Clik here to view.
支付宝惊现重大漏洞!熟人能登录并篡改你的支付宝密码
php?url=0FQVq9TbWB" alt="支付宝惊现重大漏洞!熟人能登录并篡改你的支付宝密码" />凤凰科技讯(作者/马晓宁)今日有网友发现了支付宝的一个致命漏洞,他人熟知你的支付宝个人信息后可以通过“找回密码”功能登录并篡改支付宝密码。...
View ArticleClik here to view.
【漏洞分析】CVE-2016-10033:PHPMailer远程代码执行漏洞的分析
【漏洞分析】CVE-2016-10033:phpMailer远程代码执行漏洞的分析 2017-01-10 13:48:47 来源:blog.fortinet.com 作者:myswsun 阅读:525次 点赞(0) 收藏 翻译:myswsun 预估稿费:70RMB(不服你也来投稿啊!) 投稿方式:发送邮件至linwei#360.cn,或登陆网页版在线投稿 0x00前言...
View ArticleClik here to view.
安全专家测试支付宝熟人改密码漏洞:大家小心了
今天上午,支付宝再次被曝出安全漏洞:陌生人有1/5的机会登录你的支付宝,而熟人100%可以登录你的支付宝,甚至可以不用原密码直接用手机号就可以更改。 对此,支付宝官方刚刚给出回应:这一方式仅在特定情况下才会实现。且一旦用户支付宝在其他设备被登录,本人设备会收到通知提醒。 此外,支付宝表示,在今天上午接到网友反映后,我们也进一步提高了风控系统的安全等级。...
View ArticleClik here to view.
Understanding Encryption Key Management and Why It Matters
Thales e-Security released its 2016 Encryption Application Trends Study which revealed that the number of companies using encryption jumped from 7 percent to 41 percent over the past year. Companies...
View ArticleCommunications and Network Security
Nowadays, government institutions, companies and individuals rely increasingly on computer networks, systems, and other connected devices to store, communicate, and exchange information. The storage...
View ArticleClik here to view.
有的人总担心美国人用互联网干涉他国内政,但真正被抓了个现形的是俄罗斯啊
特朗普终于承认俄罗斯黑客干扰美国大选了,不过仍然有所保留。这是一个极为严肃的事件,我们也将严肃地讨论这个话题。 特朗普对俄罗斯黑客攻击的态度变化 CIA、FBI、NSA等三家美国情报机构提交的报告...
View ArticleClik here to view.
Sources: Amazon quietly acquired AI security startup harvest.ai for around $20M
Amazon Web Services appears to be ramping up its security chops. TechCrunch has learned that the e-commerce giant’s cloud services group quietly acquiredcyber security firm harvest.ai . The San...
View ArticleThe CISSP CBK Domains: Info and Updates
According to the (ISC) Global Information Security Workforce Survey (GISWS), the global workforce shortage will reach 1.5 million by 2020. In other words, there is a lack of qualified InfoSec...
View ArticleClik here to view.
支付宝出现重大安全漏洞的事件始末与思考
支付宝出现重大安全漏洞的事件始末与思考 一点号三节课6小时前 本文作者付晓萌,三节课新媒体运营喵。三节课联合创始人黄有璨、布棉全程指导。...
View ArticleClik here to view.
支付宝爆重大安全漏洞,马云就这么爱玩社交?
支付宝爆重大安全漏洞,马云就这么爱玩社交? 一点号就说一点5小时前 php?url=0FQnGOJHkU" alt="支付宝爆重大安全漏洞,马云就这么爱玩社交?"...
View ArticleClik here to view.
树大招风,支付宝再曝重大安全漏洞
树大招风,支付宝再曝重大安全漏洞 一点号中正舆情4小时前 php?url=0FQmltCLkF" alt="树大招风,支付宝再曝重大安全漏洞" /> 1月10日凌晨,有网友在微博曝出支付宝登陆出现安全漏洞,熟人之间用一方的用户名输入其账户后,不输入密码而选择找回密码的方式,在接下来的认证选项中输入通过的朋友或熟人相关的信息,就可以成功登陆,并且可以免秘支付。...
View Article他是个黑客,用4人管理25万高忠诚跑腿师傅,A轮融资9600万
身材魁梧、声音浑厚,藏身于河南多年,带着些微草莽之气。见到乔松涛当天,我对黑客的常规印象被颠覆了。 2016年底,乔松涛专程来到北京,目的很明确――推进UU跑腿下一轮融资。UU跑腿是一家跑腿众包平台,通过整合社会闲散劳动者提供及时跑腿服务,包括同城配送、代买、代办、代帮等各种场景。...
View ArticleClik here to view.
1月10日 - 每日安全知识热点
热点概要: 浅谈动态爬虫与去重 、 在Android系统中了解Binder攻击和保护 、 本地文件包含测试技巧 、 Wingbird Rootkit分析、 远程执行shellcode的一种新的方式、 机器学习对抗性攻击 国内热词(以下内容部分摘自http://www.solidot.org/): 雅虎将更名为 Altaba ,Marissa Mayer辞职 Chrome 版 Stylish...
View ArticleRealWorldCryptography 2017 Notes
January 9th, 2017 RealWorldCrypto 2017 took place at Columbia University in New York City from January 4th through 6th. After having presented at RWC2015 and missing RWC2016 at Stanford last year, I...
View ArticleClik here to view.
Gaming Network ESEA Breached, 1.5M Profiles Leaked
Information from a recent breach of a competitive video gaming community surfaced over the weekend online. Data purportedly belonging to 1.5 million members of video gaming community ESEA, the E-Sports...
View ArticleSecurity Governance Principals
In today’s world, where practically every transaction can be done and completed online, high-level security is of utmost importance in battling different forms of cyberspace attacks. Companies catering...
View ArticleCybersecurity Pros to Trump: Critical Infrastructure Is Very Vulnerable to a...
Last week, President-elect Donald Trump received a comprehensive briefing on Russian hacking related to the 2016 Presidential election. In response, Trump released a statement that included the...
View ArticleSoftware Testing & Acquired Software Security
TheInternational Information Systems Security Certification Consortium or, more succinctly, the (ISC), tells us that security engineering consists of… [T]he practice of building information systems and...
View ArticleClik here to view.
Why AI must be redefined as ‘augmented intelligence’
Popular visions of artificial intelligence often focus on robots and the dystopian future they will create for humanity, but to understand the true impact of AI, its skeptics and detractors should...
View ArticleClik here to view.
Working on an AWS Host as a DBA
We, DBAs, have a tendency to over think everything. I don’t know if the trait to over think isjust found in DBAs or if we see it in other technical positions, too. I believe it corresponds to some of...
View Article
