Posts of last 24 hours
【君哥内推】旨在帮助甲方信息安全部门发布招聘需求,推送频率不定。欢迎甲方朋友们将招聘需求发给我,我愿意出力,
https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&mid=2247492469&idx=1&sn=047645362dfa1b2fc18ab163c62ee33f
The communication, adopted in Strasbourg on July 7, is built around three pillars: making frontier AI “safe, accessible and deployable” for European cybersecurity, preparing the EU’s cyber ecosystem and scaling European AI capabilities.
https://therecord.media/eu-unveils-cyber-plan-to-reduce-reliance-on-foreign-ai
Melbourne, Florida, United States, 8th July 2026, CyberNewswire
https://hackread.com/openmatter-network-joins-hol-initiative-to-help-define-standards-for-verifiable-ai-collaboration-and-security/
A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it decrypts and comes to life inside the victim’s browser.
For security leaders, the risk is clear: traditional URL checks may miss the attack while Microsoft 365 access, sensitive data, and response time
https://thehackernews.com/2026/07/new-ghost-phishing-wave-is-breaking.html
Cloudflare Research is building a global consensus service called Meerkat that uses a new consensus algorithm called QuePaxa. We plan to use Meerkat to build a strongly consistent, fault-tolerant key-value store, and other applications.
https://blog.cloudflare.com/meerkat-introduction/
Content delivery networks (CDNs) play an important role in today’s internet architecture. They improve performance, reduce latency, and help absorb large-scale traffic surges. As a result, many organizations have come to rely on CDNs not only for content delivery but also as their primary—or only—line of defense...
https://www.netscout.com/blog/why-cdns-alone-are-not-sufficient-modern-ddos-protection
A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures.
The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting victims through fake CAPTCHA verification pages that deceive them into running a malicious command that installs a PowerShell toolkit dubbed
https://thehackernews.com/2026/07/scmbanker-malware-uses-clickfix-lures.html
消费数码广告植入早已不再局限于手机、电视与流媒体平台,如今高端电竞显示器也开始通过系统底层机制,向Windows电脑静默推送捆绑广告软件。LG、戴尔Alienware多款热门电竞屏被实锤存在强制预装行为,在用户无授权、无感知的情况下安装程序、弹出迈克菲推广弹窗。
根据海外用户社区曝光案例,该情况最早由Reddit用户发现。用户设备从未安装迈克菲杀毒软件,却持续收到高频弹窗推广,深度排查系统日志后锁定罪魁祸首——外接LG电竞显示器触发的后台静默安装。
实测设备包含LG UltraGear 27GP83B、27GN800多款主流型号。显示器接入主机瞬间,Windows Update与微软商店会在后台自动拉取、安装「LG Monitor App Installer」,系统日志可查询到完整安装记录,程序后台标识为9PM9N6F47JB8-LGElectronics.LGMonitorApp,全程零弹窗、零用户确认。
该问题并非LG独有,大量用户跟进验证:戴尔、Alienware外星人显示器同样搭载同款流氓机制,和华硕主板自动预装Armoury Crate管控软件的套路完全一致,属于硬件厂商通用的静默推送方案。
更影响体验的是,这款LG预装程序不支持微软商店直接卸载,普通用户无法常规删除。最简临时解决办法为:进入Windows设置、应用启动项,关闭该程序开机自启,即可暂时屏蔽广告弹窗。
https://mp.weixin.qq.com/s?__biz=MzU5NTA3MTk5Ng==&mid=2247490070&idx=1&sn=cc6f6dee9eaca476b65c0ba137adf133
DNSFilter has launched an Original Equipment Manufacturing (OEM) program that lets external ISPs, cybersecurity firms, device makers, and other consumer app developers to embed their DNS threat protection, domain analysis, and privacy solutions into their own platforms and solutions. Partners can choose between two product paths: DNSFilter Protective DNS, for DNS-layer filtering and threat blocking, and/or DNSFilter Guardian Firewall and VPN services, for full-device traffic encryption and privacy or bundle both. The program offers partners … More →
The post DNSFilter makes its DNS threat protection available to OEM partners appeared first on Help Net Security.
https://www.helpnetsecurity.com/2026/07/08/dnsfilter-oem-program/
https://mp.weixin.qq.com/s?__biz=Mzg5ODUxMzg0Ng==&mid=2247501854&idx=1&sn=8053ab8b23dc73ea37bca690299df853