Aggregator
CNVD漏洞周报2024年第25期
4 months 1 week ago
8220挖矿团伙的新玩具:k4spreader
4 months 1 week ago
XLab的大网威胁感知系统会对当前活跃的主流DDoS僵尸网络家族进行持续跟踪和监控,最近3个月,这套系统观察到CatDDoS系团伙持续活跃,利用的漏洞数量达80+,攻击目标数量最大峰值300+/d,我们整理了一份近期的各种数据分享给社区。
「AI安全」| 京麒沙龙第十四期
4 months 1 week ago
聚焦时下最热的AI安全话题!
6月27日 下午2点直播间等你~
Omdia Report: Trend Disclosed 60% of Vulnerabilities
4 months 1 week ago
The latest Omdia Vulnerability Report shows Trend MicroTM Zero Day InitiativeTM (ZDI) spearheaded 60% of 2023 disclosures, underscoring its role in cybersecurity threat prevention.
Dustin Childs
Как измерить результативность решения по управлению уязвимостями?!
4 months 1 week ago
CIS Benchmarks Community Volunteer Spotlight: Rob VandenBrink
4 months 1 week ago
CIS Benchmarks volunteers undertake a significant role in establishing high-level security measures throughout the industry. Hear Rob VandenBrink's story.
Hacking8安全信息流停止运营
4 months 1 week ago
由于一些原因Hacking8安全信息流将停止运营。这个决定并不容易做,但考虑到各种因素,我们觉得这是最好的选择。
关于安全信息流
The Kaspersky Software Ban—What You Need to Know to Stay Safe Online
4 months 1 week ago
Citing national security concerns, the U.S. Department of Commerce has issued a ban on the sale of all Kaspersky online...
The post The Kaspersky Software Ban—What You Need to Know to Stay Safe Online appeared first on McAfee Blog.
McAfee
Adventures in Shellcode Obfuscation! Part 2: Hail Caesar!
4 months 1 week ago
by Mike Saunders, Principal Security Consultant This blog is the second in a series of blogs on obfuscation techniques for hiding shellcode. You can find the rest of the series […]
Red Siege
Helping keep customers safe with leaked password notification
4 months 1 week ago
To help protect against account compromise via credential stuffing attacks, Cloudflare will notify dashboard users when we detect that a password was found in an external data breach
Garrett Galow
CVE-2023-52251 and CVE-2024-32030 Exploit PoCs: Apache Kafka Remote Code Execution Vulnerability > 0.7.2
4 months 1 week ago
CVE-2023-52251 (8.8 - High) was publicly disclosed in Jan 2024 and was fixed in Apache Kafka version 0.7.2. CVE-2024-32030 (8.1 - High) was found in November 2023 and was also fixed in Apache Kafka version 0.7.2. Both of these vulnerabilities were associated with remote code execution on an API call to an endpoint.
Hacker Hunter
Top Hurdles for MSSPs and One Shining Solution
4 months 1 week ago
As one of many MSSPs, you're aware of challenges that make your work difficult. Learn how the CIS Controls Accreditation can help.
The State of Data Breaches
4 months 1 week ago
I've been harbouring some thoughts about the state of data breaches over recent months, and I feel they've finally manifested themselves into a cohesive enough story to write down. Parts of this story relate to very sensitive incidents and parts to criminal activity, not just on
Troy Hunt
先锋马上线后渗透-dll注入上线
4 months 1 week ago
前言:前面跟各位师傅提到过先锋马制作上线思路,那么我们在先锋马上线后如何进一步去做呢?本文会逐一为各位师傅讲述。
24th June – Threat Intelligence Report
4 months 1 week ago
For the latest discoveries in cyber research for the week of 24th June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The BlackSuit ransomware group has disrupted operations at CDK Global, a significant provider of IT and digital marketing solutions to the automotive industry, targeting their SaaS platforms across the United States and […]
The post 24th June – Threat Intelligence Report appeared first on Check Point Research.
hagarb
ICMP/DNS 隧道处置方法 | Windows 应急响应
4 months 1 week ago
愿心中的火永不熄灭!
Women in Tech: Remain Open to Unexpected Opportunities
4 months 1 week ago
Akamai CIO Kate Prouty explores the benefits of remaining open to new opportunities and salutes the bond among women in tech.
Tashema Nichols-Jones
面向对象六大设计原则--依赖倒置
4 months 1 week ago
Dependence Inversion Principle,DIP(依赖倒置)High level modules should not depend upon low level modules. Both should depend upon abstractions. (高层模块不应该依赖底层模块,两者都应该依赖抽象)每一个逻辑的实现都是由原子逻辑组成的,不可分割的原子逻辑就是低层模块,原子逻辑的再组装就是高层模块(示例图如下图所示)
aomandeshangxiao
上周关注度较高的产品安全漏洞(20240617-20240623)
4 months 1 week ago
Google Chrome代码执行漏洞(CNVD-2024-27330)