Aggregator

Мероприятие состоится 27 ноября в 11:00 (мск).

近日，一起大规模的数据泄露事件震动了网络安全界。名为“HikkI-Chan”的黑客在臭名昭著的Breach Forums上泄露了超过3.9亿VK用户的个人信息。

Git 是一个功能强大的版本控制系统，随着使用时间的增加，仓库中会积累大量的历史数据、对象和提交记录。这些内容虽然对代码历史至关重要，但在某些情况下，它们也会导致仓库变得庞大、低效。为了帮助开发者优化

胡金鱼

Мессенджер получил возможность рассказать, как работает империя NSO Group.

Critical Authentication Flaw Impacts Both Free and Pro Users
A widely deployed five-in-one security plug-in for WordPress websites contained a flaw that hackers could automate into a large-scale takeover campaign. The critical authentication bypass vulnerability takes advantage of a now-patched flaw in the Really Simple Security plug-in.

CISA released one Industrial Control Systems (ICS) advisory on November 19, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-324-01 Mitsubishi Electric MELSEC iQ-F Series

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

Apple 移动应用创新赛：把想法变现，让创意启航 上周末（11 月 16 日至11 月 17 日），少数派与老朋友两颗皮蛋前往浙江大学（紫金港校区）联合现场报道了「第九届移动应用创新赛」。今年的比

In our digital age, cybersecurity is a shared mission. Each of us has a part to play. By staying informed, adopting best practices and remaining alert, we can all contribute to a safer online environment.

The post Cybersecurity is Everyone’s Responsibility appeared first on Security Boulevard.

慢雾将继续为构建更安全的区块链生态努力！

Snowflake作为一个抗审查的网络通信系统的设计和效果。

error code: 521

在使用 Git 时，可能会遇到一个常见的问题：在推送代码时，发现远程仓库有更新，执行 git pull 时触发自动合并。但在合并过程中，你可能由于某些原因（比如中途按下 Ctrl+C）退出了合并过程，

Posts Phobos Ransomware Administrator Extradited from South Korea to Face Cybercrime Ch

Privileged accounts are well-known gateways for potential security threats. However, many organizations focus solely on managing privileged access—rather than securing the accounts and users entrusted with it. This emphasis is perhaps due to the persistent challenges of Privileged Access Management (PAM) deployments. Yet, as the threat landscape evolves, so must organizational priorities. To

A vulnerability was found in OpenSSL 3.0/3.1. It has been declared as problematic. Affected by this vulnerability is the function DH_check of the file crypto/dh/dh_check.c of the component DH Key Handler. The manipulation leads to denial of service. This vulnerability is known as CVE-2023-3817. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Oracle MySQL Connectors up to 8.1.0 and classified as critical. This vulnerability affects unknown code of the component Connector/C++. The manipulation leads to denial of service. This vulnerability was named CVE-2023-3817. The attack can be initiated remotely. There is no exploit available.

A vulnerability has been found in OpenSSL and classified as critical. This vulnerability affects the function siv_cipher of the file providers/implementations/ciphers/cipher_aes_siv.c of the component AES-SIV Mode. The manipulation leads to improper authentication. This vulnerability was named CVE-2023-2975. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in OpenSSL 1.0.2/1.1.1/3.0/3.1. Affected by this issue is the function DH_check of the file crypto/dh/dh_check.c of the component DH Key Handler. The manipulation leads to denial of service. This vulnerability is handled as CVE-2023-3446. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Intel CPU. Affected by this issue is some unknown functionality of the component Gather Date Sampling. The manipulation leads to information exposure through discrepancy. This vulnerability is handled as CVE-2022-40982. The attack can only be done within the local network. There is no exploit available.