галактик

Что раскрыло расследование WSJ?

A vulnerability was found in ConnX ESP HR Management up to 6.5. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Update of Personal Details Form. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-7269. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in HyperView Geoportal Toolkit up to 8.2.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component URL Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-6450. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in HyperView Geoportal Toolkit up to 8.2.4. It has been classified as problematic. Affected is an unknown function of the component GET Request Parameter Handler. The manipulation of the argument request leads to permissive cross-domain policy with untrusted domains. This vulnerability is traded as CVE-2024-6449. It is possible to launch the attack remotely. There is no exploit available.

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-7965 Google Chromium V8 Inappropriate Implementation Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

Researchers have created orange, yellow and green lasers tiny enough to fit on a chip.

Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and the Department of Defense Cyber Crime Center (DC3)—released Iran-based Cyber Actors Enabling Ransomware Attacks on U.S. Organizations. This joint advisory warns of cyber actors, known in the private sector as Pioneer Kitten, UNC757, Parisite, Rubidium, and Lemon Sandstorm, targeting and exploiting U.S. and foreign organizations across multiple sectors in the U.S. 

FBI investigations conducted as recently as August 2024 assess that cyber actors like Pioneer Kitten are connected with the Government of Iran (GOI) and linked to an Iranian information technology (IT) company. Their malicious cyber operations are aimed at deploying ransomware attacks to obtain and develop network access. These operations aid malicious cyber actors in further collaborating with affiliate actors to continue deploying ransomware. 

This advisory highlights similarities to a previous advisory, Iran-Based Threat Actor Exploits VPN Vulnerabilities published on Sept. 15, 2020, and provides known indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs). 

CISA and partners encourage critical infrastructure organizations to review and implement the mitigations provided in this joint advisory to reduce the likelihood and impact of ransomware incidents. For more information on Iranian state-sponsored threat actor activity, see CISA’s Iran Cyber Threat Overview and Advisories page. 

See #StopRansomware along with the updated #StopRansomware Guide for additional guidance on ransomware protection, detection, and response. Visit CISA’s Cross-Sector Cybersecurity Performance Goals for more information on the CPGs, including additional recommended baseline protections.

The US Department of State offers a $2.5 million reward for information leading to the arrest of a Belarusian cybercriminal involved in the mass malware distribution. The US Department of State announced a $2.5 million reward for information leading to the arrest of Volodymyr Kadariya (38), a Belarusian national allegedly involved in a significant malware […]

Иск Google подан после решения российских судов в пользу телеканалов.

极端气温日益常见。发表在《Journal of Environmental Psychology》期刊上的一项研究调查了经历异常气温与相信气候变化阴谋论之间的关联。结果显示，经历过异常气温的人不太可能相信气候变化阴谋论。研究人员收集了美国和中国大陆成年人的数据——两个地区近几年都经历了严重的热浪。而选择中美两个国家是因为两国政治气氛截然不同——气候变化在美国是一个高度政治化的问题，但在中国不那么政治化。1003 名美国成年人和 1000 名中国大陆成年人参与了两次调查：第一次是在夏季之后的 2022 年 8 月底和 9 月初，第二次是冬季之后的 2023 年 1 月初。调查发现，认为夏天比往常更热的参与者都不太可能相信气候变化阴谋论。亲身经历极端高温的人会更加怀疑气候变化阴谋论，这一影响在美国参与者中最为显著。研究人员发现，在美国一个有强烈阴谋论倾向的人在经历极端高温之后会减少对相关阴谋论的信任度。但在中国这一效应却是相反的——经历异常高温的阴谋论者更可能相信相关阴谋论。研究人员怀疑与文化或政治因素相关。

持续渗透攻击面测试不仅仅是一种安全措施，它是一种战略优势。采用 CASPT 的组织可以通过反击攻击者并玩他们的游戏来实现更大的弹性。

俄罗斯漏洞赏金生态系统崛起可能产生深远影响

大量乘客滞留在机场

Ни один спам-фильтр пока не может распознать новую символьную угрозу.

每日更新当天鲜活情报和热点漏洞

The threat actors behind the BlackByte ransomware group have been observed likely exploiting a recently patched security flaw impacting VMware ESXi hypervisors, while also leveraging various vulnerable drivers to disarm security protections. "The BlackByte ransomware group continues to leverage tactics, techniques, and procedures (TTPs) that have formed the foundation of its tradecraft since its

Рынок инфобизнеса ждет контроль и ограничения.