Aggregator

为规范网络数据处理活动，保护个人、组织在网络空间的合法权益，维护国家安全、公共利益，国务院正式公布《网络数据安全管理条例》。

“微软蓝屏”事件引发全球范围信息系统运营与服务的大灾难，凸显了关键软硬件已经成为国家甚至全球关键基础设施的重要性。因此，需要与时俱进，提升国家网络安全能力，应对数字时代的新挑战。

VM images built with Image Builder with some providers use default credentials during builds

VM images built with Image Builder and Proxmox provider use default credentials

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

via the comic humor & dry wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Solar Protons’ appeared first on Security Boulevard.

文末投递简历

黑客通过控制YouTube上的热门频道，冒充频道所有者发布带有恶意链接的视频，诱使观众点击，从而实施诈骗。

看雪论坛作者ID：mb_qzwrkwda

vivo，将作为 SDC 2024 黄金合作伙伴盛大出席峰会

代码向左，分析向右。

卡巴斯基认为谷歌“过度解读”

速修复

A vulnerability has been found in Slocate 2.5/2.6 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument -c/-r leads to memory corruption. This vulnerability is known as CVE-2003-0056. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

GitLab issued updates for CE and EE to address multiple flaws, including a critical bug allowing CI/CD pipeline runs on unauthorized branches. GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE) to address multiple vulnerabilities, including a critical bug, tracked as CVE-2024-9164 (CVSS score of 9.6), allowing CI/CD pipeline runs on unauthorized […]

IPv6规模部署的需求日益紧迫，但保障网络层安全是重要基础。

A vulnerability classified as problematic has been found in project alumni up to 1.0.8. Affected is an unknown function. The manipulation of the argument year leads to cross site scripting. This vulnerability is traded as CVE-2007-6126. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in project alumni up to 1.0.8. Affected by this vulnerability is an unknown functionality of the file view.page.inc.php. The manipulation of the argument year leads to sql injection. This vulnerability is known as CVE-2007-6127. The attack can be launched remotely. Furthermore, there is an exploit available.