Clik here to view.
智能手机不安全?个人隐私该如何保障?
智能手机不安全?个人隐私该如何保障? 一点号科技聚焦2小时前 php?url=0EWb9hTZBF" alt="智能手机不安全?个人隐私该如何保障?" />随着时代与科技的进步,我们早已习惯随性自在的生活,然而自由度大增的同时也隐藏着层出不穷的安全隐患――隐私泄露,电信欺诈,丢失难觅……凡此种种甚至成为现代人的“心魔”。手机安全的问题被推到风口浪尖的背后,是整个手机行业的巨大难题。...
View Article担心黑客入侵 部分用户匆匆关闭雅虎账号
北京时间9月24日消息,据外媒报道, 在雅虎曝出“该公司至少5亿用户的账户资料外泄”消息后,为防黑客入侵,大量用户在周五匆匆关闭了自己的雅虎账户。 雅虎日前承认,该公司至少5亿用户的账户资料遭黑客窃取。雅虎表示,他们认为发生在2014年的此次攻击行为由“有政府背景支持”黑客发动,被窃取的资料包括:账户名称、电邮地址、电话号码、部分密码以及部分用户的安全问题答案,但黑客并未窃取信用卡和银行账户信息。...
View ArticleClik here to view.
如何像黑客一样思考
TNW中文站 9月24日报道 黑客也许是世界上最酷的工作之一了,与忍者、海盗和超级间谍并列。 当我还是个小孩子的时候,我希望自己成为印第安纳琼斯(indiana jones)或詹姆斯邦德(James Bond),因为他们桀骜不驯,而且善于战斗。 后来,一个叫“匿名者(Anonymous)”――在纽约叫做“蒙面复仇者(Masked...
View ArticleWindows Favorites throw File Download Security Warning popup
If you open favorites on up to date windows PCs from the favorites folder, you may get a File Download - Security Warning popup whenever you do so. The popup is a security warning that asks you whether...
View ArticleSecurity News This Week: Hackers Take Control of a Moving Tesla’s Brakes
Plenty of hacking targets hit the news in recent days, including Tesla and Cisco, as we recount in our roundup below. But it’s a fair bet that no one’s week was as badly ruined by hackers as Yahoo’s....
View ArticleClik here to view.
Attackers shut down 'Krebs on Security' site with over 620 gigabit per second...
How fast is your Internet connection? People in Germany will soon all have 50Mbps , and we've seen theoretical speeds topping out at 4.7Gbps . While these speeds are great, just imagine trying to...
View ArticleEast-West Encryption: The Next Security Frontier?
Microsegmentation, a method to create secure, virtual connections in software-defined data centers (SDDCs), has already emerged as one of the primary reasons to embrace network virtualization (NV) ....
View Article安全产品经理的思维模式――网站群治理平台诞生记
从红头文件到落地产品,一个备受青睐的安全产品是如何诞生的呢? “网站群治理平台叫好叫座,因为我们经历了一个从需求提炼到问题解决、从用户需求到用户体验的全过程。”作为网站群治理平台的产品经理,来自WebRAY 的李春鹏谈起这个产品来非常自豪,因为“确实解决了问题,受到了用户的广泛好评。” 一个文件引发的深度思考...
View ArticleLwood-20160925
Introduction Welcome to Last week on OpenStack Dev (“Lwood”) for the week just past.For more background on Lwood, please referhere. Basic Stats for week 19 to 25 September for openstack-dev: ~547...
View ArticleClik here to view.
Apple to fix backup security vulnerability in iOS 10
Apple plans to fix a vunerability in iOS 10 discovered by controversial Russian forensics company Elcomsoft that puts iPhones’ security at risk. Apple added an alternative password verification...
View Articledebian8使用kali源
apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6 再修改/etc/apt/sources.list deb http://old.kali.org/kali sana main non-free contrib deb http://mirrors.aliyun.com/kali sana main non-free...
View ArticleClik here to view.
Many businesses still failing badly when it comes to password security
A new piece of security research has emerged, and while there are positive aspects here, there are the usual worrying statistics to chew over as well. And probably the most concerning nugget to be...
View ArticleClik here to view.
Yahoo security still poor despite massive breach, claims Venafi
On 22 September, the internet firm said a “recent investigation” had revealed that the compromised data may have included names, email addresses, telephone numbers, dates of birth, hashed passwords,...
View ArticleClik here to view.
What’s in your code? Why you need a software bill of materials
Writing secure applications doesn't mean simply checking the code you've written to make sure there are no logic errors or coding mistakes. Attackers are increasingly targeting vulnerabilities in...
View ArticleClik here to view.
百G带宽已是常事 主机托管提供商OVH竟遭1Tbps拒绝服务攻击
OVH,世界最大的主机托管公司之一,上周报告称其系统遭到分布式拒绝服务(DDoS)攻击,攻击规模达 1 Tbps。 OVH创始人兼首席技术官奥克塔夫克拉拔在推特上称,该公司在过去几天里检测到了“很多大型DDoS”。克拉拔贴出的一张截图显示,多次攻击超过了 100 Gbps,同时发生的攻击流量总计高达 1 Tbps 。最大的单次攻击峰值近 800 Gbps 。...
View ArticleClik here to view.
浅析思科0day漏洞CVE-2016-6415
我们在昨天发表的一篇文章中简单介绍了方程式的“BENIGNCERTAIN”利用工具和漏洞CVE-2016-6415,在这篇文章中,我们将带大家了解这个漏洞到底是个什么情况。 事件概述 今年夏天,一个名为“ Shadow Brokers ”的黑客组织入侵了“ Equation Group...
View ArticleGoogle rushes in where Akamai fears to tread, shields Krebs after...
Google has provided free distributed denial of service attack (DDoS) mitigation services to security publication Krebs on Security , stepping in after Akamai withdrew support. The information security...
View ArticleClik here to view.
赛门铁克:越来越多的物联网设备被用于实施DDoS攻击
攻击目标物联网设备包括家庭网络、路由器、调制解调器、CCTV系统和工业控制系统 近日,网络安全厂商赛门铁克公司公布一项针对物联网安全的调研结果,深入分析网络攻击者如何在网络设备拥有者不知情的情况下,利用物联网安全设备的漏洞传播恶意软件或创建僵尸网络。 赛门铁克安全响应团队发现,网络罪犯通过劫持家庭网络和消费互联设备实施分布式拒绝服务 (DDoS)...
View ArticleClik here to view.
《街头霸王5》更新反作弊机制乌龙留后门 卡普空推出修复补丁
上周末,《街头霸王5》(Street Fighter V)推出了PC和PS4的重大更新版本,带来了本季度最后一个DLC角色尤里安,加入了人机对战模式、日常任务、新的场景KO镜头等新功能。 不过,这个“重大更新”却给PC玩家带来安全隐患,卡普空在更新中加入的反作弊机制Rootkit却开了一个程序后门,为“恶意软件”提供方便。...
View ArticleClik here to view.
PHPCMS2008广告模板SQL注入漏洞
phpCMS2008由于广告模块取 referer 不严,导致一处sql注入漏洞.可以得到管理员用户名与密码,攻击者登录后台后可能会获取webshell,对服务器进行进一步的渗透。 0x01 漏洞分析 漏洞产生的位置: /ads/include/ads_place.class.php 的 show 方法中. function show($placeid) ......
View Article