Aggregator

Summary Bleeping Computer has published an article detailing a ransomware attack against Romania's petroleum provider, Rompetrol. The attack has halted gas station service throughout the country. Threat Type Ransomware Overview A ransomware attack against Romania's petroleum provider has crippled the country's Fill&Go service and websites. Bleeping Computer states the actors behind the attack are the Hive ransomware gang. This is unconfirmed however, the ransom note left on the network is indicative of Hive

Summary A list of more than 17,000 IP addresses has been released by Vladimir Putin. The current unsubstantiated claim is that those listed are conducting active Distributed Denial of Service attacks against Russian targets. Threat Type DDoS Overview For more information on this story, please follow this link to the latest in our ongoing coverage of the Ukrainian/Russian war. Indicators of Compromise A list of IoCs can be found in the Reports section to the right. References https://www.cyberscoop.com/russi

Danny Lewin Community Care Days (DLCCDs) are a celebration of our late co-founder Danny Lewin?s generous spirit and his tenacious appetites for collaboration, innovation, and (especially) giving back to our global community. DLCCDs bring to life our values and empower all Akamai employees to volunteer in the communities where we work, operate, and live.

Akamai stands with the people of Ukraine. As the assault on Ukraine continues, we are inspired by the courageous citizens defending their sovereignty.

On December 10, 2021, Microsoft mitigated a vulnerability in the Azure Automation service. Azure Automation accounts that used Managed Identitiestokens for authorization and an Azure Sandbox for job runtime and execution were exposed. Microsoft has not detected evidence of misuse of tokens. Microsoft has notified customers with affected Automation accounts. Microsoft recommends following the security best practices herefor the Azure Automation service

前言

java反序列化也算是个老生常谈的话题了，近年来就java反序列化问题出现过不少的漏洞，如shiro反序列化，fastjson反序列化等。说

在红队行动中经常会遇到拿到Webshell后找不到数据库密码存放位置或者是数据库密码被加密的情况(需要逆向代码查找解密逻辑)。在此提出两种在从运行时获取所有的数据库连接信息(密码)的方式

震惊！神秘插件竟新增如此功能。。。

一个学习笔记

看到一篇笔风挺意思的文章让安全团队快速倒闭的十条建议，模仿也写了几条关于安全产品的忠告建议，行之是否有效，也请自行甄别尝试，过程所产生的一切风险责任由践行者承担~~1、不必重视安全产品运营，交由...

去年写的文章，没发出来，给公众号增加点内容，也留点笔记

从机制上对 Spring Cloud Gateway RCE进行了详细分析

0x01 写在前面本周二（3.1）的时候Spring官方发布了 Spring Cloud Gateway CVE 报告其中编号为 CVE-2022-22947 Spring Cloud Gate...

去年写的文章，没发出来，给公众号增加点内容，也留点笔记写在前面自2017年3月15日 fastjson 1.2.24版本被爆出反序列化漏洞以来，其就成为了安全人员中的重 点研究对象，即使后来 f...

简介CVE-2021-30632是V8引擎的类型混淆漏洞。攻击者可通过构造JIT code

喵呜，随便来记录一下Hgame Week2的一点点WriteUp。

一年一度杭电举办的Hgame又来了。第一周的时候做了不少题，这里来随便水一下WriteUp。

Xcheck的扩展规则介绍