关于举办“2025年网络攻防专项行动总结提升暨蓝队防守能力强化培训”的通知
为深入复盘本次专项行动中的典型经验与实践反馈,推动技战法沉淀与防御机制优化,全面提升各单位防守实战能力,中关村华安关键信息基础设施安全保护联盟(简称“关保联盟”)联合多位参与专项行动的网络攻防指挥官与技术专家,举办线下专场培训活动。
Aggregator
专家解读 | 发展数据标注产业是建设高质量数据集的关键支撑
2 days 21 hours ago
数据作为人工智能发展的三大核心要素之一,已成为人工智能大模型训练的核心要素资源。因此,建设高质量数据集既是推进人工智能产业发展和抢占技术制高点的客观需要,也是落实党中央“加快发展新一代人工智能”战略部署的具体行动。
安全可靠测评结果公告(2025年第2号)
2 days 21 hours ago
近日,中国信息安全测评中心网站公布《安全可靠测评结果公告(2025年第2号)》。
美电信巨头同意支付约1.77亿美元,以解决因两次数据泄露引发的集体诉讼
2 days 21 hours ago
别再被 MISC 题目劝退!20小时吃透加密/隐写/取证,竞赛拿分稳了
2 days 21 hours ago
学习如何分析题目+解决题目
拿offer、涨薪资的关键!2025名企技术高薪岗全梳理,应届生&职场人速存
2 days 21 hours ago
文末投递简历
AI 浏览器或成诈骗新目标:PromptFix 攻击让智能助手误入钓鱼网站并自动付款
2 days 21 hours ago
AI 浏览器被引导至钓鱼网站
2025 KCTF | 第四题《血色试炼》设计思路及解析
2 days 21 hours ago
本题共有14支战队成功提交flag
聚焦 | CSOP 2025网络安全运营实战大会在京开幕
2 days 21 hours ago
当前环境异常,需完成验证后才可继续访问。
美电信巨头同意支付约1.77亿美元,以解决因两次数据泄露引发的集体诉讼
2 days 21 hours ago
当前环境出现异常,需完成验证后方可继续访问。
关于举办“2025年网络攻防专项行动总结提升暨蓝队防守能力强化培训”的通知
2 days 21 hours ago
当前环境出现异常,需完成验证后方可继续访问。
专家解读 | 发展数据标注产业是建设高质量数据集的关键支撑
2 days 21 hours ago
由于环境异常,需完成验证以继续访问。
安全可靠测评结果公告(2025年第2号)
2 days 21 hours ago
当前环境出现异常,请完成验证后继续访问。
2025 KCTF | 第四题《血色试炼》设计思路及解析
2 days 21 hours ago
当前环境出现异常,需完成验证后方可继续访问。
别再被 MISC 题目劝退!20小时吃透加密/隐写/取证,竞赛拿分稳了
2 days 21 hours ago
当前环境出现异常问题,需完成验证操作后方可继续访问相关内容,点击"去验证"按钮即可进行身份验证操作。
拿offer、涨薪资的关键!2025名企技术高薪岗全梳理,应届生&职场人速存
2 days 21 hours ago
当前环境出现异常提示,需完成验证后方可继续访问。
AI 浏览器或成诈骗新目标:PromptFix 攻击让智能助手误入钓鱼网站并自动付款
2 days 21 hours ago
当前环境出现异常,需完成验证后方可继续访问。
Colt Confirms Customer Data Stolen in Ransomware Attack
2 days 21 hours ago
Telecommunications giant Colt Technology Services has confirmed that customer data was compromised in a sophisticated cyber attack that began on August 12, 2025. The company disclosed that threat actors accessed sensitive files containing customer information and subsequently posted document titles on the dark web, prompting immediate containment measures and law enforcement notification. Key Takeaways1. Colt […]
The post Colt Confirms Customer Data Stolen in Ransomware Attack appeared first on Cyber Security News.
Florence Nightingale
CVE-2024-1706 | ZKTeco ZKBio Access IVS up to 3.3.2 Department Name Search Bar cross site scripting
2 days 21 hours ago
A vulnerability, which was classified as problematic, has been found in ZKTeco ZKBio Access IVS up to 3.3.2. This impacts an unknown function of the component Department Name Search Bar. This manipulation with the input <marquee>hi causes cross site scripting. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is registered as CVE-2024-1706. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
The vendor explains: "ZKBio Access IVS is no longer maintained and the product has been replaced by ZKBio CVAccess, it is recommended to replace it with the latest version of ZKBio CVAccess."
vuldb.com
CVE-2025-9135 | Verkehrsauskunft Österreich SmartRide/cleVVVer/BusBahnBim up to 12.1.1(258) AndroidManifest.xml improper export of android application components
2 days 21 hours ago
A vulnerability described as problematic has been identified in Verkehrsauskunft Österreich SmartRide, cleVVVer and BusBahnBim up to 12.1.1(258). The impacted element is an unknown function of the file AndroidManifest.xml. The manipulation results in improper export of android application components.
This vulnerability is cataloged as CVE-2025-9135. The attack must be initiated from a local position. Furthermore, there is an exploit available.
Upgrading the affected component is recommended.
The vendor was contacted early and fixed the issue by "[r]emoving the task affinity of the app so it can't be copied".
vuldb.com