Aggregator

Bitter在今年一直在尝试各种免杀方法：6 月份通过 powershell 加载 havoc 框架、7 月份直接下发 2018 年就在使用的窃密插件，效果都不太理想，最终在 9 月份下发了全新的特马 MiyaRat 还是被我们成功捕获。

A vulnerability, which was classified as critical, was found in Apple watchOS up to 4.3.2. This affects an unknown part. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2018-4343. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

1963 年是 20 世纪最重要的年份之一：肯尼迪（John F Kennedy）遇刺，马丁·路德·金发表了《我有一个梦想》演讲，披头士录制发行了首张专辑，以及美国香烟销量开始下降。几十年后的人回顾 2020 年，除了新冠状疫情外，这一年也是肥胖率开始下降的一年。几十年来全世界的肥胖率一直在稳定上升，但最新数据显示 2020-2023 年美国成年人肥胖率下降了大约两个百分点。这一切要归因于新一代减肥药如 Ozempic 和 Wegovy 的流行。美国成年人中有八分之一在服用新减肥药。吸烟率的下降经历了几十年的宣传和公共卫生警告，肥胖问题长期以来是被认为是一大难题，因为我们周围的诱惑太多了，而减肥药在短时间内就取得了惊人的成效。美国的表率作用正推动减肥药在世界其它地方的流行，丹麦如今有 3% 的人服用减肥药，其肥胖率增长开始放缓和下降。

9月，火绒安全产品拦截恶意攻击总数：208,153,443次，其中病毒拦截9001.0万次、系统高危动作拦截5642.6万次、网络高危风险拦截6171.7万次。

Also: AI Safety Bill Vetoed, Global Ransomware Response Guide Gets Some Revisions
In the latest weekly update, ISMG editors discussed the implications of the U.S. investigation into Chinese hackers targeting telecom wiretap systems, the catastrophic risks of AI and the recent veto of an AI safety bill in the U.S., and the latest global ransomware response guidance.

Ransomware Gang Could Have Axis Health's Mental Health, Drug Abuse Records
Ransomware gang Rhysida is threatening to dump data on the darkweb that belongs to a Colorado provider of mental health, substance abuse and other healthcare services unless it pays nearly $1.5 million. The group is leaking records it claims to have stolen from a Mississippi nursing home.

Agency Says Cookies Could Help Attackers Find Network Assets, Vulnerabilities
Unencrypted cookies tied to a suite of secure gateway technology from F5 are gateways for hackers to reach internal devices on corporate networks, warns the Cybersecurity and Infrastructure Security Agency. BIG-IP uses persistent cookies as a traffic load-balancing convenience.

Authors/Presenters:Bill Tao, Om Chabra, Ishani Janveja, Indranil Gupta, Deepak Vasisht

Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara; and via the organizations YouTube channel.

Permalink

The post USENIX NSDI ’24 – Known Knowns and Unknowns: Near-Realtime Earth Observation Via Query Bifurcation In Serval appeared first on Security Boulevard.

A vulnerability was found in Concursive 2.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-7606. The attack can only be done within the local network. There is no exploit available.

As Middle East tensions rise, cyberattacks hit Iran’s government branches and nuclear facilities, following Israel’s response to Iran’s October 1 missile barrage. Amid escalating Middle East tensions, Iran faced major cyberattacks Saturday, disrupting its government branches and targeting nuclear facilities. The massive cyberattack followed Israel’s pledged response to Iran’s October 1 missile barrage, as regional […]

A vulnerability, which was classified as critical, has been found in Zendesk 1.0.5/7.x-1.1. This issue affects some unknown processing of the component E-Mail Message Handler. The manipulation of the argument Cc leads to improper authorization. The identification of this vulnerability is CVE-2024-49193. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file reset.php. The manipulation of the argument useremail leads to sql injection. This vulnerability is traded as CVE-2024-9894. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

个人数据资产可以变现了？国家数据局已官方辟谣；Palo Alto紧急修复多个严重的防火墙劫持漏洞 | 牛览 日期：2024年10月12日

纯血鸿蒙启动公测，爱加密鸿蒙加固平台发布，助力鸿蒙应用安全运营！ 日期：2024年10月12日 阅：9

OpenAI has disrupted over 20 malicious cyber operations abusing its AI-powered chatbot, ChatGPT, for debugging and developing malware, spreading misinformation, evading detection, and conducting spear-phishing attacks. [...]

A vulnerability was found in Actors Key 1.6.24.477. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-7605. The attack needs to be approached within the local network. There is no exploit available.

供应链的欧洲价值观化

卡西欧的攻击是否会成为威胁组织进入主流的突破口，进而带来更高的攻击量节奏，还有待观察。

Google создаёт терминал для запуска Debian на Android.