Aggregator

INDOHAXSEC TEAM Targeted the Website of Agency for Integration, Migration and Asylum

企业上云的新攻击面分析 by ourren

SANS：2024年检测与响应（DR）报告解读 by ourren

失控的 PCDN：观察 PCDN 技术现状与案例分析 by ourren

更多最新文章，请访问SecWiki

The draft of the long-awaited update to the NCIRP outlines the efforts, mechanisms, involved parties, and decisions the US government will use in response to a large-scale cyber incident.

DNI Claims to be Selling RDP Access of a Unidentified Retail Company in India

由于在 iPhone 中集成百度大模型的进展不顺，苹果正与腾讯和字节跳动磋商在中国销售的 iPhone 引入这两大巨头的大模型。苹果已经开始在 iPhone 中推出 OpenAI 的 ChatGPT，但 ChatGPT 在中国不可用，而在中国推出生成式 AI 服务需要先获得政府的批准，这一监管要求迫使苹果为中国销售的 iPhone 寻找本地合作伙伴。苹果与腾讯和字节跳动之间的谈判还处于早期阶段。此前苹果一直与百度合作整合百度的大模型，但双方在很多方面都存在分歧，百度希望保留 iPhone 用户数据用于分析，而这与苹果的隐私政策相悖。

A Threat Actor Claims to be Selling the Data of Korea University of Technology and Education

Privileged access management company BeyondTrust suffered a cyberattack in early December after threat actors breached some of its Remote Support SaaS instances. [...]

Edward_Snowden Claims to be Selling the Data of PuppyFinder[.]com

根据国际能源署 (IEA) 的最新报告，自俄罗斯入侵乌克兰导致全球天然气市场价格上涨以来，煤炭产量、贸易量以及发电量均创下历史新高。到今年年底，全球煤炭的使用量将达到 87.7 亿吨，这一数字未来几年将趋于平稳，将一直持续到 2027 年。中国的燃煤火电站占到了全球煤炭使用的三分之一，随着中国推进核电建设，加快太阳能光伏和风电发展，到 2027 年煤炭使用将受到限制。美国和欧盟等发达经济体的煤炭发电量已越过峰值，预计今年将分别下降 5% 和 12%。

22% крупных компаний хотя бы раз сталкивались с критичными киберугрозами.

Federal Bank Has Been Claimed a Victim to BASHE Ransomware

Juniper Networks warns that a Mirai botnet is targeting SSR devices with default passwords after unusual activity was reported on December 11, 2024. Juniper Networks is warning that a Mirai botnet is targeting Session Smart Router (SSR) products with default passwords. Multiple customers reported anomalous activity on their Session Smart Network (SSN) platforms on December […]

A Threat Actor Claims to have Leaked the Data of Ukraine State Customs Service

Даже перезагрузка не спасает от заражения. Что делать администраторам?

As 2024 comes to a close, IT security and business leaders will be braced for another challenging year ahead. In the long-term, economic uncertainty and geopolitical instability seem set to continue, creating the conditions in which threat actors thrive. They will increasingly have the tools at their disposal to launch more impactful cyber-attacks in greater numbers. In the meantime, boards will want to push ahead with important digital transformation initiatives—potentially expanding their attack surfaces in the process.

The post Data Security in 2025: Five Steps to Strategic Success in 2025 appeared first on Security Boulevard.

Have you found yourself scrolling through Shein’s endless feed of trendy clothes and asking yourself, “Is it safe to buy from here?” You’re not alone.  

The post Is Shein safe? Cybersecurity tips for fashion lovers appeared first on Security Boulevard.

在日益透明的现代战场上，欺骗仍然是军事计划的关键组成部分。尽管技术的进步使得欺骗更加困难，但它对于保持战略优势和实现军事成功至关重要。

文本是欧洲刑警组织（Europol）发布的《2024年欧盟恐怖主义形势与趋势报告》。该报告概述了2023年欧盟面临的恐怖主义威胁，并分析了不同类型的恐怖主义活动及其发展趋势。