ARM系统深度调试与逆向:深入了解ARM架构3大系列
直播授课,小班教学
Aggregator
以色列支付系统遭DDoS攻击,全国读卡器瘫痪
9 months 2 weeks ago
以色列遭遇DDoS攻击导致全国信用卡读卡器故障,攻击持续约一小时后得到缓解
修改PE导入表注入DLL——实例图文教程
9 months 2 weeks ago
看雪论坛作者ID:fdark
How a Windows zero-day was exploited in the wild for months (CVE-2024-43451)
9 months 2 weeks ago
CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on November 2024 Patch Tuesday, has been exploited since at least April 2024, ClearSky researchers have revealed. About the vulnerability CVE-2024-43451 affects all supported Windows versions and, when triggered, discloses a user’s NTLMv2 hash to the attacker, who can then use it to either mount pass the hash attacks or extract the user’s password from the hash. The result is in both cases the … More →
The post How a Windows zero-day was exploited in the wild for months (CVE-2024-43451) appeared first on Help Net Security.
Zeljka Zorz
Как выйти из песочницы Chrome с помощью DevTools
9 months 2 weeks ago
Статья описывает, как были найдены 2 уязвимости в браузере Chromium, которые позволяли выйти из песочницы через расширение браузера при минимальном взаимодействии пользователя. В результате Google выплатила за отчет о баге $20 000.
Operator: новый ИИ-агент от OpenAI, который выведет автоматизацию на новый уровень
9 months 2 weeks ago
Умные ассистенты из научно-фантастических фильмов появятся куда раньше, чем мы думали.
FBI、CISA和NSA公布2023年利用最频繁的15个漏洞
9 months 2 weeks ago
比2022年的更多
谷歌AI平台存在漏洞,可泄露企业的专有LLMs
9 months 2 weeks ago
风险已缓解
New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
9 months 2 weeks ago
Threat actors have been found leveraging a new technique that abuses extended attributes for macOS files to smuggle a new malware called RustyAttr.
The Singaporean cybersecurity company has attributed the novel activity with moderate confidence to the infamous North Korea-linked Lazarus Group, citing infrastructure and tactical overlaps observed in connection with prior campaigns, including
The Hacker News
Automated Interactivity: Stage 2
9 months 2 weeks ago
Last year, we introduced Automated Interactivity — a feature that simulates user behavior inside the ANY.RUN sandbox to automatically force cyber attack execution. The first stage of Automated Interactivity focused on basic user interactions like clicking buttons and completing CAPTCHA challenges. This allowed many analysts to simplify their investigations and streamline the sandbox use via […]
The post Automated Interactivity: Stage 2 appeared first on ANY.RUN's Cybersecurity Blog.
ANY.RUN
US agencies confirm Beijing-linked telecom breach involving call records of politicians, wiretaps
9 months 2 weeks ago
U.S. law enforcement agencies confirmed on Wednesday previous reports that hackers connected to the
五眼联盟警告,零日漏洞利用正在成为“新常态”
9 months 2 weeks ago
error code: 521
New Threat Actor
9 months 2 weeks ago
cohenido
RustyAttr: хакеры КНДР нашли «слепую зону» в защите macOS
9 months 2 weeks ago
Хакеры научились прятать вирусы там, где их никто не ищет.
Sarcoma
9 months 2 weeks ago
cohenido
Kairos
9 months 2 weeks ago
cohenido
【文末抽奖】新书出版!一本书带你速通 CDSL-YAK
9 months 2 weeks ago
《CDSL-YAK 网络安全领域编程语言—从入门到实践》出版!妈妈再也不用担心我学不会YAK了~
Bank of England U-turns on Vulnerability Disclosure Rules
9 months 2 weeks ago
The UK’s financial regulators have discarded plans to force critical suppliers to disclose new vulnerabilities
Kairos
9 months 2 weeks ago
cohenido
Kairos
9 months 2 weeks ago
cohenido