Aggregator
一次某APP的修复之旅
10 months ago
一次某APP的修复之旅
10 months ago
一次某APP的修复之旅
10 months ago
Weekly Report: 内閣サイバーセキュリティセンターが「DDoS 攻撃への対策について(注意喚起)」を公開
10 months ago
内閣サイバーセキュリティセンター(NISC)は、2024年12月から2025年1月の年末年始にかけて相次いだDDoS攻撃を受け、各事業者、各インターネット利用者に対して注意喚起を公開しました。本文書に記載された事項を参照の上、リスク低減に向けたセキュリティ対策を進めてください。
GreyNoise Observes Active Exploitation of PAN-OS Authentication Bypass Vulnerability (CVE-2025-0108)
10 months ago
GreyNoise has observed active exploitation attempts targeting a newly disclosed authentication bypass vulnerability, CVE-2025-0108, affecting Palo Alto Networks PAN-OS. This high-severity flaw allows unauthenticated attackers to execute specific PHP scripts, potentially leading to unauthorized access to vulnerable systems.
温暖万家——城市换热站工控网络安全建设方案
10 months ago
为热力安全供应提供坚实保障。
Daily Dose of Dark Web Informer - February 12th, 2025
10 months ago
This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.
Dark Web Informer - Cyber Threat Intelligence
黑客利用Pyramid渗透测试工具进行隐蔽的C2通信
10 months ago
黑客利用Pyramid渗透测试工具建立隐蔽的C2通信,绕过EDR检测,威胁终端安全。其基于Python的轻量级服务器和内存执行模块,使攻击者更难以被传统安全工具发现。
A Threat Actor Allegedly is Selling RDWeb Access to an Unidentified Insurance Company in the USA
10 months ago
A Threat Actor Allegedly is Selling RDWeb Access to an Unidentified Insurance Company in the USA
Dark Web Informer - Cyber Threat Intelligence
zkLend loses $9.5M in crypto heist, asks hacker to return 90%
10 months ago
Decentralized money lender zkLend suffered a breach where threat actors exploited a smart contract flaw to steal 3,600 Ethereum, worth $9.5 million at the time. [...]
Lawrence Abrams
Surge in attacks exploiting old ThinkPHP and ownCloud flaws
10 months ago
Increased hacker activity has been observed in attempts to compromise poorly maintained devices that are vulnerable to older security issues from 2022 and 2023. [...]
Bill Toulas
President Trump to Nominate Former RNC Official as National Cyber Director
10 months ago
Sean Cairncross will be one of the primary advisers to the administration on national cybersecurity matters.
Jai Vijayan, Contributing Writer
【AI速读】从分析到评估:工具,技术和培训师的技巧
10 months ago
《从分析到评估:工具、技术和培训师的技巧》这本书提供了培训专业人员在不同教学设计阶段可使用的多种工具和技巧。这些工具帮助培训师更有效地进行培训需求分析、设计课程、开发材料、实施培训和评估效果。
【资源】查询美国政府信息的网站
10 months ago
今天给大家推送一个可以查询美国政府各个机构每天发布的各种信息的网站,美国政府出版办公室网站:https://www.govinfo.gov/
Samoa Issues Alert on APT40 Hackers Targeting Pacific Region
10 months ago
Chinese State-Sponsored Cyber Group Deploying Fileless Malware to Persist
Chinese state-sponsored cyber group APT40 intensified its attacks on government and critical infrastructure networks in the Pacific region by deploying fileless malware and modified commodity malware, prompting Samoa's cybersecurity agency to issue an urgent advisory.
Chinese state-sponsored cyber group APT40 intensified its attacks on government and critical infrastructure networks in the Pacific region by deploying fileless malware and modified commodity malware, prompting Samoa's cybersecurity agency to issue an urgent advisory.
Australia's New Guidance Aims to Harden IT Network Security
10 months ago
Cybersecurity Officials Launch Major Push for Zero Trust, Secure-By-Design Approach
The Australian Signals Directorate's Australian Cyber Security Center released guidance on proactive cyber defense strategies to help organizations build a modern, defensible network architecture that's resilient to cyberattacks and designed to help minimize impact on critical systems and assets.
The Australian Signals Directorate's Australian Cyber Security Center released guidance on proactive cyber defense strategies to help organizations build a modern, defensible network architecture that's resilient to cyberattacks and designed to help minimize impact on critical systems and assets.
Feds Sanction Russian Cybercrime Bulletproof Hosting Service
10 months ago
US, UK and Australia Target Zservers for Supporting LockBit, Other Cybercrime Groups
A Russian bulletproof hosting service used by cybercriminals including the LockBit ransomware group has been sanctioned by Australian, British and American agencies. Zservers has been advertised in criminal forums as an aid to avoid law enforcement investigations and takedowns.
A Russian bulletproof hosting service used by cybercriminals including the LockBit ransomware group has been sanctioned by Australian, British and American agencies. Zservers has been advertised in criminal forums as an aid to avoid law enforcement investigations and takedowns.
Cybereason CEO Sues to Halt Deadlock Over Critical Funding
10 months ago
Chapter 11 Looms as Eric Gan Seeks Custodian and Liberty, SoftBank Block Financing
Cybereason faces a crisis as a boardroom deadlock halts financing efforts. CEO Eric Gan and his family firm seek a custodian to halt the impasse, alleging SoftBank and Liberty Strategic Capital are prioritizing control over the company’s financial stability. Without urgent funding, bankruptcy looms.
Cybereason faces a crisis as a boardroom deadlock halts financing efforts. CEO Eric Gan and his family firm seek a custodian to halt the impasse, alleging SoftBank and Liberty Strategic Capital are prioritizing control over the company’s financial stability. Without urgent funding, bankruptcy looms.
Samoa Issues Alert on APT40 Hackers Targeting Pacific Region
10 months ago
Chinese State-Sponsored Cyber Group Deploying Fileless Malware to Persist
Chinese state-sponsored cyber group APT40 intensified its attacks on government and critical infrastructure networks in the Pacific region by deploying fileless malware and modified commodity malware, prompting Samoa's cybersecurity agency to issue an urgent advisory.
Chinese state-sponsored cyber group APT40 intensified its attacks on government and critical infrastructure networks in the Pacific region by deploying fileless malware and modified commodity malware, prompting Samoa's cybersecurity agency to issue an urgent advisory.