Aggregator
.NET 反混淆神器 de4dot 的可视化版本工具
1 week 3 days ago
Daily Dose of Dark Web Informer - November 19th, 2024
1 week 3 days ago
This daily article is intended to make it easier for those who want to stay updated with my regular posts. Any subscriber-only content will be clearly marked at the end of the link.
Dark Web Informer
Similarities Between SOX And SEC's Cyber Rule - Padraic O'Reilly - BSW #373
1 week 3 days ago
Nov 19, 2024The Sarbanes-Oxley (SOX) Act was a watershed moment in corporategovernance, fundamental
Trader Loses $26M in ezETH Tokens: Media Blames User, Hacker Calls Out ERC-20 Flaws
1 week 3 days ago
My name is Dexaran. I’m a hacker, I’ve designed and executed one of the largest consensus-level at
The HackerNoon Newsletter: Is AI Progress Slowing? The Scaling Debate OpenAI Doesn’t Want to Have (11/19/2024)
1 week 3 days ago
17家单位联发《工业和信息化领域数据安全合规指引》
1 week 3 days ago
11月19日,17家单位联合发布《工业和信息化领域数据安全合规指引》,聚焦数据处理者在履行数据安全保护义务过程中的难点问题,明确数据安全合规依据,提供实务指引,有利于支撑数据处理者全面、准确、规范开展数据安全合规管理,提升数据安全保护能力。
关注本公众号【威努特安全网络】,在对话框回复【合规指引】获取原文。
编制单位:
工业信息安全产业发展联盟
中国钢铁工业协会
中国有色金属工业协会
中国石油和化学工业联合会
中国建筑材料联合会
中国机械工业联合会
中国汽车工业协会
中国纺织工业联合会
中国轻工业联合会
中国电子信息行业联合会
中国计算机行业协会
中国通信企业协会
中国互联网协会
中国通信标准化协会
中国中小企业国际合作协会
中国通信学会
工业和信息化部商用密码应用产业促进联盟
远程办公新范式:威努特零信任安全访问控制系统
1 week 3 days ago
基于零信任的远程办公安全解决方案。
Weekly Report: JPCERT/CCが「インターネット定点観測レポート(2024年 7-9月)」を公開
1 week 3 days ago
JPCERT/CCは、「インターネット定点観測レポート(2024年 7-9月)」を公開しました。2024年7月から9月の間に、インターネット定点観測システム「TSUBAME」で観測した結果とその分析の概要について紹介しています。
Ablative Study on Domain Adapter, Motion Module Design, and MotionLoRA Efficiency
1 week 3 days ago
Authors:(1) Yuwei Guo, The Chinese University of Hong Kong;(2) Ceyuan Yang, Shanghai Artificial I
DEF CON 32 – Bricked & Abandoned: How To Keep IoT From Becoming An IoTrash
1 week 3 days ago
Authors/Presenters: Paul Rob
JVN: FitNesseにおける複数の脆弱性
1 week 3 days ago
unclebobが提供するFitNesseには複数の脆弱性が存在します。
The Essential Guide to Social Share Images in 2024
1 week 3 days ago
As developers, we spend hours crafting great content, but often overlook how it appears when shared
CVE-2011-5028 | novell Sentinel Log Manager up to 1.2.0.1 938 filename path traversal (EDB-21082 / XFDB-71861)
1 week 3 days ago
A vulnerability was found in novell Sentinel Log Manager up to 1.2.0.1 938. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument filename leads to path traversal.
This vulnerability is known as CVE-2011-5028. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
IntelBroker and EnergyWeaponUser Have Claimed to have Leaked Tesla EV Charging Station
1 week 3 days ago
IntelBroker and EnergyWeaponUser Have Claimed to have Leaked Tesla EV Charging Station
Dark Web Informer
Russian Phobos ransomware operator faces cybercrime charges
1 week 3 days ago
Russian Phobos ransomware operator Evgenii Ptitsyn, accused of managing attacks, was extradited from South Korea to the US to face cybercrime charges. Russian Phobos ransomware operator Evgenii Ptitsyn, suspected of playing a key role in the ransomware operations, was extradited from South Korea to the US to face cybercrime charges. According to the DoJ, the […]
Pierluigi Paganini
CVE-2023-27561 | runc up to 1.1.4 volume-mount Configuration rootfs_linux.go access control (Issue 2197 / Nessus ID 211562)
1 week 3 days ago
A vulnerability was found in runc up to 1.1.4. It has been declared as critical. This vulnerability affects unknown code of the file libcontainer/rootfs_linux.go of the component volume-mount Configuration. The manipulation leads to improper access controls.
This vulnerability was named CVE-2023-27561. Access to the local network is required for this attack to succeed. There is no exploit available.
vuldb.com
CVE-2023-25809 | runc up to 1.1.4 /sys/fs/cgroup permissions (GHSA-m8cg-xc2p-r3fc / Nessus ID 211562)
1 week 3 days ago
A vulnerability, which was classified as critical, has been found in runc up to 1.1.4. Affected by this issue is some unknown functionality of the file /sys/fs/cgroup. The manipulation leads to preservation of permissions.
This vulnerability is handled as CVE-2023-25809. It is possible to launch the attack on the local host. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-29038 | tpm2-tools Quote Data tpm2_checkquote mutable attestation or measurement reporting data (Nessus ID 211559)
1 week 3 days ago
A vulnerability classified as problematic has been found in tpm2-tools. This affects the function tpm2_checkquote of the component Quote Data Handler. The manipulation leads to mutable attestation or measurement reporting data.
This vulnerability is uniquely identified as CVE-2024-29038. The attack needs to be done within the local network. There is no exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2024-29039 | tpm2-tools pcr Selection Value tpm2_checkquote.c comparison (Nessus ID 211559)
1 week 3 days ago
A vulnerability classified as problematic was found in tpm2-tools. This vulnerability affects unknown code of the file tools/misc/tpm2_checkquote.c of the component pcr Selection Value Handler. The manipulation leads to incorrect comparison.
This vulnerability was named CVE-2024-29039. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com