Aggregator

2025年08月11日-2025年08月17日本周漏洞态势研判情况本周信息安全漏洞威胁整体评价级别为中。国家

01.NET内网安全攻防报刊小报童电子报刊【.NET内网安全攻防】也正式上线了，引入小报童也是为了弥补知识星球

8 月 18 日消息，特斯拉官方微博宣布，Model Y L 车型即将登场，并发布视频展示了该车的内外设计；主播辛巴在直播中宣布由于身体原因正式退网；财联社 8 月 13 日消息称，阿里巴巴集团前合伙人蔡景现已离职。

近日，斯元Z-ONE在香港圆满举办了主题为 「Exploring China’s CyberTech in

实战出真知

文章指出当前环境异常，需完成验证后才能继续访问。

当前环境异常需完成验证后才可继续访问，请点击去验证。

微信新增引用回复功能；金标联盟推进Android适配工作；微软Edge移除网络控制台工具；AYANEO推出翻盖双屏掌机；Google因不正当竞争被罚；微软Defender更新或致硬盘故障；YouTube拟转播奥斯卡；NVIDIA聚焦云游戏服务GeForce NOW。

Claude AI新增功能，在极端情况下主动结束对话以保护模型，并作为实验收集数据。

CSOP 2025·北京站 亮点前瞻

微软被曝涉嫌协助以色列军方利用其云服务技术对巴勒斯坦人进行大规模通话监控和情报分析。媒体调查发现以色列8200部队利用Microsoft Azure存储并分析加沙地带的通话数据以确定轰炸目标。尽管微软曾声称未发现违规行为并禁止存储通过大规模监控获取的数据，但内部文件显示其高层早在2021年已知情且担忧相关用途。目前微软已委托律师展开新一轮内部调查，并承诺公布结果。

Key Takeaways SAQ eligibility depends on exactly how you accept payments, how you handle cardholder data, and how your payment systems connect to the rest of your environment. The PCI Security Standards Council defines the SAQ types, but your acquiring bank or payment processor is the one who decides which applies to you. They may […]

The post The 9 Types of PCI SAQs and Applicability appeared first on Centraleyes.

The post The 9 Types of PCI SAQs and Applicability appeared first on Security Boulevard.

Aug 18, 2025 - Lina Romero - Title: FireTail at Black Hat USA 2025: Finalist in the Startup Spotlight
FireTail was one of just four finalists competing at Black Hat’s Startup Spotlight this year.
FireTail was one of four startups selected as a finalist in the Black Hat USA 2025 Startup Spotlight Competition. This week was unforgettable and reaffirmed the urgent demand for AI security solutions.
FireTail was one of four startups selected as a finalist in the Black Hat USA 2025 Startup Spotlight Competition. This week was unforgettable and reaffirmed the urgent demand for AI security solutions.
Black Hat USA drew hundreds and hundreds of applicants, and being chosen as one of just four finalists alongside Keep Aware, Prime Security, and Twine Security reflects how critical AI risk management has become.
Our pitch detailed how FireTail delivers continuous discovery, risk assessment, and informed governance for AI systems, across both workload and workforce AI usage. We highlighted real security challenges like rogue AI, shadow AI and unauthorized data exposure, and shared how FireTail gives teams the visibility and control they need.
Watch our live pitch here:
Thank you to Black Hat, the Startup Spotlight judges, and our fellow finalists for a strong and inspiring competition. Huge congratulations to [Winner] on a well-deserved victory. We’re extremely proud to have been part of this wonderful event and honored to have been the only AI security company to have made the final.

The post FireTail at Black Hat USA 2025: Finalist in the Startup Spotlight – FireTail Blog appeared first on Security Boulevard.

This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.

At Blackhat, there wasn’t a space of 10 feet not festooned with vapid promises of AI curing – basically everything in security. During an AI summit here, multiple tens of would-be AI security contenders, sometimes with little else but a PhD and a burning pile of cash they’d drummed up, said they had all but […]

The post Blackhat 2025 – Test AI before you trust appeared first on Security Boulevard.

Threat Attack Daily - 18th of August 2025

这个如果直接是net的dll，加载后不能触发静态构造函数，所以是不能进行rce的，需要结合HelpText属性中的getter方法触发构造函数从而rce(在实例化了 SimpleTypeResolver类可以用，这里是直接传入type使用不了) 解决办法是在Assembly.LoadFrom加载的时候会执行DllMain() 从而让它加载 mixed assemblies（混合程序集）来实现rce

Ransomware Attack Update for the 18th of August 2025