Aggregator

#软件资讯 微软将从下月开始向 Windows 10 自动推送安装新版 Outlook 应用，此前微软已经向 Windows 11 做过相同的事情。对用户来说这也不算什么大问题，毕竟新

Defensie gaat voor het eerst op grote schaal scherfvesten speciaal voor vrouwen verwerven. Het gaat om 1.530 stuks. Ze worden besteld bij TYR Tactical. Deze fabrikant kan als enige op korte termijn aan de behoefte voldoen. Naar verwachting zijn de eerste vesten rond de zomer binnen. Defensie heeft daarnaast een optie op nog eens 7.000 stuks.

#软件资讯 容器应用 Docker Desktop for macOS 版因使用错误的代码签名导致出现恶意软件警告和无法启动，目前 Docker 已发布新版本进行修复。用户更新到 4.

一种名为“LDAPNightmare”的恶意利用方式，以一个已经修补过的Windows LDAP漏洞PoC的形式，针对研究人员进行攻击。

摘要 CVE-2024-49113的虚假漏洞利用攻击：一种名为“LDAPNightmare”的恶意利用方式，以一个已经修补过的Windows LDAP漏洞PoC的形式，针对研究人员进行攻击。 数据盗窃：此恶意软件窃取计算机和网络信息，并将其发送到攻击者的服务器。 高级攻击：通过伪造一个合法存储库，使用恶意文件和脚本来部署恶意软件。 高价值目标：攻击者旨在渗透安全研究人员，从而获取

Впереди самые ожидаемые испытания года.

Неужели мрачные климатические прогнозы начинают сбываться?

#人工智能 微软对 10 名盗用 API 密钥以及滥用 Azure OpenAI 服务的违规者提起法律诉讼，这还牵涉到开源项目 De3u，目前该项目已被删除。从微软描述来看这些被告似乎

Судебные материалы проливают свет на сомнительную практику.

Security researchers have successfully hacked Apple’s proprietary ACE3 USB-C controller. This chip, introduced with the iPhone 15 and iPhone 15 Pro, represents a significant leap in USB-C technology, handling power delivery and acting as a sophisticated microcontroller with access to critical internal systems. Despite Apple’s enhanced security measures, researchers employed advanced techniques to bypass its […]

The post Researchers Hacked into Apple’s New USB-C Controller appeared first on Cyber Security News.

LDAP Watchdog LDAP Watchdog is a tool designed to monitor and record changes in an LDAP directory in real time. It provides a mechanism to track and visualize modifications, additions, and removals to user...

The post LDAP Watchdog: monitor record changes in an LDAP directory in real-time appeared first on Penetration Testing Tools.

A vulnerability was found in Drupal Image Sizes up to 3.0.1 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to insertion of sensitive information into sent data. This vulnerability is handled as CVE-2024-13259. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Drupal Opigno Group Manager up to 3.1.0. This vulnerability affects unknown code. The manipulation leads to improper neutralization of directives in statically saved code ('static code injection'). This vulnerability was named CVE-2024-13263. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Drupal Opigno Module up to 3.1.1. This issue affects some unknown processing. The manipulation leads to improper neutralization of directives in statically saved code ('static code injection'). The identification of this vulnerability is CVE-2024-13264. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.