Aggregator

猫：是时候开始担心电子毛球会抢走工作了……

Name: HKCERT CTF 2024 (Qualifying Round) (an HKCERT CTF event.)
Date: Nov. 8, 2024, 10 a.m. — 10 Nov. 2024, 10:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://platform.ctf.hkcert.org/
Rating weight: 61.22
Event organizers: Black Bauhinia HKCERT

Name: BlueHens CTF 2024 (an BlueHens CTF event.)
Date: Nov. 8, 2024, 5 p.m. — 10 Nov. 2024, 05:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://bluehens.ctfd.io/
Rating weight: 34.05
Event organizers: Blue Hens

Name: HITCON CTF 2024 Final (an HITCON CTF event.)
Date: Nov. 9, 2024, midnight — 10 Nov. 2024, 08:00 UTC  [add to calendar]
Format: Attack-Defense
On-site
Location: Taiwan, Taipei
Offical URL: http://ctf.hitcon.org/
Rating weight: 1.00
Event organizers: HITCON

Name: M*CTF 2024 Quals (an M*CTF online event.)
Date: Nov. 9, 2024, 9 a.m. — 10 Nov. 2024, 09:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://mctf.mtuci.ru/
Rating weight: 33.59
Event organizers: BinaryBears

Name: N1CTF 2024 (an N1CTF event.)
Date: Nov. 9, 2024, noon — 10 Nov. 2024, 12:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://ctf2024.nu1l.com/
Rating weight: 89.85
Event organizers: Nu1L

KDE 和 GNOME 是 Linux 生态系统两大最流行的桌面环境，但很多发行版通常更侧重于 GNOME，KDE 处于次要位置。今年早些时候 Fedora 开发者开始认真讨论是否应该将 Fedora KDE 与 GNOME 版本摆在同等位置，在宣传上一视同仁的对待。现在这一提议已经获得一致通过，这意味着从 Fedora 42 开始，GNOME 和 KDE 版本将具有同等地位。

A vulnerability was found in ReadyNet WRT300N-DD 1.0.26. It has been rated as critical. Affected by this issue is some unknown functionality of the component DNS Query Handler. The manipulation of the argument PORT leads to improper input validation. This vulnerability is handled as CVE-2015-7282. The attack may be launched remotely. There is no exploit available.

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging   Typosquat Campaign Targeting npm Developers ToxicPanda: […]

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Mazda Connect flaws allow to hack some Mazda vehicles Veeam Backup & Replication exploit reused in new Frag […]

A vulnerability classified as critical was found in Adobe Flash Player up to 11.2.202.548/18.0.0.261/19.0.0.245. This vulnerability affects unknown code. The manipulation leads to use after free. This vulnerability was named CVE-2015-8427. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Humanizar IA是什么Humanizar IA 是一款免费AI文本人化器，可将 AI 生成的文本转换为自然、类似人类的写作风格，提升文本的可读性

Full Disclosuremailing list archivesFrom: SEC Consult Vulnerability Lab via Full

A vulnerability was found in ReadyNet WRT300N-DD 1.0.26. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2015-7281. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Alsaplayer 0.99.71. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument -f/-o leads to memory corruption. This vulnerability is handled as CVE-2002-1896. Attacking locally is a requirement. Furthermore, there is an exploit available.

2024 年 10 月，肯尼亚和索马里的恐怖主义事件急剧增加，基地组织附属青年党声称对 70 多起袭击事件负责，而 9 月份的袭击事件仅为 50 多起。该组织的攻击位置集中在下谢贝利、下朱巴和巴科勒地区，这表明这些地区仍将是未来袭击的焦点。

这本选集提供了基于宗教或相关仇恨言论的深入案例研究；讨论相关国际法、哲学和宗教规范框架；专家分析以宗教名义煽动仇恨言论的因素，以帮助宗教行为者，特别是宗教领袖，提出减少或防止仇恨言论的措施。

A vulnerability was found in ReadyNet WRT300N-DD 1.0.26. It has been classified as critical. Affected is an unknown function. The manipulation leads to credentials management. This vulnerability is traded as CVE-2015-7280. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply restrictive firewalling.

A vulnerability classified as critical has been found in Adobe Flash Player up to 11.2.202.548/18.0.0.261/19.0.0.245. This affects an unknown part. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2015-8430. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

DataCon2024大数据安全分析竞赛，全新升级五大赛道：AI安全、漏洞分析、网络黑产分析、软件供应链安全、网络基础设施安全赛道。我们诚邀全球的数据安全专家、学者和爱好者，共同参与这场数据安全的竞技盛宴，探索数据安全的无限可能！报名网址：https://datacon.qianxin.com/datacon2024