Aggregator

【资源】伊朗相关开源情报工具

1 week 5 days ago

伊朗相关开源情报工具网站。

Интернет больше нельзя отключить: кончился пакет — остаётся 400 кбит/с навсегда

1 week 5 days ago

Плюс 1 пункт в список базовых прав человека? Если вы в Южной Корее…

Masjesu 僵尸网络是一种自 2023 年初开始运作并持续演进至 2026 年的复杂商业化物联网威胁。该僵尸网络以隐秘性为核心，以DDoS 攻击租赁服务的形式，主要通过 Telegram 进行推广。它针对路由器、网关等多种物联网设备，支持 i386、MIPS、ARM、AMD64 等多种架构。为实现持久化与低可见性，Masjesu 采用谨慎低调的传播策略，而非大规模感染，刻意避开美国国防部等列入黑名单的 IP 段，保障长期存活。该僵尸网络使用基于异或（XOR）的加密混淆字符串、配置与载荷数据，大幅降低静态检测的有效性。传播时，恶意软件会随机扫描 IP，利用 D-Link、GPON、Netgear 等厂商设备的多个漏洞入侵。其命令与控制（C2）基础设施采用多域名 + 备用 IP 架构，支持 TCP、UDP、HTTP 洪水等多种 DDoS 攻击方式。 Masjesu 背后的攻击者仍以 Telegram 作为核心推广与获客平台。有趣的是黑名单 IP 过滤机制刻意避开以下网段，规避执法打击：私有地址：0.0.0.0/8、10.0.0.0/8、127.0.0.0/8、172.16.0.0/12、192.168.0.0/16 美国国防部（DoD）：26.0.0.0/8、132.1.0.0/16、150.1.0.0/16 等美国联邦机构、军方承包商、政府骨干网相关网段原文链接： https://www.trellix.com/blogs/research/masjesu-rising-stealth-iot-botnet-ddos-evasion/

Weekly Threat Landscape Digest – Week 15

HAWKEYE

1 week 5 days ago

Week 15 highlighted a rapidly evolving cyber threat environment driven by actively exploited vulnerabilities in enterprise software, identity and access […]

The post Weekly Threat Landscape Digest – Week 15 appeared first on HawkEye.

Ben O

Bringing Rust to the Pixel Baseband

Google Online Security Blog

1 week 5 days ago

Edward Fernandez

Orange Business Reimagines Enterprise Voice Communications With Trust and AI

darkreading

1 week 5 days ago

ClickFix finds a new way to infect Macs

Security Boulevard

1 week 5 days ago

ClickFix campaigns have found a way around macOS Tahoe's warnings against pasting commands in the Terminal. They're using Script Editor instead.

The post ClickFix finds a new way to infect Macs appeared first on Security Boulevard.

Malwarebytes

Тёмную материю искали везде. Нашли в Млечном Пути. В других галактиках — тишина. Учёные поняли: она не одна, их две

Securitylab.ru

1 week 5 days ago

Почему самая загадочная субстанция во вселенной играет с нами в прятки?

[un]prompted 2026 – Anatomy Of An Agentic Personal Al Infrastructure

Security Boulevard

1 week 5 days ago

Author, Creator & Presenter: Daniel Miessler, Founder, Unsupervised Learning

Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations' YouTube Channel.

Permalink

The post [un]prompted 2026 – Anatomy Of An Agentic Personal Al Infrastructure appeared first on Security Boulevard.

Marc Handelman

«Кибердержава» под ключ. Цифровую безопасность превратили в национальную идею

Securitylab.ru

1 week 5 days ago

Рассказываем, как устроена новая пятилетка Китая по защите данных.

Akira

Dark Feed IO

1 week 5 days ago

You must login to view this content

cohenido

行业会议 | 2026常安论坛（早鸟票倒计时一周）

安全学术圈

1 week 5 days ago

常安论坛 | 早鸟票倒计时一周！

Ransomware attack on ChipSoft knocks EHR services offline across hospitals in the Netherlands and Belgium

Security Affairs

1 week 5 days ago

Dutch healthcare IT firm ChipSoft suffered a ransomware attack, forcing services and its HiX platform offline, impacting hospitals and patients. ChipSoft, a major Dutch provider of EHR systems, was hit by a ransomware attack that forced it to take its website and digital services offline, disrupting access for hospitals, healthcare providers, and patients. EHR (Electronic […]

Pierluigi Paganini

Florida investigates OpenAI for role ChatGPT may have played in deadly shooting

The Record

1 week 5 days ago

Last week, the family of one of two victims in the attack announced it plans to sue OpenAI because the gunman allegedly constantly communicated with ChatGPT in the days leading to the shootings.

法国政府将从 Windows 工作站迁移到 Linux 工作站

Solidot

1 week 5 days ago

在微软听命于美国总统下达的不合理命令之后，越来越多的欧盟国家开始强化数字主权，远离软件巨人，拥抱开源软件。法国总理命令跨部门数字事务局（DINUM）采取措施减少对美国的依赖。DINUM 已经宣布了第一个目标：替代 Windows。DINUM 负责监管各政府部门的 IT 设备和服务部署，它宣布工作站运行的操作系统将从 Windows 迁移到 Linux。除了工作站，协作工具、防病毒软件、人工智能、数据库、虚拟化等也将考虑迁移到非美国解决方案。

Analysis of one billion CISA KEV remediation records exposes limits of human-scale security

Bleeping Computer.

1 week 5 days ago

Analysis of 1 billion CISA KEV remediation records reveal a breaking point for human-scale security. Qualys shows most critical flaws are exploited before defenders can patch them. [...]

Спецслужбы тоже любят мобильные игры. Только они в них не играют, а смотрят, где вы находитесь

Securitylab.ru

1 week 5 days ago

А вы и дальше продолжайте скачивать бесплатные приложения.

Hackers Use Fake BTS World Tour Ticket Sites to Scam Fans Across Multiple Countries

Cyber Security News

1 week 5 days ago

Cybercriminals are capitalizing on the excitement around BTS’s long-awaited return to the world stage by setting up fraudulent ticket websites that steal money from unsuspecting fans. The campaign has already reached fans across nine countries, making it one of the most geographically widespread concert ticket scams seen in recent years. BTS, one of the biggest […]

The post Hackers Use Fake BTS World Tour Ticket Sites to Scam Fans Across Multiple Countries appeared first on Cyber Security News.

Tushar Subhra Dutta

Ваша почта — всё ещё проходной двор для хакеров. В Positive Technologies решили это исправить

Securitylab.ru

1 week 5 days ago

PT Email Security предлагает новый уровень контроля входящих данных.

Industrial Controllers Still Vulnerable As Conflicts Move to Cyber

darkreading

1 week 5 days ago

The US government warns programmable logic controllers are being targeted, and research turns up 179 vulnerable operational technology (OT) devices.

Robert Lemos

Aggregator

Managed ad