调查:超半数网络安全从业者在数据泄露后遭遇 “沉默令”
当前环境出现异常状态,需完成验证后方可继续访问。
Aggregator
Anthropic Accused of Building Claude AI with 7 Million Pirated Books
2 months 1 week ago
Anthropic被指控从海盗网站下载超700万本非法书籍用于建立中央图书馆,并未支付费用。法院支持原告观点,认为即使后续购买合法书籍也无法弥补侵权行为。
How Confidential Are Your Blockchain Transactions, Really?
2 months 1 week ago
文章探讨了可信计算在区块链中的应用,分析了匿名性与机密性问题,并提出基于硬件支持的分层解决方案。
Weekoverzicht Defensieoperaties
2 months 1 week ago
De Nederlandse bijdrage aan de force protection voor de NAVO-missie in Irak is na anderhalf jaar ten einde. Een ander land heeft de taken overgenomen. Een overzicht van Defensieoperaties in de week van 25 juni tot en met 1 juli 2025.
Handala
2 months 1 week ago
You must login to view this content
cohenido
FileFix Attack Exploits Windows Browser Loophole to Evade Mark-of-the-Web Security
2 months 1 week ago
A newly identified attack vector, dubbed the “FileFix Attack,” has surfaced, exploiting a subtle yet critical loophole in how modern browsers like Google Chrome and Microsoft Edge handle saved web content. This technique cunningly sidesteps the Windows Mark-of-the-Web (MOTW) security feature, which typically flags downloaded files as potentially unsafe and prompts users with warnings before […]
The post FileFix Attack Exploits Windows Browser Loophole to Evade Mark-of-the-Web Security appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
GNU Health Hospital Information System 5.0 释出
2 months 1 week ago
GNU Health Hospital Information System 5.0发布,改进报告分析、优化患者信息处理、重新设计医学影像系统,并完善保险与计费功能。
GNU Health Hospital Information System 5.0 释出
2 months 1 week ago
针对医疗行业的自由软件 GNU Health Hospital Information System 释出了 5.0 版本。主要变化包括:改进报告和分析,更全面的处理不同类型的患者信息,重新设计了医学影像子系统,完善了保险和计费功能,等等。
AI 狂猜登录链接,网络安全引爆定时炸弹!;网络犯罪或将成为全球第三大经济体 | 牛览
2 months 1 week ago
当前环境出现异常,需完成验证后才能继续访问。
工业互联网安全到底有多难做
2 months 1 week ago
当前环境出现异常状态,需完成验证后方可继续访问。
Google потратил годы на защиту, хакеры — 16 часов на взлом
2 months 1 week ago
Google переписал безопасность cookies — и случайно помог взломать Windows.
CVE-2025-32463的解析(附poc及其解析)
2 months 1 week ago
文章描述了一个利用sudo的-R/--chroot选项进行提权的漏洞(CVE-2025-32463)。攻击者通过构造恶意chroot环境,在sudo解析用户信息前加载伪造的NSS动态库,从而绕过权限控制并获得root权限。
U.S. CISA adds TeleMessage TM SGNL flaws to its Known Exploited Vulnerabilities catalog
2 months 1 week ago
美国网络安全和基础设施安全局(CISA)将TeleMessage TM SGNL的两个漏洞加入已知被利用的漏洞目录。这两个漏洞分别为CVE-2025-48927(CVSS 5.3)和CVE-2025-48928(CVSS 4.0),涉及资源初始化不安全默认配置和核心转储文件未经授权暴露问题。这些漏洞已在2025年5月被实际利用,CISA要求联邦机构于7月22日前修复。
U.S. CISA adds TeleMessage TM SGNL flaws to its Known Exploited Vulnerabilities catalog
2 months 1 week ago
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds TeleMessage TM SGNL flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added TeleMessage TM SGNL flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the descriptions for these flaws: CVE-2025-48927 is an Initialization of a Resource with an Insecure Default […]
Pierluigi Paganini
How Monitoring Users’ Holistic Digital Identities Can Help Businesses Eliminate Cybercriminals’ Greatest Advantage
2 months 1 week ago
网络犯罪分子通过整合多来源数据攻击企业系统,传统安全措施无法覆盖全部风险。企业需监控用户全面在线身份以减少漏洞。
How Monitoring Users’ Holistic Digital Identities Can Help Businesses Eliminate Cybercriminals’ Greatest Advantage
2 months 1 week ago
Businesses must take the threat of identity-based attacks seriously and adapt their cybersecurity practices to address this challenge.
The post How Monitoring Users’ Holistic Digital Identities Can Help Businesses Eliminate Cybercriminals’ Greatest Advantage appeared first on Security Boulevard.
Damon Fleury
JVN: 複数のFesto Didactic製品およびFesto製品における複数の脆弱性
2 months 1 week ago
Festo DidacticおよびFestoが提供する複数の製品には、複数の脆弱性が存在します。
JVN: Voltronic PowerおよびPowerShield製の複数のUPSモニタリングソフトウェアにおける複数の脆弱性
2 months 1 week ago
Voltronic Power Technology Corp.およびPowerShield Pty Ltd.が提供する複数のUPSモニタリングソフトウェアには、複数の脆弱性が存在します。
JVN: 複数のHitachi Energy製品における複数の脆弱性
2 months 1 week ago
Hitachi Energyが提供する複数の製品には、複数の脆弱性が存在します。
带有Markdown支持的记事本应用现已推送到Windows 11正式版
2 months 1 week ago
微软为Windows 11正式版用户推出支持基础Markdown格式的新版记事本应用,包括标题、加粗、斜体和超链接等,但尚不支持下划线和删除线等功能。