Aggregator
售价 20000 的三折叠,居然真是当下手机的「最优解」?
1 year 9 months ago
在看了首台量产三折叠手机 、华为 Mate XT 后,你有对三折叠手机心动吗?
谈谈俄乌战场攻防欺骗之道
1 year 9 months ago
从“气球大战”引发的思考
Фото, ставшее легендой, идентифицировано через пять лет
1 year 9 months ago
Загадка привлекла внимание миллионов людей по всему миру.
Crimson Palace returns: New Tools, Tactics, and Targets
1 year 9 months ago
Chinese cyberespionage campaign renews efforts in multiple organizations in Southeast Asia, blending tactics and expanding efforts
gallagherseanm
Weekoverzicht Defensieoperaties
1 year 9 months ago
De luchtmacht ondersteunde met 4 F-35’s de jaarlijkse herdenking bij het Nationaal Indië Monument in Roermond. De toestellen vlogen een zogeheten missing man-formatie. Daarbij verlaat een van de gevechtsvliegtuigen de groep en symboliseert zo de gevallen kameraden. Een overzicht van Defensieoperaties in de week van 4 tot en met 10 september 2024.
Chinese Tag Team APTs Keep Stealing Asian Gov't Secrets
1 year 9 months ago
A PRC threat cluster known as "Crimson Palace" is demonstrating the benefits of having specialized units carry out distinct stages of a wider attack chain.
Nate Nelson, Contributing Writer
CVE-2011-4317 | Oracle E-Business Suite 11.5.10.2 on Oracle9i Application Server 1.0.2.2 HTTP Server input validation (EDB-36352 / Nessus ID 57791)
1 year 9 months ago
A vulnerability was found in Oracle E-Business Suite 11.5.10.2 on Oracle9i Application Server 1.0.2.2 and classified as critical. This issue affects some unknown processing of the component HTTP Server. The manipulation leads to improper input validation.
The identification of this vulnerability is CVE-2011-4317. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
Mustang Panda Deploys Advanced Malware to Spy on Asia-Pacific Governments
1 year 9 months ago
The threat actor tracked as Mustang Panda has refined its malware arsenal to include new tools in order to facilitate data exfiltration and the deployment of next-stage payloads, according to new findings from Trend Micro.
The cybersecurity firm, which is monitoring the activity cluster under the name Earth Preta, said it observed "the propagation of PUBLOAD via a variant of the worm HIUPAN."
The Hacker News
首例脸部和眼睛移植手术一年后
1 year 9 months ago
2021 年高压线路工 Aaron James 在一场电气事故中受伤,他因此失去了左臂、左眼、下巴和鼻子。他不能吃固体食物,也失去了味觉和嗅觉,还不能正常说话。2023 年 5 月,James 在纽约大学朗格尼健康中心接受了全球首例全眼和全脸移植手术。术后一年多,移植的眼睛虽然很健康——视网膜甚至可以对光线做出反应,但对 James 来说,恢复视力仍是一个挑战。当 James 从手术中醒来时,注意到的第一件事就是气味。两年没有嗅觉后能闻到气味,他很感激,尽管这种气味是“医院”的味道。大约术后一周半,James 第一次看到自己的新面孔。即使是现在,当他经过镜子时,也会凝视自己的面孔并为此着迷。他出门时不再像移植前那样戴眼罩和口罩,他还很高兴能再次留起胡子。移植的眼睛不能移动或看到东西,但它有正常的压力和良好的血液流动,视网膜对光线也有反应。James 可以感觉到眼眶深处发痒,眼睛周围的感觉也已经开始恢复。
CVE-2012-0031 | Apache HTTP Server up to 2.2.22 resource management (EDB-41768 / Nessus ID 69653)
1 year 9 months ago
A vulnerability, which was classified as problematic, was found in Apache HTTP Server. Affected is an unknown function. The manipulation leads to improper resource management.
This vulnerability is traded as CVE-2012-0031. Attacking locally is a requirement. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
苹果发布 iPhone 16 和 iPhone 16 Plus
1 year 9 months ago
苹果在周一的新闻发布会上宣布了 iOS 18、macOS 15、iPadOS 18、iPhone 16 和 iPhone 16 Plus 等新产品和新操作系统。iOS 加入了对 RCS 标
Цифровая дискриминация: ICANN vs Россия
1 year 9 months ago
Россия сталкивается с новыми ограничениями из-за санкций США.
Операция «Uncle Scam»: даже простой тендер способен уничтожить приватность госкомпаний
1 year 9 months ago
Почему американские чиновники добровольно пускают хакеров в свои сети?
CISA Issues Warning About Three Actively Exploited Vulnerabilities in the Wild
1 year 9 months ago
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about three critical vulnerabilities currently being exploited in the wild. These vulnerabilities affect a range of widely used software and systems, posing significant risks to organizations and individuals alike. CISA advises immediate action to mitigate these threats. CVE-2016-3714: ImageMagick Improper Input Validation Vulnerability […]
The post CISA Issues Warning About Three Actively Exploited Vulnerabilities in the Wild appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya
WhatsApp“阅后即焚”功能可被绕过
1 year 9 months ago
最近,安全公司Zengo的研究员披露WhatsApp的“阅后即焚”功能存在严重漏洞。——该功能本意是让用户发送的消息只能被查看一次,以保护用户隐私不外泄,但实际上却可以被轻易绕过。
URLDNS反序列化利用链
1 year 9 months ago
看雪论坛作者ID:米龙·0xFFFE
2024年网安周|绿盟科技:网安新十年,持续释放网安赋能关键力
1 year 9 months ago
网络安全为人民,网络安全靠人民
新课来袭 | WMBa0带你领略Android逆向的魅力!在CTF赛场上所向披靡
1 year 9 months ago
解决Android-CTF的难点和空白,在实战中学习如何快速解题
威胁情报 | DarkHotel APT 组织 Observer 木马攻击分析
1 year 9 months ago
今年6月,我们在分析过程中发现了几个APT组织的攻击样本,通过同源关联到其他的攻击木马,并对此展开了分析。根据近期国内外安全厂商发布的“伪猎者APT”组织的文章,对比确认为同一批通过WPS漏洞进行网络攻击的最终载荷木马。