动态 | 数字资产金融服务商(C网)遭到黑客恶意攻击
耳朵财经9月7日讯,刚刚降维安全通过以太坊智能合约预警监控了解到老牌数字资产金融服务商(C网)遭到有组织的黑客攻击,攻击成功的黑客通过此方式从数字资产金融服务商(C网)窃取数字资产。降维安全通过自主研发的以太坊智能合约预警监控系统分析发现这种攻击方式是一种常见的短地址攻击,黑客通过此攻击已获利数十万美元,目前已经通过白细胞社区对该数字资产金融服务商(C网)进行高危预警和敦促漏洞修复,尽管该漏洞比较古...
View ArticleWhat is IIoT?
IIoT is short for Industrial Internet of Things. In the broad strokes, it’s the application of instrumentation and connected sensors and other devices to machinery and vehicles in the transport, energy...
View ArticleA Brighter Future For DevSecOps? It’s Closer Than You Think
I was delighted to contribute with a number of experts to an insightful article by Suparna Goswami in Data Breach Today . As she points out, there’s widespread agreement that addressing security early...
View ArticleSecurity Think Tank: No shortcuts to addressing software vulnerabilities
Successful cyber attacks exploit weaknesses in an organisation’s defences. Hackers probe networks, looking for gaps in firewalls , and users are duped into downloading malware . These risks can be...
View ArticleHealthcare Reports Highest Number of Breaches Over the Past Financial Year
Reporting data breaches wasn’t mandatory for every type of organizations before the GDPR came into force, but the health sector is a different animal. Healthcare is more tightly regulated than most...
View ArticleClik here to view.
武汉临空港新闻报道国家网安基地Web安全培训班结业仪式
摘要: 2018年9月4日,“国家网络安全人才与创新基地”所在地武汉东西湖的有限电视台针对开源网安“Web应用安全开发和攻防暑假班”结业仪式作了新闻报道。同时,该新闻的文字报道发布在武汉临空港经济技术开发区、武汉东西湖区人民政府网站。 “2018 开源网安Web应用......
View Article短信钓鱼如何上钩
短信诈骗是指骗子使用短信发送设备或伪基站,将虚假短信发送至事主手机,再结合配套的骗局,诈骗消费者钱财的行为。这类骗术往往并不高明,但是由于行骗成本低,诈骗短信发送面广,还是有不少的消费者上当受骗。 所谓钓鱼短信很形象,和我们平常休闲钓鱼的手法基本一致: 利用各种鱼饵伪装鱼钩,诱导鱼来咬钩。钓鱼短信也是一样,通过伪装成相关业务人员,骗取用户输入个人隐私信息、或账号、密码等相关信息,从而获利。...
View Article你知道“国家网络安全宣传周”么?
“国家网络安全宣传周”即“中国国家网络安全宣传周”,为每年九月的第三周,是为了“共建网络安全,共享网络文明”而开展的主题活动,围绕金融、电信、电子政务、电子商务等重点领域和行业网络安全问题,针对社会公众关注的热点问题,举办网络安全体验展等系列主题宣传活动,营造网络安全人人有责、人人参与的良好氛围。“...
View ArticleClik here to view.
US Treasury wants national data breach notification standard
A US Treasury report has identified improvements that support non-bank financial institutions, innovation, and financial technology, with the main talking point being the creation of a national data...
View ArticleClik here to view.
Arlo Security Light review: These battery-powered, multi-colored LED lights...
The Arlo Security Light provides a welcome expansion to one of our favorite smart home security products, Arlo’s Wi-Fi home security cameras. We tested the $250 two-pack. You can also buy a...
View ArticleClik here to view.
6 ways companies fail at security fundamentals
See larger image Getty Images Back to basics While advanced cyber attacks grab the attention in headlines, often companies are undone by failing to adhere to the basics of cyber security best...
View ArticleClik here to view.
British Airways app and website hack exposes full card details of 380,000...
A ‘sophisticated’ attack on British Airways’ mobile app and website has exposed the names, email addresses and full credit card details of 380,000 customers. Of particular concern is the fact that the...
View ArticleI need to force ssl on the main domain but not on the subdomain
The main site at www.mydomain.com is set up as a secure site using an SSL certificate. I need to create a subdomain that is not secured ( http://open.mydomain.com ). I'm hosting with...
View ArticleClik here to view.
南京邮电大学网络攻防训练平台
终于找到组织了可以安安静静的研究CTF技术了,接触信息安全以来已经3年多了,期间也走了很多弯路,浮躁过放弃过,幸运的是遇到了X1cT34m,肉麻的话不多说了,现在开始主攻CTF方向,一点点总结进步。 前言 由于以前我是一个搞WEB的野孩子,无组织无纪律,所以刚接触CTF的话还是从WEB开始吧,希望自己以后也可以涉及到二进制方向。 WEB 签到题 50 思路 单个页面查看源代码 解决方法...
View ArticleClik here to view.
昔日黑客钱科铭对话亦来云陈榕:从系统着手解决区块链安全问题|火星特训营
火星特训营自7月21日开课以来,已经邀请来诸多区块链业界知名人士如亦来云创始人陈榕、长江商学院教授&Usechain创始人曹辉宁、知名经济学家金岩石、火币研究院院长&火币公链事业部总经理袁煜明等人担任导师,为学员授业解惑,此外,火星特训营首期三十余位学员亦藏龙卧虎。 其中,13岁成为少年黑客,后来涉足创业和投资,目前担任Security...
View ArticleClik here to view.
ThreatList: Attacks on Industrial Control Systems on the Rise
The main source of infection on industrial control systems was the internet, researchers at Kaspersky Lab found in a new report. The systems that power the manufacturing, power and water plants, the...
View ArticleIDG Contributor Network: The ethics of creating secure software
Software development has shifted from simply a technical process to an exercise of social morality. In the same way crash testing became a mandated part of automotive manufacturing once cars became...
View ArticleClik here to view.
黑客事件再添一例!英国航空近40万条付款信息遭窃
周四,据英国航空透露,自8月21日以来的两周,英航的官网和移动端程序均遭到黑客攻击,导致38万用户的个人及信用卡信息遭泄露。 英航首席执行官Alex Cruz对BBC电视台表示,在得知数据泄露后,已在第一时间通知可能受到影响的用户,任何遭到经济损失的顾客都会得到英航的赔偿。 Cruz表示,“对于此次黑客事件造成的影响,我们深感抱歉。英航一向注重保护客户的隐私。”...
View ArticleClik here to view.
3 Critical Lessons from the T-Mobile Data Breach
On August 20, T-Mobile discovered that a hacker had gained personal information from unauthorized access to its system. Over 2 million of its 77 million customers were exposed. Although T-Mobile...
View ArticleClik here to view.
黑了索尼、洗劫孟加拉央行、发动比特币勒索病毒――美国说都是这个朝鲜程序员干的
还记得 NotPetya 吗?那个源起乌克兰的恶意网络病毒在去年席卷欧美,造成全球超百亿美元的经济损失! 上述噩梦的阴影还未完全消退,朝鲜一名黑客攻击一系列金融机构和娱乐公司的事件又上了新闻头条。而这彻底激怒了美国! 昨天,美国联邦调查局( FBI)通过官网正式宣布:通缉Park Jin Hyok(朴金浩)!...
View Article