Aggregator

感谢各位白帽师傅对DSRC的陪伴与贡献，我们为大家准备了端午定制礼盒，愿各位白帽师傅清芬常伴，岁岁安康。

关键词数据泄露O2 UK实施VoLTE和WiFi呼叫技术的缺陷可能允许任何人通过呼叫目标来暴露一个人和其他标识

关键词数据泄露全球最大加密货币交易平台之一Coinbase近日披露，其海外客户支持中心发生重大数据泄露事件，导

关键词勒索软件2025年5月23日在为期数月的全球联合执法行动中，微软与多国执法机构成功摧毁了恶意软件Lumm

Discover why shifting from cyberattack prevention to cyber resilience is the key to survival in today’s relentless cyberthreat landscape.

Signal has released a new version of its end-to-end encrypted communication app for Windows that prevents Microsoft Recall and users from screenshotting text-based conversations happening in the app. The new “Screen security” setting is enabled by default and can be easily disabled through privacy settings. Crucially, though, it’s difficult to disable it by mistake. “Turning off ‘Screen security’ in Signal Desktop on Windows 11 will always display a warning and require confirmation in order to … More →

The post Signal blocks Microsoft Recall from screenshotting conversations appeared first on Help Net Security.

Скрывшись от побоев, они не смогли спрятаться от киберпреступников.

Wi-Fi может захлебнуться в мегаполисах будущего из-за нехватки частот.

根据本周公布的 Axios/Harris 100 美国最知名品牌调查结果，马斯克（Elon Musk）旗下品牌声誉急剧下跌。马斯克的政治极化激进主义损害了他的企业帝国。调查显示，特斯拉的排名从 2021 年的第 8 名大幅降至 2024 年的 63 名，2025 年进一步跌至 95 名，相比下竞争对手丰田排名第 4，福特第 60 名；SpaceX 排名 86，它的业务不是面向消费者，在普通民众中间的知名度可能对其业务影响不大；X 排在 98 名，基本上是最低了，排在它后面的是 The Trump Organization 和 Spirit Airlines。

A vulnerability has been found in Ericsson RAN Compute Basebands and Site Controller 6610 and classified as very critical. This vulnerability affects unknown code of the component Configuration Handler. The manipulation leads to improper input validation. This vulnerability was named CVE-2024-25010. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

​Signal has updated its Windows app to protect users' privacy by blocking Microsoft's AI-powered Recall feature from taking screenshots of their conversations. [...]

A vulnerability, which was classified as critical, was found in Poedit up to 3.6.2 on macOS. This affects an unknown part. The manipulation leads to incorrect default permissions. This vulnerability is uniquely identified as CVE-2025-4280. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

Samlify проверяет подпись и одновременно пускает злоумышленника внутрь.

A vulnerability, which was classified as problematic, has been found in Blog2Social Plugin up to 8.3.x on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2025-4133. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

我们在南京等你

本文探讨Deepfake的防御策略、事件响应计划及合规风险，揭示企业如何构建多层防护体系。

История 4,7 миллиона пользователей теперь изучается как научный архив.

5月16日，由飞达拉主办的“聚势而行 共拓共赢——飞达拉&火绒安全合作伙伴渠道会议”在苏州顺利收官。

West Lothian Council confirmed that ransomware attackers have stolen personal and sensitive information held on its education network