Aggregator
Cyber Security GRC and Quantifying ROI | Kovrr
1 year 4 months ago
Articles related to cyber risk quantification, cyber risk management, and cyber resilience.
The post Cyber Security GRC and Quantifying ROI | Kovrr appeared first on Security Boulevard.
Cyber Risk Quantification
默安科技两度荣膺“浙江省软件核心竞争力企业”
1 year 4 months ago
优秀!
默安科技两度荣膺“浙江省软件核心竞争力企业”
1 year 4 months ago
优秀!
默安科技两度荣膺“浙江省软件核心竞争力企业”
1 year 4 months ago
优秀!
Любовь не ждёт октября: Giphy о современных романтических трендах
1 year 4 months ago
Сезон охоты за отношениями начинается раньше, чем мы думали…
IDOR Vulnerability in ExHub Let Attacker Modify Web Hosting Configuration
1 year 4 months ago
A critical Insecure Direct Object Reference (IDOR) vulnerability was recently discovered in ExHub, a cloud-based platform for hulia-based development. This flaw allowed attackers to modify web hosting configurations of any project without proper authorization, posing significant risks to affected systems. Misconfigurations may cause outages or make services unavailable. Furthermore, attackers may be able to escalate […]
The post IDOR Vulnerability in ExHub Let Attacker Modify Web Hosting Configuration appeared first on Cyber Security News.
Guru Baran
FINALDRAFT 恶意软件:借 Outlook 草稿为通道的跨平台间谍威胁
1 year 4 months ago
安全客
2025全球网络安全政策法律趋势:AI、数据安全等成焦点!
1 year 4 months ago
《全球网络安全政策法律发展年度报告(2024)》
苹果推出 “苹果智能” 服务,百万赏金加固私有云计算安全
1 year 4 months ago
安全客
上周关注度较高的产品安全漏洞(20250210-20250216)
1 year 4 months ago
上周关注度较高的产品安全漏洞(20250210-20250216)
CNVD漏洞周报2025年第6期
1 year 4 months ago
国家信息安全漏洞共享平台(以下简称CNVD)本周共收集、整理信息安全漏洞92个,其中高危漏洞44个、中危漏洞38个、低危漏洞10个。
上周关注度较高的产品安全漏洞(20250210-20250216)
1 year 4 months ago
上周关注度较高的产品安全漏洞(20250210-20250216)
CNVD漏洞周报2025年第6期
1 year 4 months ago
国家信息安全漏洞共享平台(以下简称CNVD)本周共收集、整理信息安全漏洞92个,其中高危漏洞44个、中危漏洞38个、低危漏洞10个。
CVE-2025-1392 | D-Link DIR-816 1.01TO index.html&var:menu=24gwlan&var:page=24G_basic SSID cross site scripting
1 year 4 months ago
A vulnerability has been found in D-Link DIR-816 1.01TO and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/webproc?getpage=html/index.html&var:menu=24gwlan&var:page=24G_basic. The manipulation of the argument SSID leads to cross site scripting. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is known as CVE-2025-1392. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Estonian Duo Plead Guilty to $577m Crypto Ponzi Scheme
1 year 4 months ago
Two Estonian nationals have pleaded guilty to running a cryptocurrency-related Ponzi scheme
Pro-Russia collective NoName057(16) launched a new wave of DDoS attacks on Italian sites
1 year 4 months ago
Pro-Russia collective NoName057(16) launched DDoS attacks on Italian sites, targeting airports, the Transport Authority, major ports, and banks. The pro-Russia hacker group NoName057(16) launched a new wave of DDoS attacks this morning against multiple Italian entities. The group targeted the websites of Linate and Malpensa airports, the Transport Authority, the bank Intesa San Paolo, and […]
Pierluigi Paganini
CVE-2025-0001 | Abacus ERP absolute path traversal
1 year 4 months ago
A vulnerability, which was classified as problematic, was found in Abacus ERP. Affected is an unknown function. The manipulation leads to absolute path traversal.
This vulnerability is traded as CVE-2025-0001. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Submit #501351: D-Link DIR-816 1.01TO Cross Site Scripting [Accepted]
1 year 4 months ago
Submit #501351 / VDB-296023
Fergod
国家互联网信息办公室公布《个人信息保护合规审计管理办法》
1 year 4 months ago