Aggregator

2025年3月12日（北京时间），微软发布了2025 年 23月安全更新，共发布了58个CVE的补丁程序，同比上月减少了9个。

How setting up 2SV can help protect your online accounts, even if your password is stolen.

How to ensure your devices are as secure as possible.

How to ensure data cannot be recovered from electronic storage media.

Функция поможет защитить пользователей от необдуманных финансовых решений.

Guidance to help you assess the security of voice, video and messaging communication services.

How to avoid malware sent using scam ‘missed parcel’ SMS messages, and what to do if your phone is already infected.

流媒体巨头 Spotify 在其《Loud & Clear》年度报告中称，2024 年它向唱片业支付了 100 亿美元版税——超过唱片业历史上任何一家公司。流媒体在 2024 年为唱片业贡献了逾 280 亿美元，比十年前翻了一番。 Spotify 称有近 1500 名音乐人获得了逾百万美元版税。这家流媒体巨头还表示越来越多的音乐人跨越国界取得成功。2024 年版税逾 10 万美元的音乐人的音乐使用了超过 50 种语言。

Guidance for those who want to understand and reduce the impact of the ROCA vulnerability.

Самые громкие аферы 2024 года.

Guidance to help CEOs in public and private sector organisations manage a cyber incident.

Advice and recommendations for mitigating this type of insider behaviour.

How certificates should be initially provisioned, and how supporting infrastructure should be securely operated.

双领域专家联袂授课，从模型训练到安全防护的一站式通关

​捷豹路虎内部系统被黑客入侵，约700份内部文件泄露，涉及技术数据和员工信息

看雪论坛作者ID：Bileton  比尔顿

Businesses rely heavily on their IT networks to store, process and transmit sensitive data.   As cyber threats evolve and increase in sophistication, securing your network has become more critical than ever.   Network penetration testing is one of the most effective ways to achieve this. It involves simulating real-world attacks on your network to uncover weaknesses…

The post Maximising network penetration testing’s effectiveness appeared first on Sentrium Security.

The post Maximising network penetration testing’s effectiveness appeared first on Security Boulevard.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.12.16/6.13.4/6.14-rc3. Affected is the function sst_nor_write_data of the file drivers/mtd/spi-nor/sst.c of the component mtd. The manipulation leads to state issue. This vulnerability is traded as CVE-2025-21845. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.16/6.13.4. It has been rated as problematic. This issue affects the function btrfs_run_delalloc_range of the component btrfs. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-58089. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

欢迎小伙子小姑娘们~！