Aggregator

See Malicious Process Relationships on a Visual Graph 

Anyrun
3 months 1 week ago

At ANY.RUN, we’re all about making in-depth technical information accessible. One of the ways we do this is by providing you with various detailed, yet easy-to-understand reports on malware behavior. One such report is Process graph.  What is Process graph?  Process graph is a report that visually shows how system processes, especially malicious ones, relate […]

The post See Malicious Process Relationships <br> on a Visual Graph  appeared first on ANY.RUN's Cybersecurity Blog.

ANY.RUN

⼤模型在⽹络安全⽅⾯的应⽤汇总

洞源实验室
3 months 1 week ago
随着人工智能技术的飞速发展,大模型在网络安全领域扮演着越来越重要的角色。本文将汇总目前大模型在网络安全中的各种应用,探讨它们如何帮助我们更好地防御网络威胁,保护数据安全。

Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins

The Hackers News
3 months 1 week ago
Docker is warning of a critical flaw impacting certain versions of Docker Engine that could allow an attacker to sidestep authorization plugins (AuthZ) under specific circumstances. Tracked as CVE-2024-41110, the bypass and privilege escalation vulnerability carries a CVSS score of 10.0, indicating maximum severity. "An attacker could exploit a bypass using an API request with Content-Length set
The Hacker News

CISA Warns of Exploitable Vulnerabilities in Popular BIND 9 DNS Software

The Hackers News
3 months 1 week ago
The Internet Systems Consortium (ISC) has released patches to address multiple security vulnerabilities in the Berkeley Internet Name Domain (BIND) 9 Domain Name System (DNS) software suite that could be exploited to trigger a denial-of-service (DoS) condition. "A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition," the U.S. Cybersecurity and
The Hacker News

New Chrome Feature Scans Password-Protected Files for Malicious Content

The Hackers News
3 months 1 week ago
Google said it's adding new security warnings when downloading potentially suspicious and malicious files via its Chrome web browser. "We have replaced our previous warning messages with more detailed ones that convey more nuance about the nature of the danger and can help users make more informed decisions," Jasika Bawa, Lily Chen, and Daniel Rubery from the Chrome Security team said. To that
The Hacker News

ZDI-CAN-24756: X.Org

ZDI: Upcoming Advisories
3 months 1 week ago
A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Jan-Niklas Sohn' was reported to the affected vendor on: 2024-07-25, 70 days ago. The vendor is given until 2024-11-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25033: Autodesk

ZDI: Upcoming Advisories
3 months 1 week ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-07-25, 70 days ago. The vendor is given until 2024-11-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-24943: Autodesk

ZDI: Upcoming Advisories
3 months 1 week ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-07-25, 70 days ago. The vendor is given until 2024-11-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-24961: Autodesk

ZDI: Upcoming Advisories
3 months 1 week ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-07-25, 70 days ago. The vendor is given until 2024-11-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Managed ad