Aggregator

对内核的访问控制子系统进行内存安全防护的PeTAL方案~

Cloudflare is thrilled to announce the general deployment of our next generation of server — Gen 12 powered by AMD Genoa-X processors. This new generation of server focuses on delivering exceptional performance across all Cloudflare services, enhanced support for AI/ML workloads, significant strides in power efficiency, and improved security features.

TURN servers help relay media and data between devices when direct peer-to-peer connections are blocked or fail. Cloudflare Calls' TURN server uses anycast to eliminate the need to think about regions or scaling, improving reliability of WebRTC applications.

Cloudflare's customers can now take advantage of Zstandard (zstd) compression, offering 42% faster compression than Brotli and 11.3% more efficiency than GZIP. We're further optimizing performance for our customers with HTTP/3 prioritization and BBR congestion control, and enhancing privacy through Encrypted Client Hello (ECH).

We are excited to announce the latest leap forward in speed – Speed Brain. Speed Brain uses the Speculation Rules API to prefetch content for the user's likely next navigations. The goal is to download a web page to the browser before a user navigates to it, allowing pages to load instantly.

Introduction DLL Hijacking — a technique for forcing legitimate applications to run malicious code — has been in use for about a decade at least. In this write-up we give a short introduction to the technique of DLL Hijacking, followed by a digest of several dozen documented uses of that technique over the past decade […]

The post 10 Years of DLL Hijacking, and What We Can Do to Prevent 10 More appeared first on Check Point Research.

在东南亚的智能手机市场，OPPO 和传音等中国企业正在猛追首位的韩国三星电子。中国企业相继推出约合 1000 多元人民币的低价机型，目前的市场份额与三星基本持平。今后高价位机型的竞争也将日

A vulnerability, which was classified as very critical, was found in Twiki 2003-02-01. This affects the function search of the component Search. The manipulation of the argument Search leads to improper privilege management. This vulnerability is uniquely identified as CVE-2004-1037. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Crafty bad actors can infect all of an organization's virtual machines at once, rendering tier-one applications useless.

Cybersecurity researchers have flagged the discovery of a new post-exploitation red team tool called Splinter in the wild. Palo Alto Networks Unit 42 shared its findings after it discovered the program on several customers' systems. "It has a standard set of features commonly found in penetration testing tools and its developer created it using the Rust programming language," Unit 42's Dominik

A vulnerability was found in WatchGuard Single Sign-On Client up to 12.7 on Windows. It has been declared as critical. This vulnerability affects unknown code of the component Command Handler. The manipulation leads to handling of exceptional conditions. This vulnerability was named CVE-2024-6594. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in WatchGuard Authentication Gateway up to 12.10.2 on Windows. It has been classified as very critical. This affects an unknown part of the component Management Command Handler. The manipulation leads to incorrect authorization. This vulnerability is uniquely identified as CVE-2024-6593. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in WatchGuard Authentication Gateway and Single Sign-On Client and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to incorrect authorization. This vulnerability is handled as CVE-2024-6592. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in T&W WIFI Repeater BE126. It has been rated as critical. This issue affects some unknown processing of the file cgi-bin/webupg. The manipulation of the argument user leads to command injection. The identification of this vulnerability is CVE-2017-13713. The attack may be initiated remotely. Furthermore, there is an exploit available.

助力钢铁企业数字化转型

Often, malware uses platforms like — Telegram and Discord for data exfiltration. Due to its simplicity and the lack of need for building a server architecture, this exfiltration method has gained significant popularity. However, this very simplicity is also its weakness.  In this article we’ll show you how to obtain information related to threat actors’ […]

The post How to Intercept Data Exfiltrated by Malware via Telegram and Discord appeared first on ANY.RUN's Cybersecurity Blog.

Оборонные предприятия России под прицелом хакеров.

A vulnerability classified as problematic has been found in Oracle MySQL Server up to 5.7.13. This affects an unknown part of the component Audit. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2016-5635. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in SquirrelMail. This issue affects some unknown processing. The manipulation of the argument help leads to path traversal. The identification of this vulnerability is CVE-2005-1924. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in SquirrelMail. It has been rated as critical. Affected by this issue is the function gpg_recv_key. The manipulation leads to improper privilege management. This vulnerability is handled as CVE-2005-1924. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.