Quantcast
Channel: CodeSection,代码区,网络安全 - CodeSec
Browsing all 12749 articles
Browse latest View live

The State of the Implicit Flow in OAuth2

This blog post is a summary of my interpretation and perspective of what’s been going on recently with the implicit flow in OAuth2, mainly spurred on by the recent draft of the OAuth 2.0 for...

View Article



Sanitize Your Inputs?

I'm often accused of being particularly fussy with regards to language and word choice, especially in technical discussions. It's true, but I'll wear that badge with pride. In software engineering,...

View Article

Image may be NSFW.
Clik here to view.

The Difference Between Security and Privacy

Short answer: it’s a trick question. Privacy is part of security. But just because one is part of the other doesn’t mean they are the same. There’s a nuance there that’s important. The word “security”...

View Article

Image may be NSFW.
Clik here to view.

Security Researcher Cancels Public Talk on Hacking Face ID After Employer...

Chinese security researcher Wish Wu was set to give a talk on hacking Face ID at the Black Hat Asia hacking conference in Singapore in March 2019, but at the request of his employer, he's canceled the...

View Article

Image may be NSFW.
Clik here to view.

BUF早餐铺 | 华为一号文件:网络安全和隐私保护是最高纲领;知名云服务托管商DataReso ...

各位Buffer早上好,今天是 2019 年 1 月 4日星期五。今天的早餐铺内容有:华为一号文件:网络安全和隐私保护是最高纲领;知名云服务托管商DataResolution.net遭到Ryuk勒索软件攻击;微软推出全新的Microsoft 365安全性和合规性软件包;知名Mac工具CleanMyMac...

View Article


Security researcher pulls Black Hat talk on hacking Apple’s Face ID

(Reuters) ― A cyber security researcher canceled a hacking conference briefing on how he said he could crack biometric facial recognition on Apple iPhones, at the request of his employer, which called...

View Article

Image may be NSFW.
Clik here to view.

揭秘美国运通网络钓鱼活动

我们看到许多针对电子邮件、银行、PayPal、信用卡以及其他财务凭据的网上诈骗活动。本案例与其他许多案例略有不同,更加复杂,旨在加大反网络钓鱼工具进行分析和阻止的难度。它伪装成美国运通发送给客户有关帐户中“发生错误的消息”。 他们使用电子邮件地址和主题来吸引用户阅读电子邮件并打开附件。而很大一部分都是针对中小型企业的,因为他们希望得到比个人用户更好的回应。 现在可以通过我们的提交系统(...

View Article

Blur password manager exposes 2.4M user details on misconfigured AWS instance

Abine Inc. , the company behind the Blue password manager andDeleteMe privacy-protection service has admitted that it accidentally exposed data relating to 2.4 million users on a misconfigured Amazon...

View Article


Image may be NSFW.
Clik here to view.

2018最酷的黑客手法

这是恶意黑客胆大妄为的一年,某些手法此前根本想象不到――佯攻、加密货币劫持、社会工程和破坏性恶意软件行动。但即便是在2018年民族国家和网络犯罪攻击日渐猖獗的背景下,安全研究人员还是找到了一些以黑治黑预先制止坏人攻击的创新手法。...

View Article


Image may be NSFW.
Clik here to view.

Microsoft releases new Windows 10 preview with security, Narrator, and...

Microsoft today released a new windows 10 preview with improvements to security, the Narrator app, and accessibility. The update bumps Windows 10 frombuild 18305 (made available to testers on December...

View Article

Image may be NSFW.
Clik here to view.

使用R和tidytext对Trustpilot 的评论进行主题建模

在这篇和分析中,我们将主题建模应用于我目前的电信提供商丹麦Trustpilot对“3”(其他国家的“三个”)的评论。 我对他们的客户服务不满意,并认为这将是一个有趣的主题建模用例。 通过这种方法, 我们可以尝试找出客户体验的哪些方面出现在积极和消极的评论中 。 我使用 python脚本 从trustpilot.dk抓取了从2015年1月到2017年10月期间4000条关于“3”的客户评论“3”。...

View Article

Image may be NSFW.
Clik here to view.

进击的绿盟科技,原来是“宝藏男人”徐锦江

本文作者:雷锋网网络安全专栏作者,李勤。如果你想跟我聊聊网络安全,可以戳这里……emmm也没用,加微信吧!(ID:qinqin0511) 2018年12月26日,绿盟科技(以下简称绿盟)召开了一次发布会,我有那么一个时刻走神,突然想起了前一天在网络爆红的演员徐锦江。...

View Article

Image may be NSFW.
Clik here to view.

通付盾鹰眼让移动安全检测更智能,拒绝安全威胁入侵

【51CTO.com原创稿件】随着移动互联软硬件产品体系的进化,安全业务场景越来越丰富,产品和应用的运营环境也日趋复杂,这对用户们移动安全的产品形态、服务方式以及安全保障能力提出了更高的要求。作为一家数字化安全服务提供商,通付盾看到,现有移动安全SaaS服务或者本地部署的移动安全产品,已逐渐不能满足用户的需求,他们需要更加灵活、稳固、方便、高效的移动安全产品。...

View Article


Image may be NSFW.
Clik here to view.

E-Discovery in Cloud: Security Issue and Compliance Gaps

E-discovery serves as a reliable method for organizations in accumulating, preserving and organizing data for legal and regulatory compliance. However, advancements in technologies such as containers...

View Article

Image may be NSFW.
Clik here to view.

Integration Key to Experience: Common Elements (Part 2)

In my previous article from this series ,we introduced a use case around integration being the key to transforming your omnichannel experience. The process was laid out how I've approached the use...

View Article


Image may be NSFW.
Clik here to view.

2018年区块链安全事件盘点:恶龙猖獗,但屠龙者仍在

2018年,是区块链发展最迅猛的一年,全球加密货币总市值一度接近8000亿美金。但层出不穷的漏洞,使2018年成为黑客最为猖獗的一年。 安全事件的频发,严重阻碍了区块链的健康发展,不仅给用户带来了不小的损失,还直接导致了许多项目的“终结”。 2018年到底发生了哪些安全事件? 以下是猎豹区块链安全中心的整理盘点。希望广大用户和从业者能够引以为鉴。 概述...

View Article

Image may be NSFW.
Clik here to view.

分析黑客 | 实用技巧之“抢火车票、红包技术”,防止上当受骗

一、抢火车票 1、抢火车票软件的技术原理 目前主流的抢票软件是安装在浏览器上的插件,像猎豹、360浏览器等,用于在12306网站上抢票。 常规情况下,使用12306网站订票时,如果刷新页面就需要再次填写个人信息,这就耽误了不少时间。这一耽误,可能需要“秒杀”的热门火车票就已经落入他人之手,而查看剩余车票时也需要在计算机前不断地点击刷新页面。 人工操作效率远不如刷票软件...

View Article


Image may be NSFW.
Clik here to view.

Security and Speed: Why DevOps and Security Need to Play Nicely

It isn’t news that DevOps and IT security teams often struggle to align their departments and maintain a coherent balance between keeping a business secure and developing new applications to maintain...

View Article

Image may be NSFW.
Clik here to view.

Radware:2018年网络安全回顾之遭受攻击的校园

2018年,随着与技术的日益普及,校园网逐渐成为了勒索软件、数据窃取和拒绝服务攻击等的目标;2018年9月,美国联邦调查局甚至在暑假结束重新返校之际就发布了安全预警。...

View Article

Image may be NSFW.
Clik here to view.

This Jeff Bezos-backed security cam is designed to scare criminals

ByKatharine Schwab 3 minuteRead Installing a smart security camera is like having eyes inside your home when you’re not there. But the device doesn’t do much it might send you a notification if it...

View Article
Browsing all 12749 articles
Browse latest View live




Latest Images