Play
You must login to view this content
Aggregator
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
MadeYouReset: A New HTTP/2 Flaw That Could Lead to DoS Attacks
5 months ago
A newly disclosed vulnerability in the HTTP/2 protocol, dubbed MadeYouReset (CVE-2025-8671), was revealed on August 13, 2025. The
The post MadeYouReset: A New HTTP/2 Flaw That Could Lead to DoS Attacks appeared first on Penetration Testing Tools.
ddos
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
Play
5 months ago
You must login to view this content
cohenido
巴基斯坦的大规模监控系统
5 months ago
根据周二发表的一份调查报告,巴基斯坦部署了两大大规模监控系统,其一是能监控至少 400 万部手机的 Lawful Intercept Management System (LIMS),其二是能一次屏蔽 200 万活跃会话的防火墙 Web Monitoring System 2.0(WMS 2.0)。其中 LIMS 由巴基斯坦电信管理局强制要求电信网络安装,并由私营公司执行安装。此系统使军方和三军情报局可以直接获取用户数据,包括通话、短信,甚至浏览的网站,该系统主要由德国公司 Utimaco 和阿联酋公司 Datafusion 提供,只要输入一个电话号码,系统即可拦截手机定位、通话与短信。操作人员可通过 LIMS 查看巴基斯坦居民通过 HTTP 协议访问的网站内容(即未加密的网页)。若通过 HTTPS 访问,操作者虽不能看到加密内容,但仍可以通过元数据得知访问了哪些网站。
巴基斯坦的大规模监控系统
5 months ago
巴基斯坦部署两大监控系统:能监控400万手机的LIMS和屏蔽200万活跃会话的WMS 2.0。LIMS由电信管理局强制安装,私营公司执行,军方和情报局可直接获取用户数据,包括通话、短信及网站浏览记录。该系统由德国Utimaco和阿联酋Datafusion提供技术支持。
Anthropic Blocks Foreign Subsidiaries to Prevent AI Misuse
5 months ago
Anthropic has announced an expansion of regional restrictions governing access to its services. Previously, availability was curtailed in
The post Anthropic Blocks Foreign Subsidiaries to Prevent AI Misuse appeared first on Penetration Testing Tools.
ddos
突发!美国FCC宣布撤销中国信通院等多家我国机构测试认证许可;第九届“强网杯”全国网络安全挑战赛正式启动 | 牛览
5 months ago
当前环境出现异常,需完成验证后方可继续访问。
7个数字身份系统安全能力升级的必要性
5 months ago
当前环境出现异常,需完成验证后才能继续访问,请前往验证页面进行操作。
UK, EU, India: As VPN Regulations Tighten, BelNet Downloads Surge
5 months ago
Beldex 是一款注重隐私的加密货币,拥有私密生态系统和身份访问层 BNS,提供去中心化 VPN 服务 BelNet,致力于保护用户隐私与安全。
Critical Apache Jackrabbit Flaw Could Lead to Corporate Compromise
5 months ago
A critical vulnerability has been identified in Apache Jackrabbit, exposing systems to remote code execution and the potential
The post Critical Apache Jackrabbit Flaw Could Lead to Corporate Compromise appeared first on Penetration Testing Tools.
ddos
Sophos Wireless Access Points Vulnerability Let Attackers Bypass Authentication
5 months ago
Sophos has resolved an authentication bypass vulnerability in its AP6 Series Wireless Access Points that could allow attackers to gain administrator-level privileges. The company discovered the issue during internal security testing and has released a firmware update to address it. The security vulnerability allows an attacker with network access to the access point’s management IP […]
The post Sophos Wireless Access Points Vulnerability Let Attackers Bypass Authentication appeared first on Cyber Security News.
Guru Baran
How to Protect Your Enterprise Against Account Takeover Attacks
5 months ago
文章指出黑客利用暗网上泄露的160亿条登录凭证进行账户接管攻击(ATO),通过credential stuffing、password spraying等手段对企业造成数据泄露、声誉损失等威胁。文章强调了多因素认证(MFA)、密码安全策略及限制登录尝试次数等防范措施的重要性。