资讯

The Hacker News11 小时
Gold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to Targets
Gold Melody uses ASP.NET vulnerabilities for long-term access, impacting various industries across Europe and the U.S.
The Hacker News14 小时
U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme
The IT worker scheme, also tracked as Nickel Tapestry, Wagemole, and UNC5267, involves North Korean actors using a mix of ...
The Hacker News16 小时
Chinese Hacker Xu Zewei Arrested for Ties to Silk Typhoon Group and U.S. Cyber Attacks
Chinese national Xu Zewei arrested in Milan for links to Silk Typhoon and cyber attacks on U.S. agencies, including Microsoft Exchange breaches ...
The Hacker News16 小时
How To Automate Ticket Creation, Device Identification and Threat Triage With Tines
Automate malware alert workflows with Tines, using CrowdStrike and Slack to streamline threat triage and improve response ...
The Hacker News20 小时
Microsoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL Server
"Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a ...
The Hacker News20 小时
Malicious Pull Request Targets 6,000+ Developers via Vulnerable Ethcode VS Code Extension
First released by 7finney in 2022, Ethcode is a VS Code extension that's used to deploy and execute solidity smart contracts in Ethereum Virtual Machine ( EVM )-based blockchains. An EVM is a ...
The Hacker News21 小时
Automation ≠ Autopilot: Rethinking AI in Corporate Security and Compliance
AI accelerates security but needs human oversight to prevent risks like misconfigurations and compliance errors. Ensure AI ...