一个3k赏金的漏洞 前言：这类的洞捡过好几个了。正文：22年挖的src了，成功获取3k奖金。漏洞已修复，且涉及内容均打码。技术上没啥难点，主要是思路，1、当存在多个系统的时候，注意利用差异化去进行获取敏感信息。2、当id... 2024-9-25 00:3:26 | 阅读: 14 | 收藏 | 迪哥讲事 - mp.weixin.qq.com 漏洞 猎人 一串 信息 赏金

Google & Arm - Raising The Bar on GPU Security Security Blog The latest news and insights from Google on security a... 2024-9-25 00:0:0 | 阅读: 7 | 收藏 | Google Online Security Blog - security.googleblog.com security

GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator By Ambuj KumarEver since the massive National Public Data (NPD) breach was disclosed a few weeks... 2024-9-24 23:46:44 | 阅读: 7 | 收藏 | Security Boulevard - securityboulevard.com npd security ssn bureaus pii

Il trojan Necro ha attaccato 11 milioni di utenti Android 2024-9-24 23:45:30 | 阅读: 8 | 收藏 | Over Security - Cybersecurity news aggregator - www.securityinfo.it di trojan necro gli

【AI速读】以色列和黎巴嫩真主党：当前的暴力和潜在的升级 今天给大家推送美国国会研究处的报告《以色列和黎巴嫩真主党：当前的暴力和潜在的升级》，文本讨论了2023年10月7日以来以色列与巴勒斯坦哈马斯之间的战争以及黎巴嫩真主党（Hezbollah）的卷入，分析... 2024-9-24 23:39:49 | 阅读: 5 | 收藏 | 丁爸 情报分析师的工具箱 - mp.weixin.qq.com 美国 真主党 真主 黎巴嫩 威胁

Warnings after new Valencia ransomware group strikes businesses and leaks data A new ransomware operation has started to leak information it claims has been stolen from organisati... 2024-9-24 23:36:14 | 阅读: 5 | 收藏 | Graham Cluley - www.tripwire.com ransomware valencia claims firm

Winamp 公开源代码 曾经的装机音乐播放器 Winamp 于 2024 年 9 月 24 日公开源代码，源代码采用 Winamp Collaborative License (WCL) Version 1.0... 2024-9-24 23:36:11 | 阅读: 2 | 收藏 | 奇客Solidot–传递最新科技情报 - www.solidot.org winamp 源代码 github 装机 程序员

加州新法律限制学生在校期间使用智能手机 加州州长 Gavin Newsom 签署了法案 Assembly Bill 3216——Phone-Free School Act，要求学区在 2026 年 7 月 1 日前制定限制或禁止... 2024-9-24 23:32:28 | 阅读: 2 | 收藏 | 奇客Solidot–传递最新科技情报 - www.solidot.org newsom signs 州长 gavin

A new wave of personalized sextortion scams—Using Google Street View images to startle targets New-and-improved sextortion scam emails are being used to target people in the US and Canada, employ... 2024-9-24 23:12:52 | 阅读: 4 | 收藏 | Blog | Avast EN - blog.avast.com attacker wallets btc sextortion claims

Early Birds Rule: 5 E-Commerce Moves for Black Friday Prep Waiting until November to plan for Black Friday and Cyber Monday? That’s like stepping into the rin... 2024-9-24 23:0:23 | 阅读: 2 | 收藏 | Hacker Noon - hackernoon.com monday friday mattered season rush

Meet Wellfound: HackerNoon Company of the Week We are back with another Company of the Week feature! Every week, we share an awesome tech brand fro... 2024-9-24 23:0:20 | 阅读: 2 | 收藏 | Hacker Noon - hackernoon.com startups wellfound talent hiring hackernoon

Broken Hill: A Productionized Greedy Coordinate Gradient Attack Tool for Use Against Large Language Models TL;DR: This blog explains the GCG attack, which tricks AI chatbots into misbehaving, and introduce... 2024-9-24 23:0:0 | 阅读: 12 | 收藏 | bishopfox.com - bishopfox.com llm gcg hill weapon

Announcing Pwn2Own Automotive for 2025 If you just want to read the rules, you can find them... 2024-9-24 22:58:14 | 阅读: 13 | 收藏 | Zero Day Initiative - Blog - www.thezdi.com pwn2own contest automotive tesla vehicle

Starlink 卫星影响射电望远镜的观测 泛欧射电望远镜低频阵列（LOFAR）团队报告说，SpaceX 从去年开始发射第二代星链（Starlink）卫星，其发出的无线电波比第一代卫星多 30 倍。射频泄漏远低于星链卫星用于向客户提... 2024-9-24 22:49:22 | 阅读: 6 | 收藏 | 奇客Solidot–传递最新科技情报 - www.solidot.org 望远镜 望远 lofar 射电 spacex

Sweden says Iran behind cyberattack calling for revenge on Quran burners Sweden’s domestic intelligence agency announced on Tuesday that hackers acting on behalf of the Ira... 2024-9-24 22:46:20 | 阅读: 6 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media sweden iranian swedish iran prosecutor

A cyberattack on MoneyGram caused its service outage A cyberattack on MoneyGram caused its service outage Pierluigi Paganini September 24, 2024A... 2024-9-24 22:39:43 | 阅读: 15 | 收藏 | Security Affairs - securityaffairs.com moneygram outage cyberattack network diligently

ABB Cylon Aspect 3.08.01 Remote Code Execution ABB Cylon Aspect 3.08.01 (bigUpload.php) Remote Code ExecutionVendor: ABB Ltd.Product web page: ht... 2024-9-24 22:39:27 | 阅读: 9 | 收藏 | Files ≈ Packet Storm - packetstormsecurity.com php bigupload aspect zsl abb

ABB Cylon Aspect 3.08.01 Arbitrary File Deletion ABB Cylon Aspect 3.08.01 (databaseFileDelete.php) Arbitrary File DeleteVendor: ABB Ltd.Product web... 2024-9-24 22:36:48 | 阅读: 6 | 收藏 | Files ≈ Packet Storm - packetstormsecurity.com php aspect zsl abb

创业公司推出 Fair Source 许可证以避免开源授权的陷阱 开源软件和私有软件之间的紧张关系短期内无解，一家估值 30 亿美元的软件创业公司 Sentry 推出了 Fair Source 许可证，试图在开源和私有软件之间架起桥梁。Fair Sour... 2024-9-24 22:35:56 | 阅读: 11 | 收藏 | 奇客Solidot–传递最新科技情报 - www.solidot.org 开源 fair sentry whitacre 桥梁

Zeek 6.0.7 Zeek is a powerful network analysis framework that is much different from the typical IDS you may kn... 2024-9-24 22:34:23 | 阅读: 10 | 收藏 | Files ≈ Packet Storm - packetstormsecurity.com zeek network analysis scientific