Aggregator
Marriott settles with FTC, to pay $52 million over data breaches
11 months 1 week ago
Marriott International and its subsidiary Starwood Hotels will pay $52 million and create a comprehensive information security program as part of settlements for data breaches that impacted over 344 million customers. [...]
Bill Toulas
Vulnerability Prioritization & the Magic 8 Ball
11 months 1 week ago
Last month marks 25 years of operation for the CVE (Common Vulnerabilities and Exposures) program, launched in September 1999. It’s difficult to imagine a world without CVEs. Much of the “vulnerability management” activities, before the CVE program became popular, relied on matching version numbers from remote scans and executing shady exploits found in dark places on […]
The post Vulnerability Prioritization & the Magic 8 Ball appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.
The post Vulnerability Prioritization & the Magic 8 Ball appeared first on Security Boulevard.
Chris Garland
US, UK warn of Russian APT29 hackers targeting Zimbra, TeamCity servers
11 months 1 week ago
U.S. and U.K. cyber agencies warned today that APT29 hackers linked to Russia's Foreign Intelligence Service (SVR) target vulnerable Zimbra and JetBrains TeamCity servers "at a mass scale." [...]
Sergiu Gatlan
Нан-Мадол: как стихия стерла с лица земли целую цивилизацию
11 months 1 week ago
Руины древнего города - послание из прошлого о грядущих катастрофах.
Internet Archive 被黑,影响3100万名用户
11 months 1 week ago
Internet Archive暂无回应
Mozilla 修复已遭利用的 Firefox 0day漏洞
11 months 1 week ago
速修复
ADDO session: The state of SBOM, what’s coming in standards and regulations
11 months 1 week ago
In 2021, the Log4j vulnerability catalyzed the industry to take action to boost the security of open source components. The development community is leading this movement, but governments are also taking notice and writing legislation to regulate how organizations approach software transparency.
The post ADDO session: The state of SBOM, what’s coming in standards and regulations appeared first on Security Boulevard.
Sonatype
APT-C-20(APT28)使用复合攻击战术的攻击活动分析
11 months 1 week ago
报告重点分析和剖析了APT28三类最为活跃的攻击战术,深入揭示其在近期攻击活动中的侵入路径、使用工具和技战术
星火之势,绒聚成辰:火绒安全渠道伙伴大会诚邀您的参与
11 months 1 week ago
x64dbg入门实战-本周更新多节
11 months 1 week ago
掌握x64dbg,从基础到高级调试与自动化
Internet Archive 遭遇黑客攻击,导致3100万用户数据泄露
11 months 1 week ago
archive.org 的访问者看到黑客创建的 JavaScript 警报
CAN协议分析
11 months 1 week ago
看雪论坛作者ID:gir@ffe
SDC2024议题聚焦 | Rust 的安全幻影:语言层面的约束及其局限性
11 months 1 week ago
揭露Rust安全机制的局限性与潜在漏洞
观点 | 推进大模型在数字政府中的应用
11 months 1 week ago
大模型尚处在发展早期,面对技术浪潮保持理性思考,对于兼顾发展和安全、提高数字政府建设水平的意义重大。
专家解读 | 夯实全域数字化转型基础 推进智慧城市高质量发展
11 months 1 week ago
9月12日,国家数据局城市全域数字化转型工作现场会在重庆召开,就下一步如何推进城市数字化做出了明确指引。此次会议围绕城市全域数字化转型的关键问题,聚焦重点抓推进,智慧城市深化升级方向渐进清晰。
热点关注 | 公共数据是什么?如何更好地开发利用这一资源?
11 months 1 week ago
9日,中共中央办公厅、国务院办公厅印发的《关于加快公共数据资源开发利用的意见》发布,这是中央层面首次对公共数据资源开发利用进行系统部署。10日,国新办举行新闻发布会,国家数据局局长刘烈宏、副局长陈荣辉、数据资源司司长张望给出了权威解答。
专家解读 | 陆军:推动数据标准成体系建设,促进数字经济高质量发展
11 months 1 week ago
《国家数据标准体系建设指南》的发布,是贯彻落实习近平总书记关于加快建设数字中国、网络强国、培育和发展新质生产力等系列重要论述的生动实践,《指南》明确了当前和未来一段时间我国数据标准化工作的发展方向,为新时期数据标准化工作赋予了更高使命。
发布 | 中共中央办公厅 国务院办公厅关于加快公共数据资源开发利用的意见
11 months 1 week ago
中共中央办公厅、国务院办公厅印发的《关于加快公共数据资源开发利用的意见》10月9日发布,这是中央层面首次对公共数据资源开发利用进行系统部署。
手机 AI 2.0 时代,OriginOS 5 找到了哪些「成功密码」?
11 months 1 week ago
提供最丰富功能的同时,减少用户负担,保持高效,是未来智能手机系统「好用」的关键。