Aggregator

1月│月报 谛听工控安全月报上线了，工信部的最新政策，1月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

1月│月报 谛听工控安全月报上线了，工信部的最新政策，1月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

1月│月报 谛听工控安全月报上线了，工信部的最新政策，1月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

1月│月报 谛听工控安全月报上线了，工信部的最新政策，1月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

1月│月报 谛听工控安全月报上线了，工信部的最新政策，1月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

英伟达 GTC 大会将于 3 月 17 日至 21 日举行；特斯拉上月德国销量暴跌 59%；小米眼镜官微上线，消息称将在 2 月发布

Currently trending CVE - hypeScore: 1 - Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious CPU microcode resulting in loss of confidentiality and integrity of a confidential guest running under AMD SEV-SNP.

Currently trending CVE - hypeScore: 1 - Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network.

Currently trending CVE - hypeScore: 6 - Next.js is a React framework for building full-stack web applications. By sending a crafted HTTP request, it is possible to poison the cache of a non-dynamic server-side rendered route in the pages router (this does not affect the app router). When this crafted request is sent it

A vulnerability has been found in TinTin WinTin++ 1.97.9 and classified as very critical. Affected by this vulnerability is the function add_line_buffer. The manipulation leads to memory corruption. This vulnerability is known as CVE-2008-0671. The attack can be launched remotely. Furthermore, there is an exploit available.

This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.

This blog post details our analysis of an SEO manipulation campaign targeting Asia. We also share recommendations that can help enterprises proactively secure their environment.

On Thursday, February 6, 2025, we experienced an outage with our object storage service (R2) and products that rely on it. Here's what happened and what we're doing to fix this going forward.

具备高兼容性、全自研、强算力、低成本和高安全性等优势。

Local law enforcements need to steer away from "place-based policing" when investigating cybercrimes.

A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/config_ISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. This vulnerability is uniquely identified as CVE-2024-3457. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /admin/add_ikev2.php. The manipulation of the argument TunnelId leads to sql injection. This vulnerability was named CVE-2024-3458. The attack can be initiated remotely. Furthermore, there is an exploit available.