Aggregator

Android banking Trojan TrickMo evolves using TON network for C2

ThreatFabric found a new TrickMo Android trojan focused on stealth and persistence, moving its command-and-control traffic to the TON network. Security researchers at ThreatFabric have recently identified a new version of TrickMo, a dangerous Android banking trojan that shows how malware operators are focusing less on flashy new features and more on improving stealth, flexibility, […]

马斯克旗下AI模型Grok已远远落后于迅猛增长的竞争对手。与此同时，其母公司SpaceX同意将庞大算力出租给Anthropic，这一协议不禁让人怀疑：Grok究竟还能否迎头赶上。根据分析公司AppMa

代码托管平台 GitLab 成为最新一家以 AI 为借口宣布裁员的科技公司。GitLab CEO Bill Staples 称该公司已通知员工启动重组，包括：关闭或合并小型团队所在国家的业务，将数量减少最多 30%；精简组织架构，在部分职能部门减少至多三层管理层级；重组研发部门；利用 AI 智能体重塑内部流程。他表示未来的软件将由机器构建，由人指导。AI 是未来软件构建的基础。智能体将负责规划、编码、审查、部署和修复，但人类仍然掌握着最重要的判断权。

代码托管平台 GitLab 成为最新一家以 AI 为借口宣布裁员的科技公司。GitLab CEO Bill Staples 称该公司已通知员工启动重组，包括：关闭或合并小型团队所在国家的业

Course: Security Blue Team — BTJAObjective: Use Linux command-line tools to identify, investigate, a

Non-members are welcome to access the full story herePress enter or click to view image in full size

Ставка была сделана на доверие к привычным зависимостям и ошибку, которую легко не заметить.

Press enter or click to view image in full sizeImagine plugging a simple USB drive into your compute

By: Kavin Jindal (@Klevr)Press enter or click to view image in full sizeA recent disclosure by a Nor

From fake NFT airdrops to malicious wallet approvals — how attackers exploit users directly on-chain

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and

portswigger LabInformation Disclosure is a security vulnerability where a system or application unin

portswigger LabInformation Disclosure is a security vulnerability where a system or application unin

Matrix 首页推荐 Matrix 是少数派的写作社区，我们主张分享真实的产品体验，有实用价值的经验与思考。我们会不定期挑选 Matrix 最优质的文章，展示来自用户的最真实的体验和观点。 文章代表

5月底，上海见！

5月底，上海见！

Обзор требований и утвержденных методов обезличивания ПДн в соответствии с Приказом РКН №140.

A vulnerability labeled as problematic has been found in Salesforce Module 1.0.0 on Backdrop. This impacts an unknown function. Executing a manipulation can lead to cross-site request forgery. This vulnerability is tracked as CVE-2026-45430. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.

A vulnerability identified as problematic has been detected in Zyxel WRE6505 v2 1.00(ABDV.3)C0. This affects an unknown function of the component Backup Configuration File Handler. Performing a manipulation results in insecure storage of sensitive information. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is identified as CVE-2026-7257. The attack can be initiated remotely. There is not any exploit available.