Aggregator

强势围观

引领自动化威胁智能分析

近期，Lazarus组织通过恶意Python包下发攻击载荷的多个攻击样本，然后通过层层加载，最终完成攻击行为，并且这些样本针对了Windows、Linux、MacOS等不同操作系统

青藤，让云更安全

加州大学河滨分校钱志云教授分享安全领域静态分析的技术与问题

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。

本次捕获的多个样本不仅使用VMP壳进行代码保护，仿冒目标更是一改一贯作风，将矛头直指国家单位及安全厂商。

根据国家信息安全漏洞库（CNNVD）统计，本周（2024年6月24日至2024年6月30日）安全漏洞情况如下。

yso yso yso yso

亚马逊牵手澳大利亚信号局（ASD）

虽然之前已经感谢过一次了，但是再次感谢videohelp论坛larley大神的解答！再次感谢吾爱破解论坛@涛之雨大神的帮助！

感谢videohelp论坛larley大神的解答！感谢吾爱破解论坛@涛之雨大神的帮助！

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

A CVSS score 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Peter Girnus (@gothburz)' was reported to the affected vendor on: 2024-07-05, 48 days ago. The vendor is given until 2024-11-02 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'kimiya' was reported to the affected vendor on: 2024-07-05, 48 days ago. The vendor is given until 2024-11-02 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H severity vulnerability discovered by 'Marcin Wiazowski' was reported to the affected vendor on: 2024-07-05, 48 days ago. The vendor is given until 2024-11-02 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 5.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Nitesh Surana (@_niteshsurana) of Trend Micro Research' was reported to the affected vendor on: 2024-07-05, 53 days ago. The vendor is given until 2024-11-02 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.