Aggregator

欧盟反垄断监管机构周三要求苹果向竞争对手开放其封闭的生态系统，它阐述了苹果必须如何遵守欧盟《数字市场法（Digital Markets Act）》的详细要求，否则可能面临罚款。欧盟的第一项命令要求苹果向竞争对手的智能手机、耳机和 VR 设备制造商开放访问其技术，以便能无缝连接苹果设备。第二项命令建立响应应用开发者互操作性请求的流程。苹果批评了该决定，称“今天的决定将我们陷入繁文缛节，减缓苹果为欧洲用户创新的能力。”欧盟反垄断负责人 Teresa Ribera 反击称：“我们只是在执行法律。”不遵守规定可能会导致调查，罚款金额最高会达到苹果全球年销售额的 10%。

攻击者利用Cisco智能许可工具未修复漏洞，注入内置后门管理员账户，远程获取权限，严重威胁企业安全，Cisco紧急修复仍难挡活跃攻击。

0x00 前言

每一个安全初学者都喜欢问这样一个问题，“我应该做web安全还是做二进制安全，哪个更有意思？哪个更有钱途？”

二进制安全就只等于反汇编，逆向，调试，内核 ……？

Web安全就只等于XSS，SQL注入，CSRF，webshell ……？

当两者结合起来的时候会发生什么美妙的事情呢？

一个典型的Web系统运行于Linux平台，使用Apache作为服务器，用PHP完成功能逻辑，重要数据存储在MySQL数据中，接收用户输入并返回信息。对于客户端软件来说其实也存在类似的架构，软件运行在Windows系统上，用C/C++完成功能逻辑，可能用SQLite存储重要数据，支持进程间通信。

那么在二进制漏洞挖掘中是否可用使用Web漏洞挖掘的思路呢？

笔者在研究某客户端软件时发现了一个非常有意思的逻辑安全漏洞。本文笔者将展示如何使用客户端软件中存在的SQL注入漏洞，实现本地权限提升，使用漏洞可以绕过IE沙箱等的限制，在高权限进程的上下文中执行任意代码。

Cyber Agency Urges Critical Infrastructure Operators to Migrate Within the Deadline
The British cybersecurity agency urged critical infrastructure operators to adapt to post-quantum cryptography by 2035 as it and other government agencies prepare for the inevitability of quantum computers capable of breaking current encryption algorithms.

“网络犯罪分子不断升级战术，利用AI加速攻击。孤立的防御已不足应对，公共与私营部门必须协同合作，才能超越对手，提升网络弹性。”

被Root或越狱的手机面临恶意软件攻击和系统入侵的几率激增！安卓设备被攻击风险高达3000倍，iPhone也难以幸免。

Европейские власти усиливают меры по защите от новых угроз.

No-reply emails may seem convenient, but they pose serious cybersecurity risks. Learn how they enable phishing, spoofing, and financial fraud—and how to protect your business.

The post Why No-Reply Emails Are a Cybersecurity Hazard appeared first on Security Boulevard.

A vulnerability was found in Link My Posts Plugin up to 1.0 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-13881. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in My Quota Plugin up to 1.0.8 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-13880. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Passbeemedia Web Push Notification Plugin up to 1.0.0 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-13877. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in SpotBot Plugin up to 0.1.8 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-13878. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in WP-PManager Plugin up to 1.2 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-13875. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in mEintopf Plugin up to 0.2.1 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-13876. It is possible to launch the attack remotely. There is no exploit available.

安全从业者和安全主管的AI安全防护产品与供应商指南

通过在规则文件中植入不良内容，来诱导Cursor或GitHub Copilot生成不安全的代码

The responsibility of cyber incident response falls squarely on the shoulders of the CISO. And many CISOs invest heavily in technical response procedures, tabletop exercises and theoretical plans only to find out that when an actual breach strikes the organization is not as prepared as it should be. Every event is unique and can introduce unforeseen complications, and the chaos of the moment can quickly derail even the best laid plans. But CISOs can improve … More →

The post 5 pitfalls that can delay cyber incident response and recovery appeared first on Help Net Security.

百度回应副总裁谢广军的女儿开盒事件时称，开盒信息并非源自百度。百度称，公司内部实施了数据的匿名化、假名化处理；数据存储和管理实行严格隔离和权限分离，任何职级的员工及高管均无权限触碰用户数据。百度安全部门反复调取了相关日志，并查验当事人权限。结果表明，开盒信息并非源自百度。百度也说，网上流传的“当事人承认家长给她数据库”的截图，内容为不实信息。此外，事件期间，社交媒体出现了大量文案高度雷同的造谣内容。针对相关网络谣言，公司已向公安机关报案。

只能下载曾经上传过的附件，无法删除

A vulnerability was found in Mozilla Firefox up to 127.x. It has been classified as critical. Affected is an unknown function of the component SELECT Element Handler. The manipulation leads to permission issues. This vulnerability is traded as CVE-2024-6607. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.