Ваш айфон — праправнук лампы Эдисона: 7 гигантов из XIX века, на чьих плечах стоит весь современный интернет
Они строили наше высокотехнологичное будущее при свечах.
Aggregator
ReactOS 庆祝诞生 30 周年
2 months 2 weeks ago
ReactOS 是一个致力于开发与 Windows NT 和 Windows 2000 应用程序和硬件驱动程序兼容的开源操作系统的项目。ReactOS 诞生于 FreeWin95 项目的废墟之上,FreeWin95 旨在提供 Windows 95 的开源克隆版本,但该项目陷入了困境,项目协调员 Jason Filby 之后领导了一个针对 Windows NT 的新克隆项目,该项目被命名为 ReactOS,意在打破微软对 PC 操作系统的垄断地位。ReactOS 的开发始于 1996 年,1998 年发布了首个版本,过去 30 年有 301 名贡献者递交了逾 88,000 次 commit,总共 14,929,578 行代码。开发者在纪念 30 周年的博客里表示会继续推进 ReactOS 项目,正在开发的新项目包括面向开发者的全新构建环境 RosBE、新的 NTFS 驱动、新的 ATA 驱动、多处理器 (SMP) 支持、对 Class 3 UEFI 系统的支持、内核和用户模式地址空间布局随机化 (ASLR),对基于 WDDM 构建的现代 GPU 驱动支持等等。
Latin American Orgs Lack Confidence in Cyber Defenses, Skills
2 months 2 weeks ago
Cybersecurity professionals in Latin America are least likely to have faith in their countries' preparedness for cyberattacks on critical infrastructure, the World Economic Forum says.
Robert Lemos, Contributing Writer
Qilin
2 months 2 weeks ago
You must login to view this content
cohenido
Qilin
2 months 2 weeks ago
You must login to view this content
cohenido
Attackers Infrastructure Exposed Using JA3 Fingerprinting Tool
2 months 2 weeks ago
A new powerful method to detect and trace attacker infrastructure using JA3 fingerprinting, a technique that identifies malicious tools through network communication patterns. While many security teams considered JA3 fingerprints outdated after fingerprint lists remained largely unchanged since 2021, fresh analysis reveals this technology remains highly effective for uncovering hidden attacker networks and tooling. The […]
The post Attackers Infrastructure Exposed Using JA3 Fingerprinting Tool appeared first on Cyber Security News.
Tushar Subhra Dutta
Qilin
2 months 2 weeks ago
You must login to view this content
cohenido
Qilin
2 months 2 weeks ago
You must login to view this content
cohenido
Critical Appsmith Flaw Enables Account Takeovers
2 months 2 weeks ago
Critical vulnerability in Appsmith allows account takeover via flawed password reset process
SecWiki News 2026-01-22 Review
2 months 2 weeks ago
今日暂未更新资讯~
更多最新文章,请访问SecWiki
更多最新文章,请访问SecWiki
«Ваш аккаунт удалят через 10 минут!» Ага, конечно. Учимся игнорировать истерику мошенников
2 months 2 weeks ago
Как понять, что письмо от «техподдержки» прислал вор, не открывая ссылку?
mRNA 癌症疫苗展现了抗癌潜力
2 months 2 weeks ago
Moderna 和默克公布了针对黑色素瘤的 mRNA 癌症疫苗二期临床试验初步结果:相比标准疗法,五年内癌症复发和死亡风险降低近 50%。二期临床试验包含了 157 名被诊断为三期或四期黑色素瘤且手术切除后有高复发风险的患者。此类手术后预防复发的标准治疗方法是采用免疫疗法如使用默克的 Keytruda,所有参与者都接受了 Keytruda 治疗,他们以 2:1 的比例随机分组,部分患者接受了定制 mRNA 疫苗。疫苗专门针对每位患者的黑色素瘤进行定制,它携带了基因指令去构建最多 34 种独一无二的突变癌细胞标志物。一旦进入患者体内,健康细胞会产生这些标志物,训练 T 细胞去识别和攻击癌细胞。此前公布的结果显示,同时接受 mRNA 疫苗和 Keytruda 的 107 名患者中有 24 人在两年随访期间复发或死亡,只使用 Keytruda 的 50 名患者有 20 人复发或死亡,显示疫苗将复发或死亡风险降低了 44%。两家公司未公布五年随访的具体结果,只是表示风险降低了 49%。
泄密者的致命疏忽:打印机监控存档涉密截图
2 months 2 weeks ago
现代工作场所打印机配备的监控软件具有惊人能力,不仅记录每次打印的元数据,还能存档实际打印内容,从而成为强大告密
Researchers Detailed r1z Initial Access Broker OPSEC Failures
2 months 2 weeks ago
U.S. authorities have pulled back the curtain on “r1z,” an initial access broker who quietly sold gateways into corporate networks around the world. Operating across popular cybercrime forums, he offered stolen VPN credentials, remote access to enterprise environments, and custom tools designed to bypass security controls. His activity fed the ransomware supply chain by giving […]
The post Researchers Detailed r1z Initial Access Broker OPSEC Failures appeared first on Cyber Security News.
Tushar Subhra Dutta
Хотел посчитать интегралы, а получил майнер. Будни Python-разработчика в 2026 году
2 months 2 weeks ago
Хакеры решили, что вашему процессору скучно, и заставили его добывать Monero.
大模型智能知识库WeKnora命令注入漏洞(CVE-2026-22688)
2 months 2 weeks ago
WeKnora(维娜拉) 是一款基于大语言模型(LLM)的文档理解与语义检索框架,专为结构复杂、内容异构的文档场景而打造。
Hackers Earned $516,500 for 37 Unique 0-day Vulnerabilities – Pwn2Own Automotive 2026
2 months 2 weeks ago
Day One of Pwn2Own Automotive 2026, which delivered $516,500 USD for 37 zero-days, the event has now accumulated $955,750 USD across 66 unique vulnerabilities, demonstrating the automotive sector’s substantial attack surface. The competition showcased exploits targeting multiple vehicle subsystems, including in-vehicle infotainment (IVI) systems, EV charging stations, and embedded Linux environments. Researchers successfully demonstrated command […]
The post Hackers Earned $516,500 for 37 Unique 0-day Vulnerabilities – Pwn2Own Automotive 2026 appeared first on Cyber Security News.
Abinaya
国外某RTS域渗透靶场通关实战
2 months 2 weeks ago
记一次国外某红队域渗透靶场通关实战,该靶场模拟了大型电信公司的真实内网架构。环境内包含域控(DC)、邮件服务器(Exchange)、数据库服务器(SQL Server)及虚拟化平台(ESXi)等核心资产。整体渗透流程分为两条主要的攻击路径,旨在通过横向移动与权限提升最终控制整个域环境。
Eric Schmidt 认为欧洲必须投资自己的开源 AI 模型
2 months 2 weeks ago
Google 前 CEO Eric Schmidt 在瑞士达沃斯世界经济论坛上表示,欧洲必须投资建设自己的开源 AI 实验室和应对能源价格飙升的问题,否则会很快发现自己将依赖于中国的开源模型。美国公司多数转向闭源模型,这意味着它们的 AI 技术需要购买和获得授权。而中国的 AI 模型则主要采用开放权重的方式。除非欧洲愿意投入大量资金开发欧洲本土的模型,否则最终欧洲将不得不使用中国的模型。这对欧洲来说可能不是好事。
Attackers Reverse‑Engineer Patch to Exploit SmarterMail Admin Bypass in the Wild
2 months 2 weeks ago
A critical authentication bypass vulnerability in SmarterTools SmarterMail is actively being exploited in the wild by attackers, according to security researchers at watchTowr Labs. The vulnerability, tracked as WT-2026-0001, allows unauthenticated attackers to reset the system administrator password without any validation, leading to complete system takeover. The flaw exists in the ForceResetPassword API endpoint, which is designed […]
The post Attackers Reverse‑Engineer Patch to Exploit SmarterMail Admin Bypass in the Wild appeared first on Cyber Security News.
Abinaya