The Gentleman
You must login to view this content
Aggregator
The Gentleman
2 weeks 5 days ago
You must login to view this content
cohenido
The Gentleman
2 weeks 5 days ago
You must login to view this content
cohenido
The Gentleman
2 weeks 5 days ago
You must login to view this content
cohenido
AI安全岗上新|字节/平安/安克等大厂直推(含实习岗)
2 weeks 5 days ago
速看!大厂AI安全岗,正式岗+实习岗都有,先到先推!
AI Red Teaming Is Not Equal to Prompt Injection
2 weeks 5 days ago
Why AI and Traditional Penetration Testing Must Converge
As artificial intelligence red teaming evolves beyond prompt injection, security teams must combine data science, model testing and traditional penetration testing to assess risks across the full attack surface.
As artificial intelligence red teaming evolves beyond prompt injection, security teams must combine data science, model testing and traditional penetration testing to assess risks across the full attack surface.
Home Security Firm ADT Breach: 5.5M Customers' Data Exposed
2 weeks 5 days ago
Prolific ShinyHunters Extortion Group Made 'Pay or Leak' Threat to Victim
Home security giant ADT has suffered a data breach that appears to have exposed personally identifiable information tied to 5.5 million customers. Prolific extortionist group ShinyHunters claimed credit for the attack, saying it stole Salesforce data after socially engineering an ADT employee.
Home security giant ADT has suffered a data breach that appears to have exposed personally identifiable information tied to 5.5 million customers. Prolific extortionist group ShinyHunters claimed credit for the attack, saying it stole Salesforce data after socially engineering an ADT employee.
Crypto-Targeting North Koreans Wield Fake Zoom Meetings
2 weeks 5 days ago
Video of Industry Figures Harvested During Meetings and Used to Lure Future Victims
North Korean hackers are pretending to be cryptocurrency insiders, in an attempt to trick targets into accepting Calendly calendar invites. The social engineering ruse is designed to infect Windows and macOS systems with crypto stealers, and to harvest video of real-life people for future lures.
North Korean hackers are pretending to be cryptocurrency insiders, in an attempt to trick targets into accepting Calendly calendar invites. The social engineering ruse is designed to infect Windows and macOS systems with crypto stealers, and to harvest video of real-life people for future lures.
Medical Device Maker Medtronic Says It's Been Hacked
2 weeks 5 days ago
Cybercrime Gang ShinyHunters Claimed to Steal 9M Records
Medtronic has told federal authorities that cybercriminals hacked its corporate IT systems, but said the incident did not affect the medical device makers' products, manufacturing or distribution operations. Cybercrime gang ShinyHunters reportedly claimed responsibility for the hack.
Medtronic has told federal authorities that cybercriminals hacked its corporate IT systems, but said the incident did not affect the medical device makers' products, manufacturing or distribution operations. Cybercrime gang ShinyHunters reportedly claimed responsibility for the hack.
Pentagon's Anthropic Fight Draws Rebuke From Ex-DOD Leaders
2 weeks 5 days ago
Former Officials, Tech Groups Say Anthropic Designation Is Illegal - and Dangerous
Former U.S. defense and intelligence officials argue the Pentagon's designation of Anthropic as a supply-chain risk was politically motivated and legally flawed, warning it could erode trust in government contracting and weaken the defense AI ecosystem.
Former U.S. defense and intelligence officials argue the Pentagon's designation of Anthropic as a supply-chain risk was politically motivated and legally flawed, warning it could erode trust in government contracting and weaken the defense AI ecosystem.
Пароли, cookies, сессии Telegram и seed-фразы. Рассказываем о новой платформе для преступников Needle
2 weeks 5 days ago
Файл размером всего 11 килобайт скрывал в себе мощнейшую платформу для тотального взлома.
[指南]联合国教科文组织《法院和法庭使用人工智能系统指南》
2 weeks 5 days ago
人工智能正在改变全球司法系统,为提升司法进程、简化案件管理并协助司法决策提供了新可能。然而,这些创新也带来了复杂的伦理和人权挑战。
先知联合发起ACTF 2026 | 巅峰对决,战书已至!
2 weeks 5 days ago
2026年05月10日09:00—05月11日09:00,ACTF 2026上线!
INC
2 weeks 5 days ago
You must login to view this content
cohenido
一餐不只是一餐
2 weeks 5 days ago
对有些人,一餐就是一餐。吃饱,买单,走人。对另一些人,一餐是一些别的东西。是那天点过的菜,喝过的酒,吹过的牛。
OpenClaw安全实战系列(四):幽灵连通性 — 揭秘CVE-2026-32038沙箱网络隔离绕过与靶标实战
2 weeks 5 days ago
OpenClaw安全实战系列(四):幽灵连通性—揭秘CVE-2026-32038沙箱网络隔离绕过与靶标实战
csrf删除用户
2 weeks 5 days ago
加拿大警方“灯塔计划”行动破获伪基站团伙
2 weeks 5 days ago
近期,多伦多警方在一项名为“Project Lighthouse“(灯塔计划)的史无前例的调查中逮捕了多名嫌疑人。该调查旨在打击一种名为“短信群发器”的移动网络犯罪工具,这类工具此前在加拿大从未被发现。
此次调查由加拿大皇家骑警国家网络犯罪协调中心 (NC3)、联邦警察中部地区、约克区警察局、汉密尔顿警察局、各大金融机构和电信合作伙伴共同开展。
SMS blaster(短信群发器)是一种模仿合法蜂窝基站的设备。激活后,它会使附近的手机连接到自身网络,而不是真正的网络。连接成功后,该设备会发送看似来自银行或服务提供商等可信机构的欺诈性短信。这些短信通常包含指向虚假网站的链接,旨在窃取个人信息、财务信息或登录信息——这种手法通常被称为“短信钓鱼”。
2025年11月,一家网络安全合作伙伴向执法部门举报,称在多伦多市中心发现一台移动短信群发设备。随后几个月,该设备在大多伦多地区的多处地点被检测到。
调查人员确定,在此期间,数万台移动设备连接到该群发设备。此外,还记录了超过1300万次网络中断。这些中断可能导致受影响的设备暂时无法连接到合法的蜂窝网络,包括限制用户拨打911等紧急服务电话,持续时间从几秒到几分钟不等。
2026年3月31日,调查人员在万锦市和汉密尔顿市的住宅执行了《刑法》搜查令。两名男子被捕,警方缴获了大量电子物证,其中包括数台移动短信群发设备。
2026年4月21日,第三名男子向警方自首。
目前,三名男子共被控包括利用计算机系统意图犯罪、拦截私人通信、欺诈和恶意破坏罪等44项罪名。这三名男子分别是:
居住在汉密尔顿,27岁的林大峰(Dafeng Lin)
居住在万锦,25岁的石俊敏(Junmin Shi)
居住在万锦,21岁的胡伟通(Weitong Hu)
加拿大警方宣称:本次调查凸显了网络犯罪的演变特性,以及利用先进技术大规模攻击公众的现象日益增多。
[得意]不过最有趣的是:
杨叔在警方照片中,发现这次设备和今年1月,马来西亚通讯及多媒体委员会(MCMC)在云顶高原捣毁的一个利用伪基站(BTS)进行诈骗的团伙所用设备完全一致。
作为曾在2011年参与过国内某省第一起伪基站案件取证的杨叔,真心希望加拿大警方能够应对这波:明显正在从东南亚迅速扩大销售网点到北美的黑产势头~[让我看看][旺柴]
#隐私保护 #信息安全 #海外安全
CNVD漏洞周报2026年第16期
2 weeks 5 days ago
发了条小某书,SSH私钥就被拖走了
2 weeks 5 days ago
最近,微步SafeSkill在一次例行检测中发现了一个极具代表性的恶意Skill。