Aggregator

截至目前，共破获相关案件1900余起。近日，公安部公布依法打击网上侵权假冒犯罪10起典型案例。

公安部治安管理局副局长亓希国在会上表示，任何单位和个人利用网络发布制作或者销售枪爆物品信息，传授制枪制爆犯罪方法，设立用于制作或者销售枪爆物品的网站、通讯群组均涉嫌违法犯罪，公安机关将依法予以查处，构成犯罪的将依法追究刑事责任。

对话式人工智能技术的应用对现有的信息检索方式而言，可能带来一场深刻变革。但是，由于其算法模型的固有缺陷，隐藏的风险也不容小觑，自然语言交互、自动化提取、个性化推荐等特点使其在为用户提供贴心服务的同时，...

近年来，全球数字经济的高速发展，2019年我国首次将数据增列为生产要素，成为第五大生产要素。党的二十大报告指出，数据作为新型生产要素，正以前所未有的广度、深度融入经济社会发展各领域全过程，成为促进经济增长、构筑国家竞争优势的重要力量。

中国信息安全测评中心是我国专门从事信息技术安全测试和风险评估的权威职能机构，现面向社会招录10名非编产品安全测评人员。

胡金鱼

CISA released nineteen Industrial Control Systems (ICS) advisories on November 14, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-319-01 Siemens RUGGEDCOM CROSSBOW
• ICSA-24-319-02 Siemens SIPORT
• ICSA-24-319-03 Siemens OZW672 and OZW772 Web Server
• ICSA-24-319-04 Siemens SINEC NMS
• ICSA-24-319-05 Siemens Solid Edge
• ICSA-24-319-06 Siemens SCALANCE M-800 Family
• ICSA-24-319-07 Siemens Engineering Platforms
• ICSA-24-319-08 Siemens SINEC INS
• ICSA-24-319-09 Siemens Spectrum Power 7
• ICSA-24-319-10 Siemens TeleControl Server
• ICSA-24-319-11 Siemens SIMATIC CP
• ICSA-24-319-12 Siemens Mendix Runtime
• ICSA-24-319-13 Rockwell Automation Verve Asset Manager
• ICSA-24-319-14 Rockwell Automation FactoryTalk Updater
• ICSA-24-319-15 Rockwell Automation Arena Input Analyzer
• ICSA-24-319-16 Hitachi Energy MSM
• ICSA-24-319-17 2N Access Commander
• ICSA-24-291-01 Elvaco M-Bus Metering Gateway CMe3100 (Update A)
• ICSMA-24-319-01 Baxter Life2000 Ventilation System

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-9463 Palo Alto Networks Expedition OS Command Injection Vulnerability
• CVE-2024-9465 Palo Alto Networks Expedition SQL Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

NIST researchers have trained AI to detect the telltale sound even in noisy environments.

企业资讯

Learn what is IP reputation and what kinds of causes can bring poor reputation. Check out the benefits and improvement ideas for better IP reputation for your business.

The post Understanding IP Reputation: Why It Matters for Your Business and How to Improve It appeared first on Security Boulevard.

Bitdefender победил опасный шифровальщик ShrinkLocker.

部分 app 应用使用运营商本机号码认证业务域名，借助运营商提供的基于网络的本机号码自动登录服务，通过后台访问特定 API 从运营商处获取当前流量归属的

November 14, 2024Thank

软件介绍 NFC Tools PRO功能强大且免费的NFC卡模拟器，可模拟各类门禁卡、电梯卡、部分公司（工厂）工卡或饭卡、部分学校饭卡、部分图书馆借书卡等各类IC卡，用手机替代卡片去刷门禁、刷电...

Хакер KryptonZambie устроил чёрную пятницу на форуме киберпреступников.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.11.1. This issue affects the function seq_nr of the component padata. The manipulation leads to integer overflow. The identification of this vulnerability is CVE-2024-47739. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.1.112/6.6.53/6.10.12/6.11.1. This vulnerability affects unknown code of the component mac80211. The manipulation leads to Privilege Escalation. This vulnerability was named CVE-2024-47738. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.