恶意PYPI包传播新型CIA勒索病毒
恶意PYPI包传播新型CIA勒索病毒
Aggregator
Linux数字取证工具与常用命令汇总
1 year 3 months ago
Linux数字取证工具与常用命令汇总
【安全圈】美国政府公布攻击Ivanti云服务设备的技术细节
1 year 3 months ago
【安全圈】1,000 多个恶意域名模仿 Reddit 和 WeTransfer 来传播恶意软件
1 year 3 months ago
【安全圈】威胁者利用语音通话通过 Microsoft Teams 传播勒索软件
1 year 3 months ago
【安全圈】美国前中情局分析师承认泄露国防信息
1 year 3 months ago
【安全圈】1,000 多个恶意域名模仿 Reddit 和 WeTransfer 来传播恶意软件
1 year 3 months ago
关键词恶意软件已发现超过 1,000 个恶意域名冒充 Reddit 和 WeTransfer 等流行平台来传播恶意软件,主要是臭名昭著的 Lumma Stealer。这一令人担忧的趋势凸显了网络犯罪分
【安全圈】威胁者利用语音通话通过 Microsoft Teams 传播勒索软件
1 year 3 months ago
关键词勒索软件Sophos 托管检测和响应 (MDR) 发现了两起不同的勒索软件活动,它们利用 Microsoft Teams 获取目标组织的未经授权的访问。被追踪为 STAC5143 和 STAC5
【安全圈】美国前中情局分析师承认泄露国防信息
1 year 3 months ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
【安全圈】美国政府公布攻击Ivanti云服务设备的技术细节
1 year 3 months ago
关键词安全漏洞美国政府的网络安全和执法机构周三发布了专业黑客入侵Ivanti云服务设备(CSA)所用的两个复杂漏洞利用链的技术细节。这些机构发布了清理行动中的入侵指标(IOCs)和其他取证数据,并警告
【培训】开源情报练习 #001
1 year 3 months ago
欢迎参加OSINT开源情报练习#001!一、任务下面你可以看到一条包含照片的推文截图,它包含了我们查找它的拍摄位置需要的所有必需信息。请根据你能辨别出的信息来注明照片拍摄地的坐标。任务难度:对于初学者
【资料】理解监控技术:间谍设备的起源与应用
1 year 3 months ago
本书旨在为学习监控技术打下基础,使您更容易理解雷达、声纳、视频摄像机和基因定型等特定技术。《理解监控技术》是监控设备领域全面、入门级的综述。它包含18章,超过700张照片和插图。适合大学监控课程、专业
【培训】开源情报练习 #001
1 year 3 months ago
【资料】理解监控技术:间谍设备的起源与应用
1 year 3 months ago
CVE-2024-12957 | ASUS Armoury Crate up to 5.9.9.0 missing authentication
1 year 3 months ago
A vulnerability has been found in ASUS Armoury Crate up to 5.9.9.0 and classified as critical. This vulnerability affects unknown code. The manipulation leads to missing authentication.
This vulnerability was named CVE-2024-12957. It is possible to launch the attack on the local host. There is no exploit available.
vuldb.com
CVE-2024-52975 | Elastic Fleet Server up to 8.14.x information disclosure
1 year 3 months ago
A vulnerability, which was classified as problematic, was found in Elastic Fleet Server up to 8.14.x. This affects an unknown part. The manipulation leads to information disclosure.
This vulnerability is uniquely identified as CVE-2024-52975. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
any guides for PE INJECTION? (for dummy’s)
1 year 3 months ago
CVE-2024-43708 | Elastic Kibana up to 7.17.22/8.14.x allocation of resources
1 year 3 months ago
A vulnerability, which was classified as critical, has been found in Elastic Kibana up to 7.17.22/8.14.x. Affected by this issue is some unknown functionality. The manipulation leads to allocation of resources.
This vulnerability is handled as CVE-2024-43708. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2017-8665 | Xamarin.iOS 6.2.1/6.3 Build 863 on MacOS access control (KB4037359 / EDB-42454)
1 year 3 months ago
A vulnerability has been found in Xamarin.iOS 6.2.1/6.3 Build 863 on MacOS and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls.
This vulnerability is known as CVE-2017-8665. Attacking locally is a requirement. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
Trump Pardons Silk Road Founder Ulbricht
1 year 3 months ago
President Trump has pardoned the founder of original dark web marketplace Silk Road