这个技能转换 Agent 平台,想帮你积累「睡后收入」|AI 上新
以积分,换技能,享受人生。
Aggregator
Microsoft Lifts Two Major Blocks on Windows 11 24H2 Update
3 months 3 weeks ago
Microsoft has lifted two additional safeguards that had previously prevented users from installing the Windows 11 24H2 update
The post Microsoft Lifts Two Major Blocks on Windows 11 24H2 Update appeared first on Penetration Testing Tools.
ddos
Asterisk 23.0.0 Lands with Critical Security Fix and Key Stability Upgrades
3 months 3 weeks ago
The Asterisk development team has announced the release of Asterisk 23.0.0, now available for download on GitHub and
The post Asterisk 23.0.0 Lands with Critical Security Fix and Key Stability Upgrades appeared first on Penetration Testing Tools.
ddos
特朗普授权CIA在委内瑞拉开展秘密行动,分析美委军事对峙与情报博弈
3 months 3 weeks ago
图片:专家称特朗普和马杜罗远未达成协议。2025年10月,美国以“打击拉美贩毒集团”为名,在委内瑞拉附近海域
蒙古国新任总理被罢免了?
3 months 3 weeks ago
据外交家杂志25年10月20日报道,蒙古国正在经历又一次Z治动荡。
Cybersecurity jobs available right now: October 21, 2025
3 months 3 weeks ago
CISO Open-Xchange | Germany | Remote – View job details As a CISO, you will lead the development and implementation of security strategies and requirements across the OX Group. You will advise management on information security matters, provide transparent reporting, and drive continuous improvement of the organization’s security management system. You will oversee risk assessments, monitor emerging threats, and ensure secure product development, system architecture, and cloud operations. CISO Princeton University | USA | On-site … More →
The post Cybersecurity jobs available right now: October 21, 2025 appeared first on Help Net Security.
Anamarija Pogorelec
OpenWrt One Gets Mainline Linux Support with Just 500 Lines of Code
3 months 3 weeks ago
Nearly a year after the announcement of the OpenWrt One router, the community has finally received the long-awaited
The post OpenWrt One Gets Mainline Linux Support with Just 500 Lines of Code appeared first on Penetration Testing Tools.
ddos
Сотни промптов — это искусство? Художник требует переписать Конституцию ради одной картины
3 months 3 weeks ago
Что если машина создала шедевр, а человек — идею?
UK Ministry of Defense Probes Military Contractor Data Leak
3 months 3 weeks ago
Ransomware Group Lynx Reportedly Stole 4TB of Data
The U.K. Ministry of Defense is investigating an apparent data breach by Russian-speaking ransomware hackers of a building facilities contractor with ties to the military. The Lynx ransomware group posted on its darkweb site samples of what it says is 4 terabytes of data stolen from the Dodd Group.
The U.K. Ministry of Defense is investigating an apparent data breach by Russian-speaking ransomware hackers of a building facilities contractor with ties to the military. The Lynx ransomware group posted on its darkweb site samples of what it says is 4 terabytes of data stolen from the Dodd Group.
Cyberattack Disrupts Services at 2 Massachusetts Hospitals
3 months 3 weeks ago
IT Systems, Radiology Services Taken Offline; Ambulance Patients Diverted
A North Central Massachusetts nonprofit healthcare system with two community hospitals, a medical group and several other care facilities has taken its IT network offline and is diverting ambulance patients as it continues to respond to a cyberattack that hit last week.
A North Central Massachusetts nonprofit healthcare system with two community hospitals, a medical group and several other care facilities has taken its IT network offline and is diverting ambulance patients as it continues to respond to a cyberattack that hit last week.
Salt Typhoon Targets European Telecom
3 months 3 weeks ago
Attack Began With Citrix NetScaler Gateway Compromise, Darktrace Said
The Chinese cyberespionage hackers commonly tracked as Salt Typhoon haven't stopped their campaign against global telecoms, says managed threat detection firm Darktrace. The group has made telecoms and other digital infrastructure a primary target.
The Chinese cyberespionage hackers commonly tracked as Salt Typhoon haven't stopped their campaign against global telecoms, says managed threat detection firm Darktrace. The group has made telecoms and other digital infrastructure a primary target.
US Court Blocks Spyware Maker NSO Over WhatsApp Hack
3 months 3 weeks ago
NSO Group Blocked From WhatsApp and Must Destroy Code Used to Hack 1,400 Devices
A federal judge issued a permanent injunction barring NSO Group from using or retaining its WhatsApp spyware exploit, citing national security risks and business harm after the manufacturer's tools compromised 1,400 devices - some allegedly linked to journalists and officials.
A federal judge issued a permanent injunction barring NSO Group from using or retaining its WhatsApp spyware exploit, citing national security risks and business harm after the manufacturer's tools compromised 1,400 devices - some allegedly linked to journalists and officials.
UK Ministry of Defense Probes Military Contractor Data Leak
3 months 3 weeks ago
Ransomware Group Lynx Reportedly Stole 4TB of Data
The U.K. Ministry of Defense is investigating an apparent data breach by Russian-speaking ransomware hackers of a building facilities contractor with ties to the military. The Lynx ransomware group posted on its darkweb site samples of what it says is 4 terabytes of data stolen from the Dodd Group.
The U.K. Ministry of Defense is investigating an apparent data breach by Russian-speaking ransomware hackers of a building facilities contractor with ties to the military. The Lynx ransomware group posted on its darkweb site samples of what it says is 4 terabytes of data stolen from the Dodd Group.
Cyberattack Disrupts Services at 2 Massachusetts Hospitals
3 months 3 weeks ago
IT Systems, Radiology Services Taken Offline; Ambulance Patients Diverted
A North Central Massachusetts nonprofit healthcare system with two community hospitals, a medical group and several other care facilities has taken its IT network offline and is diverting ambulance patients as it continues to respond to a cyberattack that hit last week.
A North Central Massachusetts nonprofit healthcare system with two community hospitals, a medical group and several other care facilities has taken its IT network offline and is diverting ambulance patients as it continues to respond to a cyberattack that hit last week.
Salt Typhoon Targets European Telecom
3 months 3 weeks ago
Attack Began With Citrix NetScaler Gateway Compromise, Darktrace Said
The Chinese cyberespionage hackers commonly tracked as Salt Typhoon haven't stopped their campaign against global telecoms, says managed threat detection firm Darktrace. The group has made telecoms and other digital infrastructure a primary target.
The Chinese cyberespionage hackers commonly tracked as Salt Typhoon haven't stopped their campaign against global telecoms, says managed threat detection firm Darktrace. The group has made telecoms and other digital infrastructure a primary target.
US Court Blocks Spyware Maker NSO Over WhatsApp Hack
3 months 3 weeks ago
NSO Group Blocked From WhatsApp and Must Destroy Code Used to Hack 1,400 Devices
A federal judge issued a permanent injunction barring NSO Group from using or retaining its WhatsApp spyware exploit, citing national security risks and business harm after the manufacturer's tools compromised 1,400 devices - some allegedly linked to journalists and officials.
A federal judge issued a permanent injunction barring NSO Group from using or retaining its WhatsApp spyware exploit, citing national security risks and business harm after the manufacturer's tools compromised 1,400 devices - some allegedly linked to journalists and officials.
Detecting Password-Spraying in Entra ID Using a Honeypot Account
3 months 3 weeks ago
<p>Password-spraying is a popular technique which involves guessing passwords to gain control of accounts. This automated password-guessing is performed against all users and typically avoids account lockout since the…</p>
Sean Metcalf
浅析SecOps中的AI Agent和Agentic AI,以及SOC自主化水平模型
3 months 3 weeks ago
厘清Agentic AI和AI Agent的关系,建立安全运营平台自主化水平模型,推动自主化安全运营平台(ASOP)的发展
窃取加密货币的恶意 VSCode 插件在 OpenVSX 平台再度出现
3 months 3 weeks ago
名为“TigerJack”的网络犯罪团伙持续将目标对准开发者,通过在微软Visual Code插件市场及OpenVSX注册表中发布恶意插件,实现加密货币窃取与后门植入。
其中两款恶意插件在VSCode市场累计被下载1.7万次后遭下架,但目前仍存在于OpenVSX平台。此外,TigerJack还会以新名称在VSCode市场重新发布相同恶意代码,规避平台审核。
据悉,OpenVSX是社区维护的开源插件市场,定位为微软VSCode插件市场的替代选择,提供独立、无厂商绑定的插件注册服务。
它同时也是多款热门VSCode兼容编辑器的默认插件市场——这些编辑器因技术或法律限制无法使用微软官方市场,典型包括Cursor与Windsurf。
网络安全公司Koi Security的研究人员发现了此次攻击活动。数据显示,自今年年初以来,TigerJack已散布至少11款恶意VSCode插件。
研究人员指出,此前从VSCode市场下架的两款插件分别名为“C++ Playground”与“HTTP Format”,而攻击者通过新账号将这两款插件重新上架,继续诱导开发者下载。
三类恶意插件的核心危害:窃取源码、隐秘挖矿、远程控机
1. C++ Playground:近实时窃取C++源码
该插件启动后,会为C++文件注册“文本文档变更监听程序(onDidChangeTextDocument)”,用于将开发者的源码外传至多个外部端点。为实现近实时捕获,监听程序会在代码编辑后约500毫秒触发,记录开发者的按键内容。
2. HTTP Format:伪装正常功能,后台无限制挖矿
Koi Security表示,HTTP Format虽能实现宣传的“HTTP格式化”功能,但会在后台秘密运行CoinIMP挖矿程序。它通过硬编码的凭证与配置,利用主机计算资源挖掘加密货币,且未设置任何资源使用限制,会占用主机全部算力。
主机上活跃的矿工来源
3. cppplayground等插件:远程加载代码,支持任意执行
TigerJack发布的第三类恶意插件(包括cppplayground、httpformat、pythonformat),会从硬编码地址(ab498.pythonanywhere.com/static/in4.js)获取JavaScript代码并在主机执行。
该远程地址每20分钟会被插件轮询一次,攻击者无需更新插件,即可随时推送新恶意代码,实现“任意代码执行”。
恶意功能
研究人员称,这类插件比前两类威胁更大,因其支持扩展功能,可灵活发起后续攻击。
攻击团伙伪装手段与平台响应
TigerJack 是 “有组织的多账号操作”,通过伪造独立开发者身份掩盖真实目的——包括搭建 GitHub 仓库、设计品牌标识、列出详细功能清单,以及使用与正规工具相似的插件名称,增强伪装可信度。
Koi Security 已将相关发现报告给 OpenVSX,但截至报告发布时,该注册表维护方尚未回应,上述两款恶意插件仍可下载。
恶意扩展已从 VSCode 中删除(左),但仍可在 OpenVSX(右)上使用来源
研究人员建议,使用该平台获取软件的开发者,应仅从信誉良好、可信赖的发布者处下载插件,避免安装来源不明的工具。
胡金鱼
浅析SecOps中的AI Agent和Agentic AI,以及SOC自主化水平模型
3 months 3 weeks ago
好的,我现在需要处理用户的查询。用户发来了一段内容,看起来像是一个错误页面或者提示信息。内容提到“环境异常”,并建议完成验证后继续访问,还有一个“去验证”的链接。
首先,我要理解用户的需求。用户要求用中文总结这篇文章的内容,控制在100字以内,并且不需要特定的开头,直接写描述即可。看起来用户可能遇到了访问问题,想要快速了解发生了什么。
接下来,分析文章内容。文章主要信息是环境异常,需要验证才能继续访问。这可能涉及到安全验证、网络问题或者其他系统维护的情况。用户可能需要知道当前的问题是什么,以及如何解决。
然后,考虑如何简洁地总结。重点在于环境异常和需要完成验证才能继续访问。不需要太多技术细节,只需传达主要信息。
最后,确保语言简洁明了,符合用户的要求,并且控制在100字以内。这样用户可以快速获取关键信息,采取相应的行动。
当前环境出现异常,请完成验证后继续访问。