Aggregator
.NET 代码审计:揭秘 web.config 中的高危配置漏洞
8 months 3 weeks ago
[ .NET 安全代码审计 ] 从零基础到高阶实战,开启漏洞赏金之路
8 months 3 weeks ago
当前环境出现异常问题,需完成验证后方可继续访问服务。
.NET 内网实战攻防电子报刊
8 months 3 weeks ago
当前环境出现异常状态,请完成验证操作后即可恢复访问权限。
.NET 代码审计:揭秘 web.config 中的高危配置漏洞
8 months 3 weeks ago
当前环境出现异常状态,需完成验证后才能继续访问相关内容或功能。
Microsoft IIS 漏洞允许未授权攻击者执行恶意代码(CVE-2025-59282)
8 months 3 weeks ago
微软披露IIS平台存在关键远程代码执行漏洞CVE-2025-59282,源于竞态条件和释放后使用错误。该漏洞允许攻击者通过诱骗用户打开恶意文件触发攻击,在企业环境中可能引发严重安全风险。微软尚未发布补丁,建议用户停用不必要的IIS服务并限制文件执行策略以缓解风险。
Altman:ChatGPT将支持成人内容;港版iPhone Air无法用内地eSIM;传雷军一夜掉粉30万|极客早知道
8 months 3 weeks ago
苹果 CEO 库克亲临 Apple Store 浦东,听真实用户分享 Apple Watch 救命经历;
饿了么多地试点取消骑士超时扣款,预计 10 月覆盖更多城市;
马斯克收到黄仁勋亲手交付的 AI 超算 DGX Spark
Altman:ChatGPT将支持成人内容;港版iPhone Air无法用内地eSIM;传雷军一夜掉粉30万|极客早知道
8 months 3 weeks ago
当前环境异常,请完成验证后继续访问。
Invoice Phish Tsunami: MFA-Bypassing Phish Sweep U.S. via OneDrive & Backblaze
8 months 3 weeks ago
十月初至九月底出现大量钓鱼攻击,利用文档分享和账单更新诱饵针对Outlook、SharePoint及OneDrive用户。攻击者借助合法基础设施如Backblaze、Azure及被黑小企业域名,并广泛采用MFA钓鱼工具包进行 credential 和 MFA 信息窃取。
Qilin
8 months 3 weeks ago
You must login to view this content
cohenido
Qilin
8 months 3 weeks ago
You must login to view this content
cohenido
Qilin
8 months 3 weeks ago
You must login to view this content
cohenido
Patchwork APT组织最新攻击样本分析
8 months 3 weeks ago
Patchwork APT组织最新攻击样本分析
Plex Coffee delivers fast, personal service with ChatGPT
8 months 3 weeks ago
Learn how Plex Coffee uses ChatGPT Business to centralize knowledge, train staff faster, and preserve personal connections while expanding.
GreyNoise’s Recent Observations Around F5
8 months 3 weeks ago
Amid the security incident involving F5 BIG-IP announced on 15 October 2025, GreyNoise is sharing recent insights into activity targeting BIG-IP to aid in defensive posturing.
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits
8 months 3 weeks ago
Trend™ Research has uncovered an attack campaign exploiting the Cisco SNMP vulnerability CVE-2025-20352, allowing remote code execution and rootkit deployment on unprotected devices, with impacts observed on Cisco 9400, 9300, and legacy 3750G series.
Dove Chiu
Exploit Development: Unveiling Windows ARM64 Pointer Authentication (PAC)
8 months 3 weeks ago
Examining the implementation and implication of PAC in user-mode and kernel-mode on ARM64 Windows
Connor McGarr
New Release: Tor Browser 14.5.9
8 months 3 weeks ago
Tor Browser 14.5.9 已发布,修复了 Android 版本年终活动接管问题。用户可通过下载页面或分发目录获取更新,并可提交反馈或查看完整更新日志。
标准解读:城市轨道交通网络信息系统安全技术要求
8 months 3 weeks ago
标准预计2025年第四季度发布,发布后3个月正式实施。
The 8 Most Dangerous File Types for Malware Infections
8 months 3 weeks ago
The post The 8 Most Dangerous File Types for Malware Infections appeared first on Votiro.
The post The 8 Most Dangerous File Types for Malware Infections appeared first on Security Boulevard.
Votiro