D-Link DIR 615/645/815 service.cgi远程命令执行漏洞
D-Link DIR 615/645/815 service.cgi远程命令执行漏洞
Aggregator
VulnLab: web vulnerability lab project
4 months 2 weeks ago
VulnLab A web vulnerability lab project developed by Yavuzlar. Vulnerabilities SQL Injection Cross-Site Scripting (XSS) Command Injection Insecure Direct Object References (IDOR) Cross-Site Request Forgery (CSRF) XML External Entity (XXE) Insecure Deserialization File Upload...
The post VulnLab: web vulnerability lab project appeared first on Penetration Testing Tools.
ddos
科技爱好者周刊(第 358 期):如何拯救一家濒临倒闭的创业公司
4 months 2 weeks ago
文章记录了每周科技动态及工具推荐,包括Medium起死回生的措施、IP地址池Netnut介绍、特斯拉餐厅开业及小行星撞击月球可能性等科技新闻。此外还分享了RustScan、TrackWeight等工具及AI相关应用,并附有购房指北等资源链接。
Lynx
4 months 2 weeks ago
You must login to view this content
cohenido
Critical Infrastructure Leaders: Threat Level Remains High
4 months 2 weeks ago
OT Experts Advocate for Collaboration and "Adversary-Hostile" National Defenses
OT environments have long been bereft of their traditional shelter from cyberattacks made from hacker ignorance or disinterest. Industrial environments are forefronts for nation-state hacking, the risk heightened by global tensions and the convergence of operational technology with IT counterparts.
OT environments have long been bereft of their traditional shelter from cyberattacks made from hacker ignorance or disinterest. Industrial environments are forefronts for nation-state hacking, the risk heightened by global tensions and the convergence of operational technology with IT counterparts.
Feds Fine Surgery Practice $250K in Ransomware Breach
4 months 2 weeks ago
2021 Pysa Hack Compromised PHI of Nearly 25,000 Patients
A HIPAA breach investigation into a 2021 attack involving a variant of Pysa ransomware resulted in a $250,000 fine for an upstate New York specialty surgery practice, which also agreed to a corrective action plan that will be monitored by federal regulators for the next two years.
A HIPAA breach investigation into a 2021 attack involving a variant of Pysa ransomware resulted in a $250,000 fine for an upstate New York specialty surgery practice, which also agreed to a corrective action plan that will be monitored by federal regulators for the next two years.
Breach Roundup: Suspected XSS Cybercrime Forum Admin Arrested
4 months 2 weeks ago
Also: Clorox Sues IT Vendor Over Password Blunder
This week, XSS forum admin arrested, Clorox sued Cognizant, Lumma Stealer is back, NY regulates water, U.S. maritime cybersecurity rules in effect, new Coyote banking Trojan, a hacker nabbed details of Mexico City auxiliary police, Latin America cyberattacks, and World Leaks stole synthetic data.
This week, XSS forum admin arrested, Clorox sued Cognizant, Lumma Stealer is back, NY regulates water, U.S. maritime cybersecurity rules in effect, new Coyote banking Trojan, a hacker nabbed details of Mexico City auxiliary police, Latin America cyberattacks, and World Leaks stole synthetic data.
Trump's CISA Nominee Grilled Over 2020 Election Fraud Claims
4 months 2 weeks ago
Sean Plankey Dodges Election Security Questions in Senate Confirmation Hearing
Sean Plankey, a former Energy Department and National Security Council cybersecurity official, faced tough questions from lawmakers about President Donald Trump's false claims of voting machine vulnerabilities and election fraud in the 2020 election during his Thursday confirmation hearing.
Sean Plankey, a former Energy Department and National Security Council cybersecurity official, faced tough questions from lawmakers about President Donald Trump's false claims of voting machine vulnerabilities and election fraud in the 2020 election during his Thursday confirmation hearing.
Vectra CEO: SOCs Need AI Agents to Keep Up With Attacks
4 months 2 weeks ago
CEO Hitesh Sheth: New AI Offerings Boost Efficiency, Address Modern Network Needs
President and CEO Hitesh Sheth details how Vectra AI uses triage, stitching and prioritization agents to enhance SOC performance and curb alert fatigue. The network detection and response vendor is expanding AI Analyst via AWS Bedrock and integrations with Zscaler and CrowdStrike.
President and CEO Hitesh Sheth details how Vectra AI uses triage, stitching and prioritization agents to enhance SOC performance and curb alert fatigue. The network detection and response vendor is expanding AI Analyst via AWS Bedrock and integrations with Zscaler and CrowdStrike.
New Release: Tails 6.18
4 months 2 weeks ago
Tails 6.18发布新功能:新增WebTunnel桥接技术以增强反审查能力,并更新Tor Browser至14.5.5和Thunderbird至128.12.0版本。提供自动和手动升级选项,并提醒备份数据以防丢失。用户可从官网下载ISO或USB镜像,并访问支持页面获取帮助。
工业巨头遭勒索!敏感数据泄露威胁行业供应链防线
4 months 2 weeks ago
当前环境异常,请完成验证后继续访问。
工业巨头遭勒索!敏感数据泄露威胁行业供应链防线
4 months 2 weeks ago
工业领域已成勒索重灾区。
Coyote Banking Trojan Exploits Microsoft UI Automation for Stealthy Credential Theft
4 months 2 weeks ago
A newly evolved strain of the Coyote banking trojan has adopted an unconventional method of user surveillance on Windows systems. Malicious actors have learned to exploit Microsoft’s UI Automation (UIA) framework—originally designed to aid...
The post Coyote Banking Trojan Exploits Microsoft UI Automation for Stealthy Credential Theft appeared first on Penetration Testing Tools.
ddos
【刑事虚拟财产的价值认定路径】
4 months 2 weeks ago
学界应当加强对典型虚拟财产问题的理论化研究,着力构建符合财产权发展的系统性法律保护体系。
【论电子数据的技术侦查措施】
4 months 2 weeks ago
Greedy Sponge Targets Mexico: New AllaKore RAT & SystemBC Campaign Evades Detection
4 months 2 weeks ago
Mexican organizations remain the persistent targets of an enduring cybercriminal campaign involving modified versions of the AllaKore RAT and SystemBC malware. According to analysts at Arctic Wolf Labs, the attacks are orchestrated by a...
The post Greedy Sponge Targets Mexico: New AllaKore RAT & SystemBC Campaign Evades Detection appeared first on Penetration Testing Tools.
ddos
Arizona woman sentenced to 8.5 years for running North Korean laptop farm
4 months 2 weeks ago
Prosecutors said Chapman helped the North Korean IT workers obtain jobs at 309 companies, including a major television network, a car maker, a media company, a Silicon Valley technology company and more.
mx-takeover: detects misconfigured MX records
4 months 2 weeks ago
mx-takeover mx-takeover focuses on DNS MX records and detects misconfigured MX records. It currently supports three-technique. These are, MX domains that will expire soon Unregistered MX domains Domains that point to not currently in...
The post mx-takeover: detects misconfigured MX records appeared first on Penetration Testing Tools.
ddos
US hits senior North Korean officials with sanctions, $3 million bounties
4 months 2 weeks ago
Kim Se Un, Jo Kyong Hun and Myong Chol Min are accused of helping North Korea evade U.S. and United Nations sanctions through an IT worker plot that involved tricking companies into hiring North Koreans using stolen identities.
Daily Dose of Dark Web Informer - 24th of July 2025
4 months 2 weeks ago
This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.
Dark Web Informer - Cyber Threat Intelligence