Aggregator
网络安全信息与动态周报2025年第1期(2024年12月30日-2025年1月5日)
7 months 1 week ago
本周,互联网网络安全态势整体评价为良。
网络安全信息与动态周报2025年第1期(2024年12月30日-2025年1月5日)
7 months 1 week ago
本周网络安全基本态势本周,互联网网络安全态势整体评价为良。我国互联网基础设施运行整体平稳,全国范围或省级行政区域内未发生造成重大影响的基础设施运行安全事件。针对政府、企业以及广大互联网用户的主要安全威
一年一度!CACTER管理员社区积分礼盒兑换活动开始啦~
7 months 1 week ago
感恩同行,“邮” 启新程!CACTER管理员社区已经陪伴管理员和安全员走过了三个春夏秋冬啦! 2024年,感谢 […]
Coremail
一年一度!CACTER管理员社区积分礼盒兑换活动开始啦~
7 months 1 week ago
一年一度!CACTER管理员社区积分礼盒兑换活动开始啦~感恩同行,“邮” 启新程!CACTER管理员社区已经陪伴管理
一年一度!CACTER管理员社区积分礼盒兑换活动开始啦
7 months 1 week ago
CACTER
一年一度!CACTER管理员社区积分礼盒兑换活动开始啦
7 months 1 week ago
感恩同行,“邮” 启新程!CACTER管理员社区已经陪伴管理员和安全员走过了三个春夏秋冬啦!
2024年,感谢大家始终如一的信赖与支持。值此新岁之际,一年一度的积分兑换活动盛大开启,只要积分满足条件的客户都有机会获得一份蛇年大礼盒!欢迎新老客户参与兑换!恭祝大家在新的一年里诸事顺利,身体健康!
2024年度社区积分礼盒兑换活动规则
1、面向对象
CACTER管理员社区已认证管理员
2、兑换时间
即日起至2025年1月16日
3、积分兑换条件
如果您的积分在以下2个区间内,即可兑换礼盒:
·2021-2022年入驻的用户:80分≤积分≤1999分
·2023-2024年入驻的用户:积分≥2050分
tips:点击活动链接的【我要报名】填写地址,CACTER小助手核实积分后将陆续寄送礼盒~
4、积分兑换方式
登录CACTER管理员社区,点击“活动”-“2024年度社区积分礼盒兑换活动——蛇年礼盒大放送!”,进入活动页面,点击“我要报名”,即可填写收货地址。
·本年度社区积分兑换数据统计至2024年12月31日;
·新老客户均可兑换,去年兑换过的管理员也可兑换;
·点击【我要报名】填写地址,CACTER小助手核实积分后将陆续寄送礼盒。
5、积分查询路径
1.登录CACTER管理员社区;
2.点击“我的头像”,进入个人页面;
3.点击“我的CM币”,可查看积分的变动及来源,查看“更多”【初始资本】对应社区账号注册时间;
4.及时查收小助手的私信,将给您发放积分兑换邮件通知及社区私信。
6、积分获取途径
活动积分主要来源于社区账户基本信息完善、安全产品试用、直播参与、社区活动、评论互动参与、恶意样本激励等活动。
欢迎各位新老客户参与积分兑换活动领取蛇年大礼盒~如对2024年度社区积分礼盒兑换活动存有疑问,可咨询CACTER小助手(微信号:CoremailSecurity)
*以上活动最终解释权归CACTER所有
Coremail邮件安全
喜报!CACTER登榜CCSIP 2024中国网络安全行业全景册
7 months 1 week ago
2024年12月31日, FreeBuf咨询正式发布了《CCSIP(China Cyber Secu […]
Coremail
喜报!CACTER登榜CCSIP 2024中国网络安全行业全景册
7 months 1 week ago
喜报!CACTER登榜CCSIP 2024中国网络安全行业全景册2024年12月31日, FreeBuf咨询正式发布
FDA Warns of Cyber Risks in Guidance for AI-Enabled Devices
7 months 1 week ago
New Non-Binding Recommendations Target Medical Device Makers, Software Developers
Manufacturers are eager to incorporate AI into a wide range of medical devices, from cardiac monitors that can spot developing heart problems to medical imaging systems that can find malignancies a radiologist might miss. The FDA released a new guidance this week on how to secure these devices.
Manufacturers are eager to incorporate AI into a wide range of medical devices, from cardiac monitors that can spot developing heart problems to medical imaging systems that can find malignancies a radiologist might miss. The FDA released a new guidance this week on how to secure these devices.
CISA Issues New Goals to Strengthen IT Cybersecurity
7 months 1 week ago
CISA Urges IT and Design Sector Software Developers to Improve Cyber Hygiene
The Cybersecurity and Infrastructure Security Agency is urging the information technology and design sector to strengthen foundational cybersecurity practices throughout the software development lifecycle by aiming to achieve a series of new sector-specific goals released Tuesday.
The Cybersecurity and Infrastructure Security Agency is urging the information technology and design sector to strengthen foundational cybersecurity practices throughout the software development lifecycle by aiming to achieve a series of new sector-specific goals released Tuesday.
Veracode Boosts Supply Chain Security Via Phylum Acquisition
7 months 1 week ago
Phylum's Product Delivers Real-Time Detection of Malicious Open-Source Packages
To combat the rise in software supply chain attacks, Veracode has acquired Denver-area startup Phylum and its advanced tools to detect malicious open-source packages. The purchase strengthens Veracode's software composition analysis offering and enables faster, more reliable threat mitigation.
To combat the rise in software supply chain attacks, Veracode has acquired Denver-area startup Phylum and its advanced tools to detect malicious open-source packages. The purchase strengthens Veracode's software composition analysis offering and enables faster, more reliable threat mitigation.
New EagerBee Campaign Targeting Middle Eastern Organizations
7 months 1 week ago
Campaign Uses Updated Version of the Malware Plugin, Kaspersky Says
Hackers are deploying an updated strain of EagerBee malware to target internet service providers and government organizations in the Middle East, warn security researchers. EagerBee operates in memory and comes with advanced stealth and security evasion capabilities.
Hackers are deploying an updated strain of EagerBee malware to target internet service providers and government organizations in the Middle East, warn security researchers. EagerBee operates in memory and comes with advanced stealth and security evasion capabilities.
Ransomware Targeting Infrastructure Hits Telecom Namibia
7 months 1 week ago
The southern African telco is the latest entity on the continent to have its critical infrastructure hacked, and attackers release sensitive info online when Telecom Namibia refuses to negotiate.
Robert Lemos, Contributing Writer
U.S. CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog
7 months 1 week ago
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Oracle WebLogic Server and Mitel MiCollab vulnerabilities, to its Known Exploited Vulnerabilities (KEV) catalog. Below are the descriptions for the vulnerabilities added to the catalog: […]
Pierluigi Paganini
U.S. CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog
7 months 1 week ago
U.S. CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited
December 2024 Detection Highlights: Detecting DLL hollowing and phishing using SVGs, and an expanded set of new YARA rules
7 months 1 week ago
The Labs team at VMRay actively gathers publicly available data to identify any noteworthy malware
不连接移动硬盘,如何隔空找到文件?
7 months 1 week ago
Silent Spies: How Russian Surveillance Systems Are Tracking You Worldwide
7 months 1 week ago
In an age where digital footprints can be traced with just a few clicks, surveillance technology has become a double-edged sword. While it can enhance security and improve services, it also poses significant privacy concerns. One of the most formidable players in this realm is Russia, whose surveillance technologies are expanding their reach across borders, […]
The post Silent Spies: How Russian Surveillance Systems Are Tracking You Worldwide appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya
CVE-2024-8002 | VIWIS LMS 9.11 File Upload filename cross site scripting
7 months 1 week ago
A vulnerability has been found in VIWIS LMS 9.11 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component File Upload. The manipulation of the argument filename leads to cross site scripting.
This vulnerability is known as CVE-2024-8002. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com