Aggregator

快速浏览！2024.12.23—12.29安全动态周回顾。

1月7日15：00-16：00不见不散~

扫描图片下方二维码或点击文末“阅读原文”即可预约观看直播~

Уходящий 2024-й стал особенным благодаря вам, наши постоянные читатели!

A vulnerability was found in Microsoft Internet Explorer up to 5.1. It has been rated as problematic. Affected by this issue is the function external.NavigateAndFind of the component Cross Frame Handler. The manipulation leads to improper privilege management. This vulnerability is handled as CVE-2000-0028. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

比利时以健康和环保理由从 1 月 1 日起禁售一次性电子烟。卫生部长 Frank Vandenbroucke 表示电子烟含有尼古丁，而尼古丁对健康有害；一次性电子烟会留下塑料、电池和电路等有害废弃化学物质。可重复使用的电子烟没有被禁，可作为戒烟的工具使用。比利时成为欧盟第一个禁售一次性电子烟的国家，他希望欧盟 27 国采取更严厉的烟草控制措施。

Dear blog readers,

I've decided to continue my elaboration and provide further actionable intelligence on a well known member of the Darkode cybercrime-friendly forum community Nassef.

Nassef is using [email protected] as his personal email address account and is known to have registered the following domains using it - hxxp://tonymontana.cards - hxxp://tonymontana.cash - hxxp://tonymontana.biz.

He's also using the following email address account [email protected] and is known to have registered the following domains using it:

hxxp://c2bit-power.com
hxxp://procarder.com
hxxp://novlops.cc
hxxp://freshcvv2.com
hxxp://sharkcc.com
hxxp://edumps.cc
hxxp://cvvlist.com
hxxp://cardinghispano.com
hxxp://dumps4you.com
hxxp://zanoled.com
hxxp://vic-socks.com
hxxp://dump-service.com
hxxp://thugcarders.com
hxxp://hotdumps.com
hxxp://dumpsvendor.com
hxxp://getbette.com
hxxp://crimemarket.com
hxxp://cardingmaestro.com

hxxp://ug-storecards.com
hxxp://cvvsite.com
hxxp://tonymontana.cc
hxxp://dumpsclinique.com
hxxp://source4dumps.cc
hxxp://skycvv.com
hxxp://carderprofit.cc
hxxp://styxmarket.com
hxxp://wt1shop.com
hxxp://scene-tools.com
hxxp://fraudsmarket.com
hxxp://cardersvilla.com
hxxp://bigcarder.com
hxxp://cardertools.com
hxxp://cvvsh0p.com
hxxp://fe-dumpstore.com
hxxp://profitbins.com
hxxp://carding-shop.com
hxxp://zonecvv.com
hxxp://torcrds.com
hxxp://shopvl.net
hxxp://prvtzone.com
hxxp://rdpwallmart.com
hxxp://xdedic.com
hxxp://smartstripes.biz
hxxp://cc-base.com

Related posts:

• What is Nassef from Darkode Up To?
• Exposing the Darkode Forum Bust and the Associated Individuals Behind It - Or How I Almost Got Kidnapped? - An OSINT Analysis
• Domain Portfolio Operated by Sp3cial1st from Darkode 

He's also known to be using [email protected] as his personal email where he is known to have registered the following domains:

hxxp://fe-dumpstore.com
hxxp://profitbins.com
hxxp://dump-service.com
hxxp://thugcarders.com
hxxp://torcrds.com
hxxp://shopvl.net
hxxp://cardertools.com
hxxp://cvvsh0p.com
hxxp://xdedic.com
hxxp://smartstripes.biz
hxxp://carding-shop.com
hxxp://zonecvv.com
hxxp://cc-base.com
hxxp://prvtzone.com
hxxp://rdpwallmart.com
hxxp://novlops.cc
hxxp://scene-tools.com
hxxp://fraudsmarket.com
hxxp://cardersvilla.com
hxxp://edumps.cc
hxxp://cvvlist.com
hxxp://c2bit-power.com
hxxp://procarder.com
hxxp://zanoled.com
hxxp://vic-socks.com
hxxp://freshcvv2.com
hxxp://sharkcc.com
hxxp://hotdumps.com
hxxp://dumpsvendor.com
hxxp://cardinghispano.com
hxxp://dumps4you.com
hxxp://ug-storecards.com
hxxp://source4dumps.cc
hxxp://getbette.com
hxxp://crimemarket.com
hxxp://cardingmaestro.com
hxxp://wt1shop.com
hxxp://cvvsite.com
hxxp://tonymontana.cc
hxxp://dumpsclinique.com
hxxp://bigcarder.com
hxxp://skycvv.com
hxxp://carderprofit.cc
hxxp://styxmarket.com

The post What is Nassef from Darkode Up To? – Part Two appeared first on Security Boulevard.

Dear blog readers,I’ve deci

Dear blog readers,I've decided to continue my elaboration and provide further actionable intelligen

A vulnerability was found in Orchard up to 1.3.10. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument ReturnUrl leads to improper input validation. This vulnerability is known as CVE-2011-5252. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

主站 分类 漏洞 工具 极客

借助降级攻击，他们能够捕获部分WPA3交互信息，再结合社会工程技术恢复网络密码。

云鲸张峻彬的野心终于藏不住了。作者 | 拉风的极客整个双十一，云鲸创始人张峻彬被问得最多的问题是，云鲸的产品和追觅、石头、科沃斯有什么区别。当每天被问几十次的时候，他认定，「这是我最不想回答的一个问题

云鲸张峻彬的野心终于藏不住了。

In this Help Net Security interview, Vineet Chaku, President of Reaktr.ai, discusses how AI is transforming cybersecurity, particularly in anomaly detection and threat identification. Chaku talks about the skills cybersecurity professionals need to collaborate with AI systems and address the ethical concerns surrounding deployment.

The post The sixth sense of cybersecurity: How AI spots threats before they strike appeared first on Help Net Security.

A vulnerability was found in code-projects Simple Chat System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /add_user.php. The manipulation of the argument name/email/password/number leads to sql injection. This vulnerability is handled as CVE-2024-13039. The attack may be launched remotely. Furthermore, there is an exploit available.

Serv00 注册门槛并不高，所以全民几乎人手一个，更有 s1-15 全程参与的。作者为了演示需要，注册过几个 serv00 账号，除当期演示外一直闲置，弃之可惜、食之无味。对于同样持有吃灰 serv