Aggregator

Valve 应英国反恐部门要求在 Steam 平台英国区封禁了射击游戏《Fursan al-Aqsa: The Knights of the Al-Aqsa Mosque》。游戏由巴西的巴勒斯坦裔开发者 Nidal Nijm 开发，从巴勒斯坦角度探讨了以巴冲突。他收到了 Steam 的电邮通知，称应英国政府要求在该国封禁了游戏。Nijm 要求提供更多信息，Steam 回应称是从英国反恐司令部下辖的 Counter Terrorism Internet Referral Unit(CTIRU)收到了要求。CTIRU 对此事拒绝置评。Nijm 认为按照英国的逻辑，《使命召唤：黑色行动 6》也应该封禁，因为玩家将在游戏中扮演美国士兵去伊拉克杀死伊拉克人，他认为这是双重标准。

A vulnerability, which was classified as critical, has been found in Qualcomm Snapdragon Auto and Snapdragon Wearables. Affected by this issue is some unknown functionality of the component PAL Service API. The manipulation leads to untrusted pointer dereference. This vulnerability is handled as CVE-2024-33039. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile and Snapdragon Wearables. Affected by this vulnerability is an unknown functionality of the component Release Command Handler. The manipulation leads to use after free. This vulnerability is known as CVE-2024-33040. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Wearables. Affected is an unknown function of the component NPU Firmware. The manipulation leads to buffer over-read. This vulnerability is traded as CVE-2024-33037. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Wearables. It has been rated as critical. This issue affects some unknown processing of the component Sensor Packet Parser. The manipulation leads to use of out-of-range pointer offset. The identification of this vulnerability is CVE-2024-33036. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

Amazon Web Services (AWS) has launched a new service to help organizations prepare for and recover from ransomware attacks, account takeovers, data breaches, and other security events: AWS Security Incident Response (SIR). Creating a case (Source: AWS) AWS Security Incident Response explained “Security events are becoming more pervasive and complex for customers,” says Betty Zheng, Senior Developer Advocate at AWS. Incident response is becoming harder due to the increased complexity and the lack of in-house … More →

The post AWS offers incident response service appeared first on Help Net Security.

A vulnerability was found in MediaTek MT6890, MT7622, MT7915, MT7916, MT7981 and MT7986. It has been classified as critical. This affects an unknown part of the component WLAN Driver. The manipulation leads to uncaught exception. This vulnerability is uniquely identified as CVE-2024-20137. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in MediaTek MT3605, MT6985, MT6989, MT6990, MT7925, MT7927, MT8195, MT8370 and MT8390. It has been declared as problematic. This vulnerability affects unknown code of the component WLAN Driver. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-20138. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in MediaTek MT2737, MT6781, MT6789, MT6855, MT6878, MT6879, MT6880, MT6886, MT6890, MT6895, MT6897, MT6980, MT6983, MT6985, MT6989, MT6990, MT8195, MT8370, MT8390, MT8673, MT8676, MT8678, MT8755, MT8775, MT8781, MT8795T, MT8796, MT8798 and MT8893 and classified as problematic. This vulnerability affects unknown code of the component Da. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-20136. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in MediaTek MT6768, MT6781, MT6833, MT6853, MT6877, MT6878, MT6893, MT6897, MT6989, MT8775, MT8796 and MT9687. This vulnerability affects unknown code of the component Soundtrigger. The manipulation leads to out-of-bounds write. This vulnerability was named CVE-2024-20135. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in MediaTek MT2737, MT3605, MT6985, MT6989, MT6990, MT7925, MT7927, MT8518S, MT8532 and MT8678 Android 13.0 up to SDK release 3.3. This issue affects some unknown processing of the component Bluetooth Firmware. The manipulation leads to reachable assertion. The identification of this vulnerability is CVE-2024-20139. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in B&R Industrial Automation mapp Cockpit, mapp View, mapp Services, mapp Motion and mapp Vision up to 5.x. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to authentication bypass using alternate channel. This vulnerability was named CVE-2024-10490. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Apache HTTP Server up to 1.3.32-r1. This issue affects the function get_tag of the component mod_include. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2004-0940. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

For the latest discoveries in cyber research for the week of 2nd December, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Supply chain software provider Blue Yonder was hit by a ransomware attack, disrupting services for clients like Starbucks and UK grocery chains Morrisons and Sainsbury’s. The incident affected operations such as employee […]

The post 2nd December – Threat Intelligence Report appeared first on Check Point Research.

1936 年天文学家在猎户座发现一颗年轻恒星的亮度在数月内急剧增加至原本的百倍，最亮时达到太阳的 100 倍。与恒星爆炸不同，其亮度在峰值后仅以缓慢速度减弱。此现象起初被认为是个案，但后续研究显示，这类高度不稳定的年轻恒星实际上属于一个独特的爆发性恒星族群，并被命名为「猎户FU型星（FU Orionis）」 。为了深入理解其爆发机制，天文学家利用哈勃望远镜的紫外线观测能力，研究其恒星表面与吸积盘之间的交互作用，并揭示了一些令人震惊的新细节。观测显示，吸积盘长期以来向恒星输送物质，其中紧贴恒星的内盘部分极为炙热，其紫外线亮度远超预期，对传统理论提出了挑战。根据传统理论，新生恒星透过吸积盘及周围星云逐步累积物质，并由恒星磁场产生的压力阻止吸积盘直接接触恒星。然而猎户FU型星的吸积盘因其相对于中心恒星的巨大质量，容易产生不稳定性，导致吸积速率剧烈波动。当吸积速率突然增加时，这种不稳定性会破坏恒星磁场与吸积盘内缘的平衡，使得吸积盘物质得以进一步接近甚至直接撞击恒星表面。这种剧烈的物质输送过程，使猎户FU型星在爆发期间的亮度远超典型的恒星形成阶段。此外吸积盘内物质接近恒星时的运行速度远高于恒星自转速度，形成了一个高能量的撞击区。这些物质在撞击区快速减速并剧烈升温。观测显示，这些撞击区的温度高达 16,000K，接近太阳表面温度的三倍，几乎是传统模型预测值的两倍。

Mikhail Matveev, aka WazaWaka, had worked with several ransomware groups, including Babuk, Conti, Darkside, Hive and LockBit

抓取和爬取的不同

网友在社媒上报告，人人网现在已无法登录，网站仍然可以访问，但登录时会提示账号密码错误，疑似停止服务。人人网目前的登录页面已经没有注册账号、找回密码等选项。早在11月中下旬，就有网友报告找不到人人网以前的相册照片了。官方客服对媒体表示，人人网已停止服务，后续恢复时间未知。人人网原名校内网，创办于 2005 年，一度被视为与 Facebook 类似的中文社交平台，同时也是中国大陆最早的校园社交关系网络平台之一。前期的校内网以学生用户作为主要用户群体，但改名为人人网后，其已改变完全偏重于学生群体的策略，而更多地试图将用户群扩展至校外社会，意图扩大其目标用户群体。随着微信朋友圈的兴起，人人网流量急速下跌并日益没落，人人网后转型为直播平台，但并不太成功。官网现已发布公告，宣称在“换车升级”。

Group-IB раскрывает схему глобального обмана.