Aggregator

NoName Targeted Many Websites in Poland

有把小刀，不知从哪儿来的

Author/Presenter: Lukas McCullough

Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.

Permalink

The post DEF CON 32 – Physical OSINT appeared first on Security Boulevard.

Tor From the Dark Web to the Future of Privacy by ourren

漏洞赏金生态系统中的团队与合作 by ourren

更多最新文章，请访问SecWiki

A vulnerability was found in moyangzhan langchain4j-aideepin up to 3.4.x. It has been classified as problematic. Affected is an unknown function of the component File Upload. The manipulation leads to use of weak hash. This vulnerability is traded as CVE-2025-21604. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A Threat Actor Claims to be Selling 300 CC from France

Op Marinebasis Parera op Curaçao is een militair van de Koninklijke Landmacht overleden. Het slachtoffer is vanmorgen gevonden in het legeringsgebouw van de kazerne. Zijn familie is inmiddels geïnformeerd.

白帽泰裤辣，GEEK要出发！

白帽泰裤辣，GEEK要出发！

物理学家首次能测量单个电子穿过固体的几何形状。研究报告发表在《Nature Physics》期刊上。微观层面的粒子相互作用需要用量子力学去描述。这项研究由康奈尔大学的 Mingu Kang 和首尔国立大学的 Sunjie Kim 领导。为了测量电子的量子几何，研究人员尝试测量名为量子几何张量（quantum geometric tensor 或 QGT）的属性。QGT 是编码量子态完整几何信息的物理量，类似二维全息图编码三维空间信息的方式。他们利用了角分辨光电子能谱学技术，测量对象是钴锡合金单晶。在获得 QGT 的测量结果之后他们能推断出金属中电子的其余量子几何形状。

​More U.S. companies have been added to the list of telecommunications firms hacked in a wave of breaches by a Chinese state-backed threat group tracked as Salt Typhoon. [...]

A WordPress plugin known as PhishWP, has been discovered on Russian cybercrime forums and is being exploited by cybercriminals to steal sensitive data from unsuspecting users.  

The post WordPress Plugin Exploited to Turn Legitimate Sites Into Phishing Traps appeared first on Security Boulevard.

Discover how a global insurance leader leverages DataDome to protect endpoints from sophisticated bots, achieve GDPR compliance, block brute-force attacks, and gain actionable threat insights.

The post How a Global Insurer Protects Customer Data & Achieves Compliance With DataDome appeared first on Security Boulevard.

Remote work is on the rise with 32.6 million American expected to ditch the central office by 2025. But as the workforce shifts, so do the complexities IT teams face. Today’s ongoing digital transformation has made it possible for employees to conduct work from nearly anywhere around the world. These locations might...

A vulnerability was found in OpenVPN Connect up to 3.4.x and classified as problematic. This issue affects some unknown processing of the component Application Log. The manipulation leads to improper removal of sensitive information before storage or transfer. The identification of this vulnerability is CVE-2024-8474. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Злоумышленники создают сложные схемы для хищения информации.

New security regulations are more than compliance hurdles — they're opportunities to build better products, restore trust, and lead the next chapter of innovation.

Tenable disabled two Nessus scanner agent versions after a faulty plugin update caused agents to go offline. Tenable Nessus is a widely-used vulnerability scanning tool designed to identify and assess security vulnerabilities in systems, networks, and applications. Tenable was forced to disable two Nessus scanner agent versions because a faulty plugin update caused agents to […]