Aggregator

意见反馈截止日期为2025年8月29日前。

随着智能网联汽车功能的不断丰富，汽车已从传统机械装置演变为集成电子系统和软件的智能化终端。软件体系差异日益成为汽车价值差异化的关键，软件及服务能力逐渐成为汽车产业的核心竞争力。然而，伴随技术迭代加速，智能网联汽车软件安全风险呈显著上升趋势。

Cisco has issued a software update to address the vulnerability, which can allow an unauthenticated, remote attacker to inject arbitrary shell commands

速修复

立即更新

火绒团队收到用户反馈称有一款通过仿冒Faceit反作弊软件官网进行传播的Steam盗号程序，正借助B站视频广泛扩散，严重威胁Steam玩家的财产与信息安全。建议大家提高警惕，切勿轻信不明链接；如遇问题，应及时通过官方正规渠道寻求解决方案。

2025年7月1日工业和信息化部引发《2025年护航新型工业化网络安全专项行动方案》。 《行动方案》聚焦突出重点管理、做优服务模式，以推动重点企业、重要系统、关键产品防护能力升级为核心，提出3方面、8项重点任务，推动提高工业领域网络安全保障水平，着力支撑制造业高质量发展，为实现“十五五”良好开局奠定坚实基础。

在2025年快速演变的数字化格局中，安全运营中心（SOC）正处于转折点。

Microsoft Urges Immediate Mitigation as State Actors Target SharePoint Flaw
Hackers breached a sensitive database containing office locations and personal details of elected officials and staff in Canada's House of Commons. Hackers were able to "exploit a recent Microsoft vulnerability," according to an internal email sent to members and staff.

US Treasury Says Crypto Exchange Helped Launder $100 Million for Ransomware Gangs
The U.S. Department of Treasury sanctioned Thursday a Russian founder and co-owners of the Garantex cryptocurrency exchange in a bid to tighten methods criminal hackers use to launder extortion money and Kremlin sanctions busting. Regulators also sanctioned Garantex successor Grinex.

Report North Korean Hacking Group Adds Ransomware to Traditional Playbook
A ScarCruft subgroup dubbed "ChinopuNK" has launched a disruptive ransomware campaign across South Korea, using phishing lures, AutoIt loaders and microphone-capturing malware - marking a major change in the North Korean hacking group's traditionally espionage-focused cyber tactics.

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

太强啦！！！

文末投递简历

NFC 技术成银行卡盗刷 “帮凶”