Aggregator

立足取证，服务实战

7月│月报 谛听工控安全月报上线了，工信部的最新政策，7月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

Full Disclosuremailing list archivesFrom: KoreLogic Disclosures via Fulldisclosu

Invisible authentication mechanisms in Microsoft allow any attacker to escalate from privileged to super-duper privileged in cloud environments, paving the way for complete takeover.

Gambling blockchain Ronin Network suffered a security incident yesterday when white hat hackers exploited an undocumented vulnerability on the Ronin bridge to withdraw 4,000 ETH and 2 million USDC, totaling $12 million. [...]

The SEC concludes its investigation into Progress Software's handling of the widespread exploitation of a MOVEit Transfer zero-day flaw that exposed data of over 95 million people. [...]

CISA and the FBI confirmed today that the Royal ransomware rebranded to BlackSuit and has demanded over $500 million from victims since it emerged more than two years ago. [...]

CISA and the FBI confirmed today that the Royal ransomware rebranded to BlackSuit and has demanded over $500 million from victims since it emerged more than two years ago. [...]

The number of additions to the Known Exploited Vulnerabilities catalog is growing quickly, but even silent changes to already-documented flaws can help security teams prioritize.

Today Matt posted a half-joking twit about the acceptable number of arguments that can be p

In this post, I'm going to show you how to provide more granular and more secure connectivity to and

LAS VEGAS – The head of the leading U.S. cybersecurity agency said it is too early to know whether

Published: 07 August 2024 at 21:32 UTC

error code: 1106

Network restriction bypass via race condition during namespace termination

A new self-spreading worm named 'CMoon,' capable of stealing account credentials and other data, has been distributed in Russia since early July 2024 via a compromised gas supply company website. [...]