Aggregator

Discover details about CVE-2024-28995, a path-traversal vulnerability in SolarWinds Serv-U, and see how a honeypot setup revealed diverse exploit attempts, including manual attacks. Learn how attackers bypassed filters and targeted specific files in this comprehensive analysis.

The latest MITRE Engenuity ATT&CK Evaluations pitted leading managed detection and response (MDR) services against threats modeled on the menuPass and BlackCat/AlphV adversary groups. Trend Micro achieved 100% detection across all 15 major attack steps with an 86% actionable rate for those steps— balancing detections and business priorities including operational continuity and minimized disruption.

移动互联网时代，微信、支付宝、抖音等平台成为了人们之间重要的生活、经济交往平台，记录了大量的个人数据，甚至存储

For the latest discoveries in cyber research for the week of 17th June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES An attack targeting Snowflake customer databases, identified as the work of threat actor UNC5537, has led to significant data theft and extortion. UNC5537 used stolen Snowflake customer credentials, obtained mainly from infostealer […]

The post 17th June – Threat Intelligence Report appeared first on Check Point Research.

我们看到的并不是真实的这是最近两个月在生活的经历里逐步体会到的观点，经过了一个以月为单位的实践过程，我准备写文

我们看到的并不是真实的这是最近两个月在生活的经历里逐步体会到的观点，经过了一个以月为单位的实践过程，我准备写文

我们看到的并不是真实的这是最近两个月在生活的经历里逐步体会到的观点，经过了一个以月为单位的实践过程，我准备写文

我们看到的并不是真实的这是最近两个月在生活的经历里逐步体会到的观点，经过了一个以月为单位的实践过程，我准备写文

做“组队打卡”，我想解决的问题是：微信群内打卡统计麻烦。举个例子，有个群里约定，每人每周需要两次 30 分钟以上的运动，打卡带上图片证据。

by Mike Saunders, Principal Security Consultant This blog is the first in a series of articles on methods for obfuscating shellcode. I’ll be focusing on how to obfuscate shellcode to […]

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析

【学术报告】无意的“劫持”：安卓应用中TLS证书验证问题的细粒度归因分析