Aggregator
【已复现】NestJS Devtools 远程代码执行漏洞(CVE-2025-54782)安全风险通告
10 months 2 weeks ago
致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。
【已复现】1Panel agent 远程命令执行漏洞(CVE-2025-54424)安全风险通告
10 months 2 weeks ago
致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。
Bitdefender Warns Users to Update Dahua Cameras Over Critical Flaws
10 months 2 weeks ago
Security researchers at Bitdefender have found two critical vulnerabilities (CVE-2025-31700, CVE-2025-31701) in popular Dahua security cameras, including the Hero C1 model.
Deeba Ahmed
花掉我1分钱巨款的AISecOps 机器人在认真办事吗?
10 months 2 weeks ago
Leader在群里发了一个链接。看标题,出现新漏洞了。
First Sentencing in Scheme to Help North Koreans Infiltrate US Companies
10 months 2 weeks ago
亚利桑那女子Chapman因协助朝鲜IT人员伪装成美国员工进入多家大公司工作被判8年半。她托管其电脑以伪造在美国境内工作的假象,并处理非法所得1700万美元。此外,她还协助将设备运往海外。
Panel to create roadmap for establishing US Cyber Force
10 months 2 weeks ago
The Commission on Cyber Force Generation will develop potential routes Congress and the White House could follow in creating a separate cyber service and aim to deliver them in time for next year’s must-pass national defense authorization act.
Black Hat 2025: Why We Built a Museum Instead of a Booth
10 months 2 weeks ago
Think you know what to expect from a conference booth? Think again. Forget the cliches: the swag destined for the back of your wardrobe, the formula one simulators, the marketing trickery. Instead, step into a new kind of conference experience, one that takes you on a journey through past, present, and future of cybersecurity. Step [...]
The post Black Hat 2025: Why We Built a Museum Instead of a Booth appeared first on Wallarm.
The post Black Hat 2025: Why We Built a Museum Instead of a Booth appeared first on Security Boulevard.
Ivan Novikov
Man-in-the-Middle Attack Prevention Guide
10 months 2 weeks ago
Some of the most devastating cyberattacks don’t rely on brute force, but instead succeed through stealth. These quiet intrusions often go unnoticed until long after the attacker has disappeared. Among the most insidious are man-in-the-middle (MITM) attacks, where criminals exploit weaknesses in communication protocols to silently position themselves between two unsuspecting parties
The Hacker News
【安全圈】警惕!假冒 Discord / OnlyFans 验证页面传播新型“Epsilon Red”勒索软件
10 months 2 weeks ago
关键词勒索软件2025年7月,网络安全公司 CloudSEK 披露了一起全球范围内正在活跃的新型勒索软件攻击活
【安全圈】Microsoft Teams 推出“60 秒静默测试通话”功能,助力 IT 管理员主动评估网络质量
10 months 2 weeks ago
关键词Microsoft微软近日宣布,Microsoft Teams 将推出一项新的网络监控能力,即“60 秒
【安全圈】严重安全事件:Netflix、Amazon、Disney+ 使用的微软 PlayReady DRM 证书遭泄露
10 months 2 weeks ago
【安全圈】AWS封禁事件:开发者十年数据遭“技术性清零”暴露云服务信任危机
10 months 2 weeks ago
关键词AWS近日,一位Ruby开源社区的资深开发者Seuros遭遇了令人震惊的事件:他使用了十年的AWS账户突
Black Hat 2025: Why We Built a Museum Instead of a Booth
10 months 2 weeks ago
Wallarm在Black Hat 2025创建了一个网络安全博物馆,展示从古代斯巴达密码到现代API安全的历史演变,为专业人士提供沉浸式体验。
【安全圈】警惕!假冒 Discord / OnlyFans 验证页面传播新型“Epsilon Red”勒索软件
10 months 2 weeks ago
当前环境异常,需完成验证后方可继续访问。
【安全圈】严重安全事件:Netflix、Amazon、Disney+ 使用的微软 PlayReady DRM 证书遭泄露
10 months 2 weeks ago
当前环境异常,请完成验证以继续访问。
【安全圈】Microsoft Teams 推出“60 秒静默测试通话”功能,助力 IT 管理员主动评估网络质量
10 months 2 weeks ago
环境异常提示需完成验证后继续访问。
【安全圈】AWS封禁事件:开发者十年数据遭“技术性清零”暴露云服务信任危机
10 months 2 weeks ago
当前环境出现异常问题,需完成验证后方可继续访问相关内容或功能。
Man-in-the-Middle Attack Prevention Guide
10 months 2 weeks ago
中间人攻击通过伪装成可信实体窃取敏感信息,常见于未受保护的Wi-Fi环境。防范措施包括加密通信、使用VPN、配置安全协议及多因素认证等。
Black Hat 2025: Why We Built a Museum Instead of a Booth
10 months 2 weeks ago
Wallarm在Black Hat 2025上设立“网络安全博物馆”,通过展示历史加密工具与安全设备,讲述网络安全从古代到现代的演变历程,并展望未来趋势。该展位旨在为专业人士提供沉浸式体验,超越传统营销噱头。参观者可通过 booth #4830 或 cyber.museum 进一步探索。