# 每日安全资讯(2025-11-19) - paper - Last paper - [ ] [思维链劫持](https://paper.seebug.org/3413/) - Doonsec's feed - [ ] [实战案例 | 组合拳漏洞导致全校的信息泄露](https://mp.weixin.qq.com/s?__biz=MzkyNTUyNTE5OA==&mid=2247489185&idx=1&sn=2c05a505976dd65a9e6b3af10655a0af) - [ ] [某edu站点打包高危9分漏洞](https://mp.weixin.qq.com/s?__biz=MzkyNTUyNTE5OA==&mid=2247489185&idx=2&sn=568578ac37005f18f63d5d766ca1c5ae) - [ ] [技术决定你的下限,但“搞钱”的认知决定你的上限](https://mp.weixin.qq.com/s?__biz=MzU3OTYxNDY1NA==&mid=2247485874&idx=1&sn=bdfdeb3a9d65d7760ab6b546e76d86a9) - [ ] [西软云XMS download接口存在任意文件读取漏洞 附POC](https://mp.weixin.qq.com/s?__biz=MzIxMjEzMDkyMA==&mid=2247489586&idx=1&sn=6882f8581bb768a3bff007d9a577f4cd) - [ ] [小程序|新版H5小程序逆向调试开启Webview操作流程](https://mp.weixin.qq.com/s?__biz=Mzg2NTk4MTE1MQ==&mid=2247488315&idx=1&sn=19c718d06fd8ce1eb0ad5b9b45649ed3) - [ ] [怎么飞不了了](https://mp.weixin.qq.com/s?__biz=MzAwMjQ2NTQ4Mg==&mid=2247503321&idx=1&sn=1956abd086d4f58e6657ff3b9e40c991) - [ ] [CVE-2025-64446 最新FortiWeb漏洞 网站秒拿下](https://mp.weixin.qq.com/s?__biz=MzkwOTY3Njg4Nw==&mid=2247484466&idx=1&sn=865c224392668d9f8f5ec36b1983401c) - [ ] [Cloudlfare崩溃](https://mp.weixin.qq.com/s?__biz=Mzk0NDM5MjczMw==&mid=2247484572&idx=1&sn=b9abdf6ef681722b442a2a7ac960f54b) - [ ] [2025年11月软考信安真题回忆](https://mp.weixin.qq.com/s?__biz=MzkzOTIxNDMwMw==&mid=2247484112&idx=1&sn=2ad5594bba3ca003b31ae42d25f904f0) - [ ] [网络“脉搏”骤停:Cloudflare 全球服务大面积故障背后的风险提醒](https://mp.weixin.qq.com/s?__biz=Mzk0ODU4NjIzNA==&mid=2247485262&idx=1&sn=84761b28a1ff260cddb1c8f5a1546e94) - [ ] [(10)-Java学习之Jsp混淆免杀工具编写](https://mp.weixin.qq.com/s?__biz=MzkzMjIwNzM1Ng==&mid=2247485753&idx=1&sn=ace1876350cf5cc394f269bc2f971d9e) - [ ] [远程办公救星!用code-server打造你的专属云端IDE](https://mp.weixin.qq.com/s?__biz=MjM5OTc5MjM4Nw==&mid=2457389420&idx=1&sn=ae8126f8140f041db68bf3dcd9476031) - [ ] [【快讯】Cloudflare 突发全球大范围宕机!](https://mp.weixin.qq.com/s?__biz=MzkxNjc0ODA3NQ==&mid=2247484647&idx=1&sn=29ba900b9e09b78187f689dcc04ab0a3) - [ ] [震惊!顶尖黑客出手,Cloudflare崩溃,全球互联网死一大片!!!](https://mp.weixin.qq.com/s?__biz=Mzk0NDQwMDY1Nw==&mid=2247486160&idx=1&sn=e0d0ab5c342e89cfe9faf296e7c84b3b) - [ ] [分享的图片、视频、链接](https://mp.weixin.qq.com/s?__biz=Mzg4NDg2NTM3NQ==&mid=2247485453&idx=1&sn=45d354ed370b83d5488cf8276c3b130d) - [ ] [大善人(Cloudflare)崩了 不用上班了!(应该是更新推送导致的崩溃)](https://mp.weixin.qq.com/s?__biz=Mzk0MDY2NTY5Mw==&mid=2247485837&idx=1&sn=fc66d52d08fac851cf402e25433a3af8) - [ ] [某网安公司欠薪跑路,只是行业寒冬的缩影](https://mp.weixin.qq.com/s?__biz=MzI5MTIwOTQ5MA==&mid=2247489244&idx=1&sn=48b3023e854377dac3c0564546c62de5) - [ ] [CloudFlare似了喵](https://mp.weixin.qq.com/s?__biz=MzkyNTQ0OTYxOQ==&mid=2247484177&idx=1&sn=e2ff88b259ea3df2de4a840418236bea) - [ ] [活久见, Cloudflare 崩了](https://mp.weixin.qq.com/s?__biz=MzkyNTYxNDAwNQ==&mid=2247485279&idx=1&sn=b30c89b4f03e963189bcc3030345c3c8) - [ ] [Cloudflare全球重大安全故障,大量知名网站无法访问!](https://mp.weixin.qq.com/s?__biz=MzU3MjU4MjM3MQ==&mid=2247490452&idx=1&sn=a6f5d205a66ce66ff31b34b981199dab) - [ ] [全球知名cdn 服务商CF(Cloudflare)突然崩溃!](https://mp.weixin.qq.com/s?__biz=MzUxMzQ2NTM2Nw==&mid=2247493713&idx=1&sn=c3505f4b9c76327d4afa1cc866d0a9b5) - [ ] [【AI安全】 大模型安全防御新突破:破解 “越狱” 难题的组合策略解析](https://mp.weixin.qq.com/s?__biz=MzkxNzU2NDgxNQ==&mid=2247484060&idx=1&sn=68d00d3dd7d74ce5c194c78fca7d777c) - [ ] [WP | 春秋云境靶场Finance](https://mp.weixin.qq.com/s?__biz=MzI5NDg0ODkwMQ==&mid=2247487075&idx=1&sn=25d3a112b5756bf1d9afc8c51cbf35c7) - [ ] [微信公众号/服务号-如何打开控制台](https://mp.weixin.qq.com/s?__biz=Mzg4MDgyNzY4Nw==&mid=2247484107&idx=1&sn=fa507ebe57c8c6ff8664d80af9abf49b) - [ ] [全球知名cdn厂商Cloudflare全球宕机](https://mp.weixin.qq.com/s?__biz=MzU4NDY3MTk2NQ==&mid=2247492072&idx=1&sn=4c86abb713cdca0491a8693cdf8fa75c) - [ ] [【第五空间简史】第6节 入侵检测专家系统(IDES)出现](https://mp.weixin.qq.com/s?__biz=Mzg2NTkwODU3Ng==&mid=2247515585&idx=1&sn=a1cb26e94a79bc6209343dce024cf0be) - [ ] [【第五空间简史】第7节 黑客如何成为一夜之间的“反派”](https://mp.weixin.qq.com/s?__biz=Mzg2NTkwODU3Ng==&mid=2247515585&idx=2&sn=8383c57d00a8ec21fd4e231b1bc32d0b) - [ ] [【连载】红蓝对抗-攻防演练-WEB安全渗透测试:文件上传漏洞原理(五)](https://mp.weixin.qq.com/s?__biz=MzI0MzM3NTQ5MA==&mid=2247484869&idx=1&sn=7186c1841d64a2af21c97d04affce4e5) - [ ] [【cyberstricklab】 lab-4 内网渗透](https://mp.weixin.qq.com/s?__biz=MzkzNzg4MTI0NQ==&mid=2247488763&idx=1&sn=73990b8f44cc2377e262781b3c355f86) - [ ] [【DC-8 合法模拟渗透学习】exim4 提权](https://mp.weixin.qq.com/s?__biz=Mzk0MTc2NDk2Nw==&mid=2247484867&idx=1&sn=cb947fc667e77b331ed3ce5a687e8caf) - [ ] [关于公开征集《工业互联网园区 绿色化发展水平评估要求》和《工业互联网园区 数智化水平评估要求》两项行业标准参编单位的通知](https://mp.weixin.qq.com/s?__biz=MzU1OTUxNTI1NA==&mid=2247594383&idx=1&sn=d85002ffe84ecfd5d204e51bf6a4a32d) - [ ] [这样挖洞,小白不出洞来找我](https://mp.weixin.qq.com/s?__biz=Mzg3NzUyMTM0NA==&mid=2247488430&idx=1&sn=57b6f985638feb752a19a5d14e95c374) - [ ] [安世加实战派沙龙第四期:办公流量安全在北京成功举办(2025年11月16号/周六)](https://mp.weixin.qq.com/s?__biz=MzU2MTQwMzMxNA==&mid=2247543278&idx=1&sn=6d4c311ad6f3294451a4a447815e9b7c) - [ ] [歌推出统一安全推荐计划,扩展安全生态系统](https://mp.weixin.qq.com/s?__biz=MzU2NDY2OTU4Nw==&mid=2247525064&idx=1&sn=c887a0c4cbe7c4f555ab2b2545d5ce1b) - [ ] [从威胁告警到风险量化:企业信息安全风险管理实战框架](https://mp.weixin.qq.com/s?__biz=Mzg3NTUzOTg3NA==&mid=2247516743&idx=1&sn=bcc758bdb3e24f561ddaba37708ec311) - [ ] [个人赛169分,团体赛205分!第十一届“美亚杯”最强黑马!](https://mp.weixin.qq.com/s?__biz=MjM5NTU4NjgzMg==&mid=2651447958&idx=1&sn=e3846d021a8a667a08eacd47c67beebf) - [ ] [技术干货 | 图片突然损坏?从文件头 / 尾部下手,教你轻松救回!](https://mp.weixin.qq.com/s?__biz=MjM5NTU4NjgzMg==&mid=2651447958&idx=2&sn=c27c685b55d1907567ce748c8fa0945e) - [ ] [如何进行风险评估](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650563246&idx=1&sn=6e5e1ccf6e061edb8d3d6f2e60c0b4a2) - [ ] [欧盟设立情报单位的战略分析与对我影响评估](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650563246&idx=2&sn=6acf282a14b90e7c2a6bc4bd508b2270) - [ ] [网络钓鱼攻击常见类型汇总](https://mp.weixin.qq.com/s?__biz=Mzk4ODI4MDEzNQ==&mid=2247484013&idx=1&sn=eebd0fb835258eb0c822116d576f3e53) - [ ] [SDL序列课程-第63篇-安全需求-文件上传需求-对上传文件使用病毒引擎进行过滤](https://mp.weixin.qq.com/s?__biz=Mzk0NzE5NjI0Mg==&mid=2247484921&idx=1&sn=d5fa8af25ee0ae8cdfe83f0d52362815) - [ ] [深圳某中学2025级初一数学期中考试压轴题](https://mp.weixin.qq.com/s?__biz=MzUzMjQyMDE3Ng==&mid=2247488796&idx=1&sn=eb4213c7c86740e43b6a15b5ddeda36c) - [ ] [假如让AI来设计C2会怎么样](https://mp.weixin.qq.com/s?__biz=MzkzMDgyMTM1Ng==&mid=2247485116&idx=1&sn=db3b83f5d4b2a0538b8211b6855b7833) - [ ] [【美国国税局】美国65岁以上退休人员个人信息数据集(1800万条)泄露](https://mp.weixin.qq.com/s?__biz=MzU5MjgwMDg1Mg==&mid=2247488164&idx=1&sn=48852fdce34d70f7e1894a1f7df4f87e) - [ ] [跨平台C2工具 - Rshell---A-Cross-Platform-C2](https://mp.weixin.qq.com/s?__biz=MzIzNTE0Mzc0OA==&mid=2247486640&idx=1&sn=6d77acad5ca69bbf741549f8ab0618cc) - [ ] [青岛银行CIO杨斌:中小银行需以应用驱动和场景导向推进AI落地](https://mp.weixin.qq.com/s?__biz=MzIxMDIwODM2MA==&mid=2653932940&idx=1&sn=aaf05bdce280dcaef882d6afd34a9076) - [ ] [AI快讯:蚂蚁集团发布全模态通用AI助手,Grok 4.1面世,新大陆已与阿里云推出支付专属大模型](https://mp.weixin.qq.com/s?__biz=MzIxMDIwODM2MA==&mid=2653932940&idx=2&sn=9e1a0ce9fbac2ec7fff29dda079c9e8e) - [ ] [太平洋产险线上理赔大模型作业助手项目测试人力采购项目方案征集](https://mp.weixin.qq.com/s?__biz=MzIxMDIwODM2MA==&mid=2653932940&idx=3&sn=a972f74e8ddd97060769290df9664005) - [ ] [16.5万百度单一!邮储银行大模型平台应用服务系统工程数字员工系统配套软件技术开发项目](https://mp.weixin.qq.com/s?__biz=MzIxMDIwODM2MA==&mid=2653932940&idx=4&sn=ea519753080a408a525f2463e31c61b8) - [ ] [Top20战队决出!@腾讯云黑客松智能渗透挑战赛](https://mp.weixin.qq.com/s?__biz=Mzg5OTE4NTczMQ==&mid=2247528444&idx=1&sn=20ee42d291b9ffb8a354192e23a4ad21) - [ ] [第五届网络空间内生安全学术大会将于11月26日至29日在宁举行](https://mp.weixin.qq.com/s?__biz=Mzg4MDU0NTQ4Mw==&mid=2247534770&idx=1&sn=94bff3442dbee2a45496aa08c59fe8ed) - [ ] [【安全圈】荷兰警方查封防弹主机服务商 扣押 250 台物理服务器并迫使数千犯罪虚拟机下线](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=1&sn=2940f9a9e4c84962d1fb784a686041cd) - [ ] [【安全圈】EchoGram 漏洞暴露大模型防护体系重大缺陷](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=2&sn=d1a4fb92f3c9d076e6d36e4f58db2e97) - [ ] [【安全圈】Everest 勒索组织声称窃取 Under Armour 343GB 内部敏感数据](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=3&sn=154ada5ec328c0a45d696c9151740640) - [ ] [【安全圈】英国黑客因劫持奥巴马推特账户被判缴 540 万美元比特币](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=4&sn=b2887d57c2823770ca81e44c7ef74b03) - [ ] [阿里巴巴集团安全部多个安全岗位招聘!](https://mp.weixin.qq.com/s?__biz=MzAwMjA5OTY5Ng==&mid=2247528018&idx=1&sn=564d895e03b1c12f24c231150736518a) - [ ] [国防科技大学社会招聘网络空间安全专业(劳务派遣、约7000-12000元/月)](https://mp.weixin.qq.com/s?__biz=Mzg2NDYwMDA1NA==&mid=2247545793&idx=2&sn=f1f28b0a7a67beef0430bf90cb2fc006) - [ ] [ISC.AI 2025创新百强申报开启:拥抱智能体技术浪潮,加速新质生产力跃迁](https://mp.weixin.qq.com/s?__biz=MjM5ODI2MTg3Mw==&mid=2649820708&idx=1&sn=1cf2ef774452e507c2face1cdc6a8532) - [ ] [南方电网广东广州供电局携手奇安信,打造能源行业安全可控新标杆](https://mp.weixin.qq.com/s?__biz=MzU0NDk0NTAwMw==&mid=2247629807&idx=1&sn=5ae89ed0bf922ac80388fcea7ccf0c6c) - [ ] [DataCon2025大赛圆满收官,获奖名单重磅揭晓!](https://mp.weixin.qq.com/s?__biz=MzU0NDk0NTAwMw==&mid=2247629807&idx=2&sn=03983f73fb45abdf314475a397ca382f) - [ ] [【报名倒计时】2025年全国网络安全行业职业技能大赛广东赛区选拔赛距报名截止还剩2天](https://mp.weixin.qq.com/s?__biz=MzUzNTI2MzU0OQ==&mid=2247497725&idx=1&sn=b9cab348242cdc3f45d2190ce8adf556) - [ ] [【开班通知】网络与信息安全电子数据取证分析师专项培训11月25日正式开班!](https://mp.weixin.qq.com/s?__biz=MzUzNTI2MzU0OQ==&mid=2247497725&idx=2&sn=d614f4f01ff9754a24fd7b52d6a0e10e) - [ ] [MoeCTF2025_逆向AK详解](https://mp.weixin.qq.com/s?__biz=Mzk4ODMwOTQ5MQ==&mid=2247485073&idx=1&sn=2f1c012362611362cf4a212e3db72851) - [ ] [闪耀NeurIPS 2025!快手13篇论文入选,Spotlight 成果跻身前三!](https://mp.weixin.qq.com/s?__biz=Mzg2NzU4MDM0MQ==&mid=2247498243&idx=1&sn=16d56fe2da2ef00b8f7ef3324634cfee) - [ ] [落地实战 | 360企业级智能体助力青岛恒星科技学院“冲刺”AI数智高校](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247583016&idx=1&sn=a6da89eb8cc70d95f68e575210a4b750) - [ ] [360入选《2025年中国数据安全企业全景图》 以智能体引领产业升级](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247583016&idx=2&sn=506ff6997cc3c8c9e22903be3046274a) - [ ] [论坛·原创 | 敏捷监管:加密数字货币动态监管新方案](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=1&sn=4d7109bd337268b35d8df4e39596eea4) - [ ] [专家解读 | 荆继武:电子印章应用的“密码之盾”](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=2&sn=43231248bb015597d1a2a001d36826be) - [ ] [观点 | 为以新安全格局保障新发展格局夯实法治基础](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=3&sn=728be63ded78ba8f752969eb94ca5713) - [ ] [国际 | 韩国生成式人工智能治理新规则](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=4&sn=6c0c304e2e60d3b53f8bb1f7953c6182) - [ ] [(23)安全大佬的成长故事-信息安全100人](https://mp.weixin.qq.com/s?__biz=Mzk5MDM2NzQ2Mg==&mid=2247483909&idx=1&sn=5bf59839d2358c13b0476604902f5989) - [ ] [明明电脑自带防火墙,为什么还要装杀毒软件?一文读懂终端防护的核心逻辑](https://mp.weixin.qq.com/s?__biz=MzkwMjc0NDk0NQ==&mid=2247487637&idx=1&sn=17548ba0869d36345bec199ef2e37758) - [ ] [成为白帽黑客后,开挂的人生到底有多爽?一文看懂技术赋能的5大核心优势](https://mp.weixin.qq.com/s?__biz=MzkwMjc0NDk0NQ==&mid=2247487637&idx=2&sn=b2016a71f8e8330c6cb87052db8d5323) - [ ] [五大领域获IDC重点推荐!](https://mp.weixin.qq.com/s?__biz=MzA3NDQ0MzkzMA==&mid=2651734919&idx=1&sn=9e8c97000c4cb143d2c2f681f1761ecb) - [ ] [自然资源部发布《卫星导航定位基准站管理办法》要求落实加密保护](https://mp.weixin.qq.com/s?__biz=MzkyNzE5MDUzMw==&mid=2247581008&idx=1&sn=a6a8980a310c9107fd7b2c6d87157156) - [ ] [2025游戏黑产趋势出炉!腾讯云技术革新方案首曝光](https://mp.weixin.qq.com/s?__biz=MzU5ODgzNTExOQ==&mid=2247646959&idx=1&sn=9a7f29091a0afcfa7c42955c9be043ac) - [ ] [未合规运用保险资金,民生通惠资管被罚390万元](https://mp.weixin.qq.com/s?__biz=MzU5ODgzNTExOQ==&mid=2247646959&idx=2&sn=9391266857723f408977e7b0d1ce1b51) - [ ] [免费赠送 | 防范网络电信诈骗宣传素材(第三期)](https://mp.weixin.qq.com/s?__biz=MzU5ODgzNTExOQ==&mid=2247646959&idx=3&sn=07c25ea45061a85f2226b245f571fbc1) - [ ] [杀猪盘诈骗团伙借助AI助手扩大犯罪规模](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651330545&idx=1&sn=ede32f143becb9558c87bbf2c784e073) - [ ] [AI说的每一句话,都靠谱吗?](https://mp.weixin.qq.com/s?__biz=MzA4MTQ2MjI5OA==&mid=2664093414&idx=1&sn=d19f9b8f382f408854488e75f18e1981) - [ ] [微软成功抵御史上最大规模云DDoS攻击,峰值达15.7 Tbps](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651330545&idx=3&sn=aa0b57387655987765b938083d181b96) - [ ] [EchoGram漏洞可绕过主流大语言模型的护栏机制](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651330545&idx=4&sn=7cfd99639d749061b3f5b88c0c732fd2) - [ ] [漏洞复现 | 深信服运维安全管理系统远程命令执行漏洞【附poc】](https://mp.weixin.qq.com/s?__biz=MzU0MTc2NTExNg==&mid=2247493058&idx=1&sn=3d15041bbc862e0df84103433f22ad25) - [ ] [谷歌紧急修复已遭利用的Chrome V8 0day 漏洞](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247524445&idx=1&sn=9145b7009a002f9da12dbec7be2ae727) - [ ] [LG源代码和凭据据称被盗](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247524445&idx=2&sn=c68a08bb8eaa87fe5e1da0737e64f0b1) - [ ] [Vulnhub靶场之Looz](https://mp.weixin.qq.com/s?__biz=Mzg3MjgxMzkzMg==&mid=2247485360&idx=1&sn=c7eabcc26694909411f7e69b8bdc64fd) - [ ] [从四点看2025年网络与数据安全建设重点](https://mp.weixin.qq.com/s?__biz=MzkzNjIzMjM5Ng==&mid=2247493289&idx=1&sn=1e14b7e07236e2bf6c5607f9925d3c51) - [ ] [正式公告|首期报名一周即满额,我们决定追加 10 席](https://mp.weixin.qq.com/s?__biz=MzkyMzI2NzIyMw==&mid=2247490297&idx=1&sn=947d890b40edb114f96ba13f9c0eac6d) - [ ] [ruoyi(若依)漏洞整合](https://mp.weixin.qq.com/s?__biz=MzIzOTM2MzczNQ==&mid=2247485214&idx=1&sn=8ef5b6cf7fb8aa264dae55053d386da3) - [ ] [珍藏在相册里四十年的跨国情谊——我在“上海之帆”经贸人文展上的意外见证](https://mp.weixin.qq.com/s?__biz=MzIxNDIzNTcxMg==&mid=2247509886&idx=1&sn=357749a0de90456409752589c9871806) - [ ] [ISC2会员必备丨了解并规划您的CPE,就用CPE学分快速指南](https://mp.weixin.qq.com/s?__biz=MzUzNTg4NDAyMg==&mid=2247493359&idx=1&sn=8ce609c8c4f1deba5e7c9eab50714d88) - [ ] [SDC2025 议题回顾 | LLM 与安全代码](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458604320&idx=1&sn=37ec0d386ca2a38f643de04c1c3cad1a) - [ ] [Clop勒索团伙再出手,罗技确认因Oracle漏洞导致数据泄露](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458604320&idx=2&sn=364d0c2862669459505599b2fa67b41f) - [ ] [重磅开课!系统0day安全——车联网安全入门(第8期)](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458604320&idx=3&sn=4931474594577332913a3d537678c029) - [ ] [巅峰对决,英才辈出 | DataCon2025大赛圆满收官,获奖名单重磅揭晓!](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489490&idx=1&sn=5cc335dfd35ee131d55f3197c89aa3c8) - [ ] [为了等保项目归档,开发了一个文档自动生成系统,适用于批量生成重复性高的文档](https://mp.weixin.qq.com/s?__biz=MzIwNDYzNTYxNQ==&mid=2247504606&idx=1&sn=e7555994671a8f483bb289908e864e33) - [ ] [【易行网安课程】渗透测试技及工具应用-课程介绍与大纲](https://mp.weixin.qq.com/s?__biz=MzU3MzU4NjI4OQ==&mid=2247517912&idx=1&sn=57b91799a805fdd2edc4a07dfbc9e2e4) - [ ] [车载以太网与CAN总线有什么区别?](https://mp.weixin.qq.com/s?__biz=MzIzOTc2OTAxMg==&mid=2247562630&idx=1&sn=42b1c088f7f2fdb34e1f8d644cd1dc4a) - [ ] [“雷军不懂结构,发的微博不算数……”遭SU7车主起诉后,小米法务交出84页新证据](https://mp.weixin.qq.com/s?__biz=MzIzOTc2OTAxMg==&mid=2247562630&idx=2&sn=1e537f750d7b067cffcc6d2e3bb0612d) - [ ] [智驭安全 联动破局!亚信安全AI XDR亮相高交会,引领网络安全防御新范式](https://mp.weixin.qq.com/s?__biz=MjM5NjY2MTIzMw==&mid=2650626138&idx=1&sn=f0fd99d6fdf32910de3d754883cf47ed) - [ ] [2025亚信安全台州市企业客户沙龙成功召开 共探企业数字化安全新路径](https://mp.weixin.qq.com/s?__biz=MjM5NjY2MTIzMw==&mid=2650626138&idx=2&sn=9fc3b5d8b98d868b9de1c5974eff6b67) - [ ] [【转载】国产商用密码在信息系统数据安全防护领域的应用](https://mp.weixin.qq.com/s?__biz=MzA4MTE0MTEwNQ==&mid=2668670833&idx=1&sn=90166b380d8725a4d41d14cde1ce42ef) - [ ] [再掀热潮!第三期《数智化审计高端实战班》苏州今日开课,首度聚焦“AI+经济责任审计”新篇章](https://mp.weixin.qq.com/s?__biz=MzU4NDExNDQwNA==&mid=2247490470&idx=1&sn=ec83b2175dcdfdc9ce99fe3ae592b0c8) - [ ] [测评公告(2025年第12号)](https://mp.weixin.qq.com/s?__biz=MzI0NDg4MTIyNQ==&mid=2247486229&idx=1&sn=27846d372b0df51f0a169a345fb7e3bc) - [ ] [Ai养蛊:让钓鱼邮件和反钓鱼邮件系统打一架](https://mp.weixin.qq.com/s?__biz=MzkxNTIwNTkyNg==&mid=2247556777&idx=1&sn=d6f6ce9e3b2d6c0659715c78a618a55e) - [ ] [【免费领】网安运维宝典:网络攻击追踪溯源技术大全](https://mp.weixin.qq.com/s?__biz=MzkxNTIwNTkyNg==&mid=2247556777&idx=2&sn=faf2e8a9a431a3d5077af76d4863d1ee) - [ ] [【IoT众测招募】新品众测再度来袭!提前测新品还有机会把它免费带回家!](https://mp.weixin.qq.com/s?__biz=MzUyNzc4Mzk3MQ==&mid=2247494549&idx=1&sn=36c0ee9ac1331b3eba76b4b729a3bf58) - [ ] [【论文速读】|AFLGopher:基于可行性感知引导的定向模糊测试加速方案](https://mp.weixin.qq.com/s?__biz=MzkzNDUxOTk2Mw==&mid=2247497365&idx=1&sn=d481c11735ee31e70c55fd1758d278a0) - [ ] [网警提示:收快递、退订单时要警惕!](https://mp.weixin.qq.com/s?__biz=MzA4NTk5NzgxOA==&mid=2657569169&idx=1&sn=21cab9c75eb8d51c14a7143d1b43f722) - [ ] [【免杀思路】DLL 镂空](https://mp.weixin.qq.com/s?__biz=Mzk0MDczMzYxNw==&mid=2247484713&idx=1&sn=3816d473b4d6e30e86674d114620c26d) - [ ] [人工智能风险新维度:当人工智能不再以人类的方式理解世界|AI的方式理解世界](https://mp.weixin.qq.com/s?__biz=MzI1OTExNDY1NQ==&mid=2651622133&idx=1&sn=dc4a908351aaef79d2a403794818e6aa) - [ ] [美国国防部宣布六大关键技术领域,称其将定义美未来军事优势](https://mp.weixin.qq.com/s?__biz=MzI1OTExNDY1NQ==&mid=2651622133&idx=2&sn=17a0b0fa18e47182f9c3bc6457e9be85) - [ ] [2025\"獬豸杯\"全国电子数据取证竞赛-手机部分WriteUp](https://mp.weixin.qq.com/s?__biz=MzkyOTI4NTY4MQ==&mid=2247491761&idx=1&sn=4646e5a462e428084915e5c4af697ae8) - [ ] [使用单位“一托了之”!服务商“交付即走”!网站被篡改,责任在谁?一起案件敲响供应链安全警钟!](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247501605&idx=1&sn=3e4b168849c329bf5cb8dc48b75ea4b1) - [ ] [黑客称窃取近 1.8TB 数据:罗技承认遭攻击,被盗数据仅含“有限信息”、不涉核心敏感内容](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247501605&idx=2&sn=035e16bc79c227b11d7b230c59d6c787) - [ ] [【WordPress专题03】遇到不按规范编写的插件如何进行代码审计?](https://mp.weixin.qq.com/s?__biz=MzkwMzUyMjk2MQ==&mid=2247485055&idx=1&sn=b7ea163ea3178b48f716d6e55941700e) - [ ] [360SRC助力 | 11月22日,平安SRC白帽子安全沙龙深圳站,探索攻防新篇!](https://mp.weixin.qq.com/s?__biz=MzkzOTIyMzYyMg==&mid=2247495646&idx=1&sn=9f2e7fe8a7cf16ab72cc17ecdc6512dd) - [ ] [从一个EXE文件到14台主机失陷——银狐木马实战攻防复盘](https://mp.weixin.qq.com/s?__biz=MzIzMDQwMjg5NA==&mid=2247508324&idx=1&sn=603b049f0f6872543178b01b298ea81c) - [ ] [请认准CISP官方授权维持机构(科普)](https://mp.weixin.qq.com/s?__biz=MzkxMTIyMjg0NQ==&mid=2247495837&idx=1&sn=1c28b7039586fba2bc1ccacde4fe654b) - [ ] [数字中国战略下数据安全治理体系现代化的实现路径](https://mp.weixin.qq.com/s?__biz=MjM5MzMwMDU5NQ==&mid=2649175107&idx=1&sn=3a978552965ce3f57f2f38b2ade31479) - [ ] [安全跟我学丨离职前故意删除公司数据是民事纠纷还是违法行为?](https://mp.weixin.qq.com/s?__biz=MjM5MzMwMDU5NQ==&mid=2649175107&idx=2&sn=1c5d9473f9ebd002b3d9f739e604bdbb) - [ ] [欢迎订阅2026年《网络安全和信息化》杂志~](https://mp.weixin.qq.com/s?__biz=MjM5MzMwMDU5NQ==&mid=2649175107&idx=3&sn=dcd1ad8c4670c45bc95568e9aa743b6d) - [ ] [汉王e脸通综合管理平台 getDoors.do SQL注入漏洞](https://mp.weixin.qq.com/s?__biz=MzkzMTcwMTg1Mg==&mid=2247493311&idx=1&sn=457e4d75d108254ccce873d9b74c8b55) - [ ] [安信天行基于多云环境下的政务云综合监管解决方案](https://mp.weixin.qq.com/s?__biz=MzA5MzMxMTMyMA==&mid=2648571445&idx=1&sn=a36666ae52821b95603005718353d7ed) - [ ] [院士姚期智:建立可以证明安全的AI系统至关重要](https://mp.weixin.qq.com/s?__biz=MzkwMTMyMDQ3Mw==&mid=2247602314&idx=1&sn=b255796941c7a7c2426b714efe64fc15) - [ ] [611款生成式人工智能服务完成备案](https://mp.weixin.qq.com/s?__biz=MzkwMTMyMDQ3Mw==&mid=2247602314&idx=2&sn=6300c6dcee801b53a22b5e37b98c4efc) - [ ] [核力同行,聚势共赢|渔翁信息亮相第四届深圳核博会](https://mp.weixin.qq.com/s?__biz=MzkwMTMyMDQ3Mw==&mid=2247602314&idx=3&sn=42ca6939f609b98631cee6a432d5f719) - [ ] [新型钓鱼攻击防范指南](https://mp.weixin.qq.com/s?__biz=Mzg3Njg1NTk5MQ==&mid=2247502675&idx=1&sn=60bb182e500570dae4eb7a7cc28b2037) - [ ] [【高危漏洞预警】深信服运维安全管理系统远程命令执行漏洞CVE-2025-12916](https://mp.weixin.qq.com/s?__biz=MzI3NzMzNzE5Ng==&mid=2247491005&idx=1&sn=fe60124fea2016fd57e72c0462b242a9) - [ ] [认识安全本身(手稿一)](https://mp.weixin.qq.com/s?__biz=MzkwNTI3MjIyOQ==&mid=2247484235&idx=1&sn=5182ac1bea0533f521fbaf0d28b7826e) - [ ] [火山引擎 MongoDB 进化史:从扛住抖音流量洪峰到 AI 数据底座](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247517486&idx=1&sn=d23f31af222e0a45f7b303a400a4bb6e) - [ ] [产业聚力 | 车控操作系统与芯片适配“产融芯链行动”正式启动](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649255858&idx=1&sn=ade324057717e81188617cc6a5c0e954) - [ ] [共绘产业跃迁新路径,“AI+数字孪生”论坛成功举办](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649255858&idx=2&sn=3a441b6a136a65ee65b0c601797eb089) - [ ] [赛迪推荐多项案例荣获“百项数据管理优秀案例”](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649255858&idx=3&sn=642d980ec150ab435807e058de2b3543) - [ ] [第八批通过信创数智技术服务能力 一级评估单位公示](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649255858&idx=4&sn=4aaa62f79c5d9af3ae99fc3bed7e656c) - [ ] [通知 | 市场监管总局就《互联网平台反垄断合规指引(征求意见稿)》公开征求意见](https://mp.weixin.qq.com/s?__biz=MzkyNDUyNzU1MQ==&mid=2247489027&idx=1&sn=b549c906f07528d48abfe4ab926c4db5) - [ ] [【扶摇(FUYIO)】一款JS漏洞检测与敏感信息挖掘工具](https://mp.weixin.qq.com/s?__biz=Mzg2NTA4OTI5NA==&mid=2247521847&idx=1&sn=328e276d80732b0cb05e73567d3b4a96) - [ ] [三未信安出席openEuler Summit 2025,共探开源生态与数据安全新未来](https://mp.weixin.qq.com/s?__biz=MzA5ODk0ODM5Nw==&mid=2650332686&idx=1&sn=6cd2c7bc481a99d2c201c294a649ca55) - [ ] [守护空中门户!慧盾安全构建机场视频安全防护新体系](https://mp.weixin.qq.com/s?__biz=MzI2NDcwOTgzOA==&mid=2247493648&idx=1&sn=a6e79aa71ef52579393c36b4e889b42e) - [ ] [Java漏洞集合工具 | 更新v2.0.1](https://mp.weixin.qq.com/s?__biz=MzkxMzMyNzMyMA==&mid=2247575728&idx=1&sn=0c11034bea894adb27a404c22c39bb1d) - [ ] [超硬核!黑客攻防技术总结(PDF可下载)](https://mp.weixin.qq.com/s?__biz=MzkxMzMyNzMyMA==&mid=2247575728&idx=2&sn=9829dc2ee141e7342d78490760190f4d) - [ ] [《中国人工智能应用发展报告(2025)》](https://mp.weixin.qq.com/s?__biz=Mzg4MDU0NTQ4Mw==&mid=2247534770&idx=2&sn=7079db5bd01bfc27cec335e67af8bcea) - [ ] [美网军斥资千万美元聘用AI黑客,开发自动化网络战武器](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515216&idx=1&sn=0b96bcbbb19133741ec6d9edc5637481) - [ ] [Gartner:2025年SIEM(安全信息与事态管理)市场分析](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515216&idx=2&sn=2aaeabac8d34c1c530582d61adf0f820) - [ ] [天津大学、中汽研:智能网联汽车信息安全威胁识别和防护方法研究](https://mp.weixin.qq.com/s?__biz=MzU2MDk1Nzg2MQ==&mid=2247628726&idx=1&sn=05f62db59667bf053577fcecdb63be39) - [ ] [智能汽车网络安全与信息安全基础培训课程 2025](https://mp.weixin.qq.com/s?__biz=MzU2MDk1Nzg2MQ==&mid=2247628726&idx=2&sn=3b712dbb17b2b350cd37a3cb2d8229e4) - [ ] [中公高远、国家汽车质量检验检测中心:智能网联汽车信息安全关键技术分析](https://mp.weixin.qq.com/s?__biz=MzU2MDk1Nzg2MQ==&mid=2247628726&idx=3&sn=ad2c9abcb7d69fd32da3a3c73d809d2e) - [ ] [近期金融机构网络与数据安全处罚案例汇总](https://mp.weixin.qq.com/s?__biz=MzU0Mzk0NDQyOA==&mid=2247522887&idx=1&sn=ae0a7d852e8f0b90d218312cf83610e0) - [ ] [公安部通报40款APP违规,“超范围收集、注销困难...”面临下架风险,企业如何构筑主动合规体系?](https://mp.weixin.qq.com/s?__biz=MjM5NzE0NTIxMg==&mid=2651136472&idx=1&sn=69e801e41ace97c1cb8d22771b4df782) - [ ] [依法查处!公安部网安局披露典型弱口令案例 飞天诚信:防止口令泄露造成损失需要MFA](https://mp.weixin.qq.com/s?__biz=MjM5NDE1MjU2Mg==&mid=2649877599&idx=1&sn=a214a71d28046789fc79b96d81d732f5) - [ ] [【星闻周报】ValleyRAT木马利用微信和钉钉针对国内用户发起攻击](https://mp.weixin.qq.com/s?__biz=Mzk0MTYyNTg3Mg==&mid=2247493292&idx=1&sn=e0187c10f98e46a9ce893da4aa198e6b) - [ ] [内推|长亭科技实习&校招岗位内推,火速投递!实习一周入职!](https://mp.weixin.qq.com/s?__biz=Mzg5MDA5NzUzNA==&mid=2247489528&idx=1&sn=59df3e485641fe43c68070e5f884479d) - [ ] [警惕!4300 个假 Booking/Agoda 网站,动态伪装偷全球旅客支付信息](https://mp.weixin.qq.com/s?__biz=MzkyNDcwMTAwNw==&mid=2247537777&idx=1&sn=4a6b6745830913252aa6669b8df2ebaa) - [ ] [三星苹果用户警惕!严重漏洞缠身,已成间谍软件攻击重灾区](https://mp.weixin.qq.com/s?__biz=MzkyNDcwMTAwNw==&mid=2247537777&idx=2&sn=e6a6a14a3c1facce246a2ba440553f28) - [ ] [全球首例 AI 自主网络攻击?Anthropic 报告缺证据遭群嘲!](https://mp.weixin.qq.com/s?__biz=MzkyNDcwMTAwNw==&mid=2247537777&idx=3&sn=83aaf5dacc6b3ae6634bd83cc46e8e95) - [ ] [必藏!2025 网络安全七大趋势](https://mp.weixin.qq.com/s?__biz=MzkyNDcwMTAwNw==&mid=2247537777&idx=4&sn=d1e47d9cc1b39ea4c1e557b60cfe2f48) - [ ] [20 个渗透测试核心技能,新手易上手,简历加分利器](https://mp.weixin.qq.com/s?__biz=MzkyNDcwMTAwNw==&mid=2247537777&idx=5&sn=1492e7ba38cdead5a1f87879a658eb5a) - [ ] [安全简讯(2025.11.18)](https://mp.weixin.qq.com/s?__biz=MzkzNzY5OTg2Ng==&mid=2247501795&idx=1&sn=6eca7bce37ad8d3b0785450f38a9256b) - [ ] [【漏洞通告】Chrome V8 类型混淆导致远程代码执行漏洞(CVE-2025-13223)](https://mp.weixin.qq.com/s?__biz=MzkzNzY5OTg2Ng==&mid=2247501795&idx=2&sn=8a6ed618e8b14f9857ed4f28466f07d6) - [ ] [Copilot 一键重写 PPT 文本,让你的演示文稿更专业](https://mp.weixin.qq.com/s?__biz=MzkxNzY0Mzg2OQ==&mid=2247487971&idx=1&sn=95a1a7e3b8e34df949797f88a6329163) - [ ] [自己的 MS365 账号,怎么添加 Copilot 功能](https://mp.weixin.qq.com/s?__biz=MzkxNzY0Mzg2OQ==&mid=2247487971&idx=2&sn=3ee929a39da3d1580c0255a4b8f45534) - [ ] [习近平对全面依法治国工作作出重要指示](https://mp.weixin.qq.com/s?__biz=MzU0MTA3OTU5Ng==&mid=2247569798&idx=1&sn=a4d71bb3ec491cff4070fd473b0640a5) - [ ] [CC1打不通时的另外一条链CC3](https://mp.weixin.qq.com/s?__biz=MzkyNTY3Nzc3Mg==&mid=2247490880&idx=1&sn=db8da0820f67384c8fe937f9c9c66ed8) - [ ] [揭秘Cookie前缀保护失效的真实成因与攻击技巧](https://mp.weixin.qq.com/s?__biz=Mzg4NjY3OTQ3NA==&mid=2247487263&idx=1&sn=7e609baa7958a4efe32c8a6c14918a21) - [ ] [国际模特大赛广东赛区冠军赏析](https://mp.weixin.qq.com/s?__biz=Mzg5Mzc0MTg1NQ==&mid=2247483871&idx=1&sn=d1719875b3a742f81b82a3c48c2224aa) - [ ] [2026年攻击面管理将演进的五大趋势](https://mp.weixin.qq.com/s?__biz=MzA3NTIyNzgwNA==&mid=2650260573&idx=1&sn=f8eaec68bdd831edc15224e54c19d62f) - [ ] [淬炼党性强本领 赋能发展启新程——安全公司举办深入学习贯彻党的二十届四中全会精神党建专题培训暨新任职干部培训](https://mp.weixin.qq.com/s?__biz=MzkxNDY0MjMxNQ==&mid=2247538425&idx=1&sn=5ae11b9ce58c25b4795bf3d0dccdf08e) - [ ] [天空的隐形杀手?你以为的无人机,可能是黑客的“千里眼”和“轰炸机”!](https://mp.weixin.qq.com/s?__biz=MzkxNDY0MjMxNQ==&mid=2247538425&idx=2&sn=df2fd0d54270a67f9eb4b6f0678405ff) - [ ] [每日安全动态推送(25/11/18)](https://mp.weixin.qq.com/s?__biz=MzA5NDYyNDI0MA==&mid=2651960303&idx=1&sn=9646e987b9b9d3a97ae45865b4f95147) - [ ] [高校学生如何更好的开展网络安全研究](https://mp.weixin.qq.com/s?__biz=MzkzNDQ0MDcxMw==&mid=2247488358&idx=1&sn=0fe34815ded10b01074d94231e10f4e3) - [ ] [PowerShell + COM劫持 + WMI事件订阅构建隐蔽后门](https://mp.weixin.qq.com/s?__biz=MzkzNDQ0MDcxMw==&mid=2247488358&idx=2&sn=147870a9368541ca59db6e16391f33f6) - [ ] [智绘教育新篇,筑牢安全基石 | 众智维科技携手海量数据共探教育信息化新未来](https://mp.weixin.qq.com/s?__biz=MzU5Mjg0NzA5Mw==&mid=2247494817&idx=1&sn=4d8b2be9d679292f070277efc3a5c272) - [ ] [FreeBuf专访天威诚信罗贇 | 构建安全的SSL证书管理自动化](https://mp.weixin.qq.com/s?__biz=MzU4MzY5MzQ4MQ==&mid=2247542956&idx=1&sn=33fbf597a44a496f72ff2131e3d61fb1) - [ ] [网安SRC漏洞审核常会碰到哪些漏洞?](https://mp.weixin.qq.com/s?__biz=MzkwOTczNzIxNQ==&mid=2247487307&idx=1&sn=f0f270d94165e2f69f7929966a8cfc40) - [ ] [【漏洞复现及预警】 | 远程命令执行漏洞(CVE-2025-12916)安全风险通告](https://mp.weixin.qq.com/s?__biz=MzUyNzk1NjA5MQ==&mid=2247483998&idx=1&sn=481e7e60c3f1829a3f2cdbb56b5f0270) - [ ] [2025年11月委内瑞拉军演的战略意图与地区影响分析](https://mp.weixin.qq.com/s?__biz=MzkwNzM0NzA5MA==&mid=2247512285&idx=1&sn=9e8daf08dd2ff12e1ae9f07ebfaf0321) - [ ] [缓存穿透&缓存击穿&缓存雪崩详解](https://mp.weixin.qq.com/s?__biz=MzE5MTQzMzg5MA==&mid=2247484224&idx=1&sn=f748145e8aed227adaa570494e6cedea) - [ ] [发几个POC](https://mp.weixin.qq.com/s?__biz=MzkzMDY3ODg5MQ==&mid=2247484284&idx=1&sn=c4d5fd2a48118883a1a805018fca3e0a) - [ ] [《2026 网络安全预测》报告](https://mp.weixin.qq.com/s?__biz=MzkzMDY3ODg5MQ==&mid=2247484284&idx=2&sn=fbf63dfb8fa94278be1b3c9cf3301c0e) - [ ] [注册维持申请表及授权维持机构名录](https://mp.weixin.qq.com/s?__biz=MzI1NzQ0NTMxMQ==&mid=2247490863&idx=1&sn=e1f5810f7e5a82328b8bfb485b5248ee) - [ ] [赛宁助力2025年陕西省高校教职工网络安全技能大赛暨网络安全人才培养交流论坛成功举办!](https://mp.weixin.qq.com/s?__biz=MzA4Mjk5NjU3MA==&mid=2455490948&idx=1&sn=7327729cc7a2d8e56a3c02b14ab7e4e0) - SecWiki News - [ ] [SecWiki News 2025-11-18 Review](http://www.sec-wiki.com/?2025-11-18) - Private Feed for M09Ic - [ ] [CHYbeta starred sarwarbeing-ai/Agentic_Design_Patterns](https://github.com/sarwarbeing-ai/Agentic_Design_Patterns) - [ ] [LloydLabs starred seiflotfy/count-min-log](https://github.com/seiflotfy/count-min-log) - [ ] [mgeeky starred jonny-jhnson/ProcCallback](https://github.com/jonny-jhnson/ProcCallback) - [ ] [WAY29 contributed to sst/opencode](https://github.com/sst/opencode/pull/4456) - [ ] [mgeeky starred x64dbg/x64dbgida](https://github.com/x64dbg/x64dbgida) - [ ] [bolucat released 202511181937 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202511181937) - [ ] [strands-agents released v1.17.0 at strands-agents/sdk-python](https://github.com/strands-agents/sdk-python/releases/tag/v1.17.0) - [ ] [0xbug starred agno-agi/agno](https://github.com/agno-agi/agno) - [ ] [INotGreen starred liujuntao123/smart-excalidraw-next](https://github.com/liujuntao123/smart-excalidraw-next) - [ ] [WAY29 starred Haleclipse/Claudix](https://github.com/Haleclipse/Claudix) - [ ] [WAY29 forked WAY29/opencode from sst/opencode](https://github.com/WAY29/opencode) - [ ] [wh0amitz starred gliderlabs/ssh](https://github.com/gliderlabs/ssh) - [ ] [mgeeky starred mayswind/AriaNg](https://github.com/mayswind/AriaNg) - [ ] [CHYbeta starred sansan0/TrendRadar](https://github.com/sansan0/TrendRadar) - [ ] [gh0stkey starred KsanaDock/Microverse](https://github.com/KsanaDock/Microverse) - [ ] [modelcontextprotocol released v1.3.10 at modelcontextprotocol/registry](https://github.com/modelcontextprotocol/registry/releases/tag/v1.3.10) - [ ] [PrefectHQ released 3.6.3.dev2 at PrefectHQ/prefect](https://github.com/PrefectHQ/prefect/releases/tag/3.6.3.dev2) - [ ] [Ridter forked Ridter/new-api from QuantumNous/new-api](https://github.com/Ridter/new-api) - [ ] [timwhitez starred api0cradle/Go365](https://github.com/api0cradle/Go365) - [ ] [wh0amitz starred LDAx2012/mimikatz](https://github.com/LDAx2012/mimikatz) - [ ] [su18 starred reactor/reactor-netty](https://github.com/reactor/reactor-netty) - [ ] [pydantic released v1.19.0 at pydantic/pydantic-ai](https://github.com/pydantic/pydantic-ai/releases/tag/v1.19.0) - Trustwave Blog - [ ] [Crowdsourced Penetration Testing: Understanding the Risks for Better Decision-Making](https://www.trustwave.com/en-us/resources/blogs/trustwave-blog/crowdsourced-penetration-testing-understanding-the-risks-for-better-decision-making/) - Tenable Blog - [ ] [Tenable Cloud Vulnerability Management: Reducing Vulnerability Risk in the Cloud Era](https://www.tenable.com/blog/tenable-cloud-vulnerability-management-unifies-onprem-and-cloud-vulnerability-management) - Microsoft Security Blog - [ ] [Agents built into your workflow: Get Security Copilot with Microsoft 365 E5](https://www.microsoft.com/en-us/security/blog/2025/11/18/agents-built-into-your-workflow-get-security-copilot-with-microsoft-365-e5/) - [ ] [Ambient and autonomous security for the agentic era](https://www.microsoft.com/en-us/security/blog/2025/11/18/ambient-and-autonomous-security-for-the-agentic-era/) - Recent Commits to cve:main - [ ] [Update Tue Nov 18 11:55:57 UTC 2025](https://github.com/trickest/cve/commit/553656edc2acc67a0fb1e1a0d36e63f193fb5658) - ElcomSoft blog - [ ] [Password Managers: Security, Risks, and Forensic Implications](https://blog.elcomsoft.com/2025/11/password-managers-security-risks-and-forensic-implications/) - 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com - [ ] [获IDC首推!360以安全工作空间重构智能时代安全边界](https://www.4hou.com/posts/Bv3n) - [ ] [Kraken勒索软件攻击细节曝光 可根据设备性能动态调整加密模式](https://www.4hou.com/posts/qozR) - 安全客-有思想的安全新媒体 - [ ] [【团队巅峰赛】年终冲榜ing,登顶豪享『出国行』](https://www.anquanke.com/post/id/313234) - Blogs on STAR Labs - [ ] [HEX ADVENT 2025: Crack the Advent, Conquer the Threat 🐛](https://starlabs.sg/blog/2025/11-hex-advent-2025/) - Cerbero Blog - [ ] [Memory Challenge 8: MemLabs Lab 4 – Obsession](https://blog.cerbero.io/memory-challenge-8-memlabs-lab-4-obsession/) - Horizon3.ai - [ ] [Prioritize What’s Proven: The NodeZero® Approach to Risk‑Based Vulnerability Management](https://horizon3.ai/intelligence/blogs/prioritize-whats-proven-the-nodezero-approach-to-risk%e2%80%91based-vulnerability-management/) - [ ] [Horizon3.ai Enhances NodeZero® Platform to Empower Enterprises to Prioritize Their Most Business-Critical Cyber Risks](https://horizon3.ai/news/press-release/horizon3-ai-enhances-nodezero-platform-to-empower-enterprises-to-prioritize-their-most-business-critical-cyber-risks/) - The Trail of Bits Blog - [ ] [We found cryptography bugs in the elliptic library using Wycheproof](https://blog.trailofbits.com/2025/11/18/we-found-cryptography-bugs-in-the-elliptic-library-using-wycheproof/) - Malwarebytes - [ ] [Chrome zero-day under active attack: visiting the wrong site could hijack your browser](https://www.malwarebytes.com/blog/news/2025/11/chrome-zero-day-under-active-attack-visiting-the-wrong-site-could-hijack-your-browser) - [ ] [Thieves order a tasty takeout of names and addresses from DoorDash](https://www.malwarebytes.com/blog/news/2025/11/thieves-order-a-tasty-takeout-of-names-and-addresses-from-doordash) - [ ] [Why it matters when your online order is drop-shipped](https://www.malwarebytes.com/blog/news/2025/11/why-it-matters-when-your-online-order-is-drop-shipped) - VMRay - [ ] [Malware Sandboxes for Enterprise: Why Your Security Stack Needs More Than Basic Detection](https://www.vmray.com/malware-sandboxes-for-enterprise/) - Reverse Engineering - [ ] [MetroY Pro VS Sermoon S1 Shiny Object](https://www.reddit.com/r/ReverseEngineering/comments/1p06y21/metroy_pro_vs_sermoon_s1_shiny_object/) - 奇客Solidot–传递最新科技情报 - [ ] [哈佛持有 4.42 亿美元的加密货币](https://www.solidot.org/story?sid=82835) - [ ] [Debian Libre Live Images 项目发布首个版本](https://www.solidot.org/story?sid=82834) - [ ] [Cloudflare 宕机影响整个互联网](https://www.solidot.org/story?sid=82833) - [ ] [浣熊显示驯化的早期迹象](https://www.solidot.org/story?sid=82832) - [ ] [很多时候放弃是最明智的选择](https://www.solidot.org/story?sid=82831) - [ ] [Sundar Pichai 称如果 AI 泡沫破裂没有公司能免受影响](https://www.solidot.org/story?sid=82830) - [ ] [微软在 Windows 11 中加入 AI 智能体](https://www.solidot.org/story?sid=82829) - [ ] [Take-Two Interactive CEO 认为游戏行业正转向 PC](https://www.solidot.org/story?sid=82828) - [ ] [为何一部分人对人脸过目不忘](https://www.solidot.org/story?sid=82827) - [ ] [全球互联网自由度连续 15 年下降](https://www.solidot.org/story?sid=82826) - [ ] [华盛顿邮报上万员工和合同工信息泄露](https://www.solidot.org/story?sid=82825) - 体验盒子 - [ ] [2025年最新9大真正免费AI大模型API汇总](https://www.uedbox.com/post/119756/) - Intigriti - [ ] [Intigriti wins ‘Security Innovation of the Year’ at the 2025 UK IT Industry Awards](https://www.intigriti.com/blog/awards/intigriti-wins-security-innovation-of-the-year-at-the-2025-uk-it-industry-awards) - HackerNews - [ ] [EVALUSION 钓鱼活动传播两种恶意软件](https://hackernews.cc/archives/61585) - [ ] [Rust 语言应用推动 Android 内存安全漏洞占比首次降至 20% 以下](https://hackernews.cc/archives/61581) - [ ] [CVE-2025-59367 漏洞致华硕 DSL 路由器遭远程入侵](https://hackernews.cc/archives/61579) - [ ] [微软成功缓解史上最大规模云 DDoS 攻击](https://hackernews.cc/archives/61576) - [ ] [肯尼亚政府网站遭黑客篡改](https://hackernews.cc/archives/61573) - [ ] [罗技正式确认数据泄露,甲骨文 EBS 漏洞余波再添受害者](https://hackernews.cc/archives/61570) - Checkmarx - [ ] [Pre-Commit or Pay Later: The New Cost of AI-Era AppSec](https://checkmarx.com/blog/pre-commit-or-pay-later-the-new-cost-of-ai-era-appsec/) - [ ] [Rumors of the Developer’s Demise Have Been Greatly Exaggerated: A perspective from Simon Bennetts, Software Engineering Expert at Checkmarx](https://checkmarx.com/blog/rumors-of-the-developers-demise-have-been-greatly-exaggerated-a-perspective-from-simon-bennetts-software-engineering-expert-at-checkmarx/) - rtl-sdr.com - [ ] [Using the Don’t Look Up Tool to Eavesdrop on Insecure Private Satellite Communications](https://www.rtl-sdr.com/using-the-dont-look-up-tool-to-eavesdrop-on-insecure-private-satellite-communications/) - [ ] [halow_scanner: An RTL-SDR Based 802.11aH HaLow Channel Scanner](https://www.rtl-sdr.com/halow_scanner-an-rtl-sdr-based-802-11ah-halow-channel-scanner/) - [ ] [Software Defined Toolkit: A DIY Radio Reconnaissance Device with RTL-SDR and EvilCrow RF Inside](https://www.rtl-sdr.com/software-defined-toolkit-a-diy-radio-reconnaissance-device-with-rtl-sdr-and-evilcrow-rf-inside/) - 奇安信 CERT - [ ] [【已复现】深信服运维安全管理系统远程命令执行漏洞(CVE-2025-12916)安全风险通告](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247504189&idx=1&sn=84ad839ae62f05db65ffdfdc77c86d83) - [ ] [【在野利用】Google Chrome V8 类型混淆漏洞(CVE-2025-13223)安全风险通告](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247504189&idx=2&sn=49ca4eeb550114f1eafc9b886bec1354) - 黑鸟 - [ ] [五角大楼斥资数百万美元专注人工智能黑客领域](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451183706&idx=1&sn=bfc2328e2757635797b09352cb50f2fa) - 微步在线研究响应中心 - [ ] [已在野 | 深信服运维安全管理系统 portal_login 远程命令执行漏洞](https://mp.weixin.qq.com/s?__biz=Mzg5MTc3ODY4Mw==&mid=2247507967&idx=1&sn=a9c41190456f92e998403e2424418e7c) - 腾讯玄武实验室 - [ ] [每日安全动态推送(25/11/18)](https://mp.weixin.qq.com/s?__biz=MzA5NDYyNDI0MA==&mid=2651960303&idx=1&sn=9646e987b9b9d3a97ae45865b4f95147) - 先进攻防 - [ ] [AI 安全保证:从模型能力到系统可信的全流程建设](https://mp.weixin.qq.com/s?__biz=MzI1MDA1MjcxMw==&mid=2649908759&idx=1&sn=6ac2c598d2ddffa9de9dd6cd0e572353) - 代码卫士 - [ ] [谷歌紧急修复已遭利用的Chrome V8 0day 漏洞](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247524445&idx=1&sn=9145b7009a002f9da12dbec7be2ae727) - [ ] [LG源代码和凭据据称被盗](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247524445&idx=2&sn=c68a08bb8eaa87fe5e1da0737e64f0b1) - 安全内参 - [ ] [美网军斥资千万美元聘用AI黑客,开发自动化网络战武器](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515216&idx=1&sn=0b96bcbbb19133741ec6d9edc5637481) - [ ] [Gartner:2025年SIEM(安全信息与事态管理)市场分析](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515216&idx=2&sn=2aaeabac8d34c1c530582d61adf0f820) - 安全分析与研究 - [ ] [银狐强混淆注入型最新样本分析](https://mp.weixin.qq.com/s?__biz=MzA4ODEyODA3MQ==&mid=2247494360&idx=1&sn=a11b931910f5ba1cbd4b16197e5bd1d4) - 看雪学苑 - [ ] [SDC2025 议题回顾 | LLM 与安全代码](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458604320&idx=1&sn=37ec0d386ca2a38f643de04c1c3cad1a) - [ ] [Clop勒索团伙再出手,罗技确认因Oracle漏洞导致数据泄露](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458604320&idx=2&sn=364d0c2862669459505599b2fa67b41f) - [ ] [重磅开课!系统0day安全——车联网安全入门(第8期)](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458604320&idx=3&sn=4931474594577332913a3d537678c029) - ChaMd5安全团队 - [ ] [第二届2025 VCTF 纳新赛 官方WriteUp](https://mp.weixin.qq.com/s?__biz=MzIzMTc1MjExOQ==&mid=2247513669&idx=1&sn=eb769fe288f9ad06da5cba82fff580e8) - DataCon大数据安全分析竞赛 - [ ] [巅峰对决,英才辈出 | DataCon2025大赛圆满收官,获奖名单重磅揭晓!](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489490&idx=1&sn=5cc335dfd35ee131d55f3197c89aa3c8) - 天御攻防实验室 - [ ] [氛围威胁狩猎](https://mp.weixin.qq.com/s?__biz=MzU0MzgyMzM2Nw==&mid=2247486601&idx=1&sn=239fc3368e2c4548720dd73993d58eaf) - 中国信息安全 - [ ] [论坛·原创 | 敏捷监管:加密数字货币动态监管新方案](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=1&sn=4d7109bd337268b35d8df4e39596eea4) - [ ] [专家解读 | 荆继武:电子印章应用的“密码之盾”](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=2&sn=43231248bb015597d1a2a001d36826be) - [ ] [观点 | 为以新安全格局保障新发展格局夯实法治基础](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=3&sn=728be63ded78ba8f752969eb94ca5713) - [ ] [国际 | 韩国生成式人工智能治理新规则](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664253481&idx=4&sn=6c0c304e2e60d3b53f8bb1f7953c6182) - 微步在线 - [ ] [漏洞库,免费的才是最贵的!](https://mp.weixin.qq.com/s?__biz=MzI5NjA0NjI5MQ==&mid=2650185145&idx=1&sn=860fcb695269c1a9d11716af04dff552) - 信息安全国家工程研究中心 - [ ] [使用单位“一托了之”!服务商“交付即走”!网站被篡改,责任在谁?一起案件敲响供应链安全警钟!](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247501605&idx=1&sn=3e4b168849c329bf5cb8dc48b75ea4b1) - [ ] [黑客称窃取近 1.8TB 数据:罗技承认遭攻击,被盗数据仅含“有限信息”、不涉核心敏感内容](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247501605&idx=2&sn=035e16bc79c227b11d7b230c59d6c787) - 极客公园 - [ ] [阿里为什么一定要做千问 APP?](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653091204&idx=1&sn=4dec16622c2acb9928051b736ab40e6e) - [ ] [救命!火爆硅谷的「空间智能」,还有人没上车吗?!](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653091204&idx=2&sn=eaf5ae291fbf1fa621d82c229f6fa23f) - [ ] [「30 秒造应用」——蚂蚁灵光点燃「所想即所得」的魔法时刻](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653091201&idx=1&sn=dd26387a27d2f3a564af2f986d24d6f2) - [ ] [阿里千问公测,挑战 ChaGPT;京东上线独立外卖 App;贝佐斯出任 AI 初创公司 CEO | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653091138&idx=1&sn=9e3a7ba4f57b76e5b77f3d663dfcff8d) - 威胁棱镜 - [ ] [披露 IOC 对攻击者行为的影响](https://mp.weixin.qq.com/s?__biz=MzkyMzE5ODExNQ==&mid=2247487896&idx=1&sn=1fec8536273999d570dbf4a0b09496ae) - 安全圈 - [ ] [【安全圈】荷兰警方查封防弹主机服务商 扣押 250 台物理服务器并迫使数千犯罪虚拟机下线](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=1&sn=2940f9a9e4c84962d1fb784a686041cd) - [ ] [【安全圈】EchoGram 漏洞暴露大模型防护体系重大缺陷](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=2&sn=d1a4fb92f3c9d076e6d36e4f58db2e97) - [ ] [【安全圈】Everest 勒索组织声称窃取 Under Armour 343GB 内部敏感数据](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=3&sn=154ada5ec328c0a45d696c9151740640) - [ ] [【安全圈】英国黑客因劫持奥巴马推特账户被判缴 540 万美元比特币](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072795&idx=4&sn=b2887d57c2823770ca81e44c7ef74b03) - 天黑说嘿话 - [ ] [web选手入门pwn(28)](https://mp.weixin.qq.com/s?__biz=MzI5NTQ5MTAzMA==&mid=2247485184&idx=1&sn=2e42969d60212d38cfbe6ecef3f15500) - 陌陌安全 - [ ] [陌陌安全应急响应中心漏洞处理流程及评分标准V3.0](https://mp.weixin.qq.com/s?__biz=MzI2OTYzOTQzNw==&mid=2247488975&idx=1&sn=b6810635fecf5a790d90e928fc238965) - 威胁猎人Threat Hunter - [ ] [2025年10月全球恶意手机号码趋势报告](https://mp.weixin.qq.com/s?__biz=MzI3NDY3NDUxNg==&mid=2247501987&idx=1&sn=12ed7b6f3300a88dc2b38ff2735d961f) - 安全牛 - [ ] [AI破局指南:如何精准识别“能落地、快见效”的应用项目](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651139370&idx=1&sn=2401958b945f49bd2ef28f5d2dd678b3) - [ ] [企业缩减预算却加薪留人,CISO跳槽率创六年新高;工信部提醒:新型僵尸网络Morte威胁升级| 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651139370&idx=2&sn=4a019f3df3f1458fd2c09ffcfae72ffc) - Tide安全团队 - [ ] [【扶摇(FUYIO)】一款JS漏洞检测与敏感信息挖掘工具](https://mp.weixin.qq.com/s?__biz=Mzg2NTA4OTI5NA==&mid=2247521847&idx=1&sn=328e276d80732b0cb05e73567d3b4a96) - 情报分析师 - [ ] [如何进行风险评估](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650563246&idx=1&sn=6e5e1ccf6e061edb8d3d6f2e60c0b4a2) - [ ] [欧盟设立情报单位的战略分析与对我影响评估](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650563246&idx=2&sn=6acf282a14b90e7c2a6bc4bd508b2270) - 专注安管平台 - [ ] [AI SOP市场划分和AI SOC类型划分](https://mp.weixin.qq.com/s?__biz=MzUyNzMxOTAwMw==&mid=2247485094&idx=1&sn=8a353a198556536e7e3018366f82c0ef) - 国家互联网应急中心CNCERT - [ ] [CNVD漏洞周报2025年第44期](https://mp.weixin.qq.com/s?__biz=MzIwNDk0MDgxMw==&mid=2247500839&idx=1&sn=a863ad43b5b3c51fd7ff75f2f69d2cd4) - 青衣十三楼飞花堂 - [ ] [深圳某中学2025级初一数学期中考试压轴题](https://mp.weixin.qq.com/s?__biz=MzUzMjQyMDE3Ng==&mid=2247488796&idx=1&sn=eb4213c7c86740e43b6a15b5ddeda36c) - OPPO安全中心 - [ ] [【IoT众测招募】新品众测再度来袭!提前测新品还有机会把它免费带回家!](https://mp.weixin.qq.com/s?__biz=MzUyNzc4Mzk3MQ==&mid=2247494549&idx=1&sn=36c0ee9ac1331b3eba76b4b729a3bf58) - 360数字安全 - [ ] [落地实战 | 360企业级智能体助力青岛恒星科技学院“冲刺”AI数智高校](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247583016&idx=1&sn=a6da89eb8cc70d95f68e575210a4b750) - [ ] [360入选《2025年中国数据安全企业全景图》 以智能体引领产业升级](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247583016&idx=2&sn=506ff6997cc3c8c9e22903be3046274a) - 复旦白泽战队 - [ ] [Jade发布《有害图像分类指引》和文生图模型评测Benchmark,九款模型安全榜单新鲜出炉!](https://mp.weixin.qq.com/s?__biz=MzU4NzUxOTI0OQ==&mid=2247496544&idx=1&sn=0a0ce5bfc33d79180b5cb090d2c49a4d) - 数世咨询 - [ ] [《全球数据泄露态势月度报告》(2025年10月)| 附下载地址](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247540885&idx=1&sn=c4f6f0bba0afc612e81f83f8b81ed920) - Arturo Di Corinto - [ ] [Di Corinto a Radio Rai 1](https://dicorinto.it/tipologia/interviste/di-corinto-a-radio-rai-1/) - 字节跳动技术团队 - [ ] [火山引擎 MongoDB 进化史:从扛住抖音流量洪峰到 AI 数据底座](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247517486&idx=1&sn=d23f31af222e0a45f7b303a400a4bb6e) - Over Security - Cybersecurity news aggregator - [ ] [Airline data broker to stop selling individuals’ travel records to government agencies](https://therecord.media/airline-data-broker-stop-selling-to-government) - [ ] [Thunderbird adds native support for Microsoft Exchange accounts](https://www.bleepingcomputer.com/news/software/thunderbird-adds-native-support-for-microsoft-exchange-accounts/) - [ ] [New ShadowRay attacks convert Ray clusters into crypto miners](https://www.bleepingcomputer.com/news/security/new-shadowray-attacks-convert-ray-clusters-into-crypto-miners/) - [ ] [LG battery subsidiary says ransomware attack targeted overseas facility](https://therecord.media/lg-energy-solution-ransomware-incident-battery-maker) - [ ] [CBO director testifies that hackers have been expelled from email systems](https://therecord.media/congressional-budget-office-director-testifies-hackers-expelled) - [ ] [Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools](https://www.bleepingcomputer.com/news/microsoft/windows-11-gets-new-cloud-rebuild-point-in-time-restore-tools/) - [ ] [Fortinet warns of new FortiWeb zero-day exploited in attacks](https://www.bleepingcomputer.com/news/security/fortinet-warns-of-new-fortiweb-zero-day-exploited-in-attacks/) - [ ] [Pro-Russian group claims hits on Danish party websites as voters head to polls](https://therecord.media/denmark-election-political-government-websites-ddos-incidents) - [ ] [Microsoft to integrate Sysmon directly into Windows 11, Server 2025](https://www.bleepingcomputer.com/news/microsoft/microsoft-to-integrate-sysmon-directly-into-windows-11-server-2025/) - [ ] [Guerra ibrida, una proposta operativa di contrasto: ecco qual è il duplice intento](https://www.cybersecurity360.it/cybersecurity-nazionale/guerra-ibrida-una-proposta-operativa-di-contrasto-ecco-qual-e-il-duplice-intento/) - [ ] [Microsoft is bringing native Sysmon support to Windows 11, Server 2025](https://www.bleepingcomputer.com/news/microsoft/microsoft-is-bringing-native-sysmon-support-to-windows-11-server-2025/) - [ ] [National cyber strategy will include focus on ‘shaping adversary behavior,’ White House official says](https://therecord.media/national-cyber-strategy-cairncross-shaping-enemy-behavior) - [ ] [Microsoft Teams to let users report messages wrongly flagged as threats](https://www.bleepingcomputer.com/news/microsoft/microsoft-teams-to-let-users-report-messages-wrongly-flagged-as-threats/) - [ ] [French agency Pajemploi reports data breach affecting 1.2M people](https://www.bleepingcomputer.com/news/security/french-agency-pajemploi-reports-data-breach-affecting-12m-people/) - [ ] [Sicurezza come elemento di business: gli scandali passati e la lezione per il Sistema-Italia](https://www.cybersecurity360.it/cultura-cyber/sicurezza-come-elemento-di-business-gli-scandali-passati-e-la-lezione-per-il-sistema-italia/) - [ ] [The Tycoon 2FA Phishing Platform and the Collapse of Legacy MFA](https://www.bleepingcomputer.com/news/security/the-tycoon-2fa-phishing-platform-and-the-collapse-of-legacy-mfa/) - [ ] [Cloudflare blames massive internet outage on ‘latent bug’](https://techcrunch.com/2025/11/18/cloudflare-blames-massive-internet-outage-on-latent-bug/) - [ ] [Cyber security, evolve lo scenario di rischio: ecco le figure professionali più richieste](https://www.cybersecurity360.it/news/cyber-security-evolve-lo-scenario-di-rischio-ecco-le-figure-professionali-piu-richieste/) - [ ] [Russian suspect detained in Thailand is allegedly tied to Void Blizzard group](https://therecord.media/russian-arrested-thailand-allegedly-void-blizzard-apt-member) - [ ] [MI5 warns of Chinese spies using LinkedIn to gain intel on lawmakers](https://therecord.media/mi5-warns-chinese-spies-using-linkedin-lawmakers) - [ ] [Sicurezza e accessibilità: i vantaggi dell’adottare i nuovi modelli di gestione delle identità digitali](https://www.cybersecurity360.it/soluzioni-aziendali/sicurezza-e-accessibilita-i-vantaggi-delladottare-i-nuovi-modelli-di-gestione-delle-identita-digitali/) - [ ] [Tycoon 2FA and the Collapse of Legacy MFA](https://www.bleepingcomputer.com/news/security/tycoon-2fa-and-the-collapse-of-legacy-mfa/) - [ ] [Full renewal of state and local cyber grants program passes in House](https://therecord.media/state-local-cyber-grants-program-house-passage) - [ ] [Cloudflare hit by outage affecting global network services](https://www.bleepingcomputer.com/news/technology/cloudflare-hit-by-outage-affecting-global-network-services/) - [ ] [The Week in Vulnerabilities: 3 Microsoft Flaws Among High-Priority Fixes](https://cyble.com/blog/patch-tuesday-971-cves-critical-microsoft-flaws/) - [ ] [New in Snort3: Enhanced rule grouping for greater flexibility and control](https://blog.talosintelligence.com/new-in-snort3-enhanced-rule-grouping-for-greater-flexibility-and-control/) - [ ] [Google fixes new Chrome zero-day flaw exploited in attacks](https://www.bleepingcomputer.com/news/security/google-fixes-new-chrome-zero-day-flaw-exploited-in-attacks/) - [ ] [BIA e livelli di servizio: come tradurre l’analisi d’impatto in soglie operative](https://www.cybersecurity360.it/legal/bia-e-livelli-di-servizio-come-tradurre-lanalisi-dimpatto-in-soglie-operative/) - [ ] [Rust riduce sensibilmente le vulnerabilità di memory safety in Android](https://www.securityinfo.it/2025/11/18/rust-riduce-sensibilmente-le-vulnerabilita-di-memory-safety-in-android/) - [ ] [Impressionate! Un attacco DDoS da quasi 16 Tbps contro Azure](https://www.securityinfo.it/2025/11/18/impressionate-un-attacco-ddos-da-quasi-16-tbps-contro-azure/) - [ ] [Healthcare MSSP Cuts Phishing Triage by 76% and Launches Proactive Defense with ANY.RUN](https://any.run/cybersecurity-blog/healthcare-mssp-success-story/) - [ ] [Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors](https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-10-kb5072653-oob-update-fixes-esu-install-errors/) - [ ] [Malicious NPM packages abuse Adspect redirects to evade security](https://www.bleepingcomputer.com/news/security/malicious-npm-packages-abuse-adspect-redirects-to-evade-security/) - TrustedSec - [ ] [Managing Privileged Roles in Microsoft Entra ID: A Pragmatic Approach](https://trustedsec.com/blog/managing-privileged-roles-in-microsoft-entra-id-a-pragmatic-approach) - cavallette - [ ] [Server updates / Aggiornamenti server](https://cavallette.noblogs.org/2025/11/10012) - ICT Security Magazine - [ ] [Cloud forensics: acquisizione delle prove in ambienti multi-tenant e chain of custody nei cloud ibridi](https://www.ictsecuritymagazine.com/articoli/cloud-forensics/) - [ ] [Ransomware 2025: l’era dei negoziatori e della data exfiltration](https://www.ictsecuritymagazine.com/notizie/ransomware-2025/) - 迪哥讲事 - [ ] [价值$40,000的RCE!](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247498600&idx=1&sn=e6caa2b23599841446d87ccd16d101c9) - 嘶吼专业版 - [ ] [Kraken勒索软件攻击细节曝光 可根据设备性能动态调整加密模式](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247585479&idx=1&sn=168b34843e3312d38d44dc582689bb78) - [ ] [捷豹路虎遭网络攻击 损失超2.2亿美元](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247585479&idx=2&sn=04b5953e221dd0237364c53adc63868e) - Schneier on Security - [ ] [AI and Voter Engagement](https://www.schneier.com/blog/archives/2025/11/ai-and-voter-engagement.html) - Instapaper: Unread - [ ] [New Attacks Against Secure Enclaves](https://www.schneier.com/blog/archives/2025/11/new-attacks-against-secure-enclaves.html) - [ ] [Android Photo Frames App Downloads Malware, Giving Hackers Control of The Device Without User Interaction](https://cybersecuritynews.com/android-photo-frames-app-downloads-malware/) - [ ] [iOS Telegram Forensics. Part II Artifacts, Secret Chats, Cache, Deleted Messages](https://belkasoft.com/ios-telegram-forensics-artifacts) - [ ] [Deleted File Forensic Recovery In FAT File Systems](https://digitalinvestigator.blogspot.com/2025/11/deleted-file-forensic-recovery-in-fat.html) - [ ] [Kamel Ghali on what's 'theoretically possible' in car hacking](https://therecord.media/car-hacking-interview-kamel-ghali-click-here-podcast) - The Hacker News - [ ] [Sneaky 2FA Phishing Kit Adds BitB Pop-ups Designed to Mimic the Browser Address Bar](https://thehackernews.com/2025/11/sneaky-2fa-phishing-kit-adds-bitb-pop.html) - [ ] [Meta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This Year](https://thehackernews.com/2025/11/meta-expands-whatsapp-security-research.html) - [ ] [Learn How Leading Companies Secure Cloud Workloads and Infrastructure at Scale](https://thehackernews.com/2025/11/learn-how-leading-companies-secure.html) - [ ] [Researchers Detail Tuoni C2's Role in an Attempted 2025 Real-Estate Cyber Intrusion](https://thehackernews.com/2025/11/researchers-detail-tuoni-c2s-role-in.html) - [ ] [Iranian Hackers Use DEEPROOT and TWOSTROKE Malware in Aerospace and Defense Attacks](https://thehackernews.com/2025/11/iranian-hackers-use-deeproot-and.html) - [ ] [Beyond IAM Silos: Why the Identity Security Fabric is Essential for Securing AI and Non-Human Identities](https://thehackernews.com/2025/11/beyond-iam-silos-why-identity-security.html) - [ ] [Seven npm Packages Use Adspect Cloaking to Trick Victims Into Crypto Scam Pages](https://thehackernews.com/2025/11/seven-npm-packages-use-adspect-cloaking.html) - [ ] [Microsoft Mitigates Record 15.72 Tbps DDoS Attack Driven by AISURU Botnet](https://thehackernews.com/2025/11/microsoft-mitigates-record-572-tbps.html) - [ ] [Google Issues Security Fix for Actively Exploited Chrome V8 Zero-Day Vulnerability](https://thehackernews.com/2025/11/google-issues-security-fix-for-actively.html) - Security Affairs - [ ] [Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack](https://securityaffairs.com/184795/data-breach/pennsylvania-office-of-the-attorney-general-oag-confirms-data-breach-after-august-attack.html) - [ ] [DoorDash data breach exposes personal info after social engineering attack](https://securityaffairs.com/184780/data-breach/doordash-data-breach-exposes-personal-info-after-social-engineering-attack.html) - [ ] [Google fixed the seventh Chrome zero-day in 2025](https://securityaffairs.com/184764/hacking/google-fixed-the-seventh-chrome-zero-day-in-2025.html) - [ ] [Dutch police takes down bulletproof hosting hub linked to 80+ cybercrime cases](https://securityaffairs.com/184757/cyber-crime/dutch-police-takes-down-bulletproof-hosting-hub-linked-to-80-cybercrime-cases.html) - SANS Internet Storm Center, InfoCON: green - [ ] [KongTuke activity, (Tue, Nov 18th)](https://isc.sans.edu/diary/rss/32498) - [ ] [ISC Stormcast For Tuesday, November 18th, 2025 https://isc.sans.edu/podcastdetail/9704, (Tue, Nov 18th)](https://isc.sans.edu/diary/rss/32496) - Information Security - [ ] [QRadar not receiving logs from FortiMail](https://www.reddit.com/r/Information_Security/comments/1p0eryh/qradar_not_receiving_logs_from_fortimail/) - [ ] [Black Friday Giveaway - Win a FREE CRTP Seat!](https://www.reddit.com/r/Information_Security/comments/1p077u4/black_friday_giveaway_win_a_free_crtp_seat/) - Blackhat Library: Hacking techniques and research - [ ] [How can I decrypt SQL Lite files to plain text?](https://www.reddit.com/r/blackhat/comments/1p0puok/how_can_i_decrypt_sql_lite_files_to_plain_text/) - Technical Information Security Content & Discussion - [ ] [ShadowRay 2.0: Active Global Campaign Hijacks Ray AI Infrastructure Into Self-Propagating Botnet | Oligo Security](https://www.reddit.com/r/netsec/comments/1p0evgu/shadowray_20_active_global_campaign_hijacks_ray/) - [ ] [Gotchas in Email Parsing - Lessons from Jakarta Mail](https://www.reddit.com/r/netsec/comments/1p084xf/gotchas_in_email_parsing_lessons_from_jakarta_mail/) - [ ] [LSASS Dump – Windows Error Reporting](https://www.reddit.com/r/netsec/comments/1p0hsc8/lsass_dump_windows_error_reporting/) - Social Engineering - [ ] [Whats your "item" for getting into places?](https://www.reddit.com/r/SocialEngineering/comments/1p0dxre/whats_your_item_for_getting_into_places/) - Deeplinks - [ ] [Lawsuit Challenges San Jose’s Warrantless ALPR Mass Surveillance](https://www.eff.org/press/releases/lawsuit-challenges-san-joses-warrantless-alpr-mass-surveillance) - [ ] [Speaking Freely: Benjamin Ismail](https://www.eff.org/deeplinks/2025/10/speaking-freely-benjamin-ismail) - Trend Micro Research, News and Perspectives - [ ] [Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses](https://www.trendmicro.com/en_us/research/25/k/s3-ransomware.html) - Security Weekly Podcast Network (Audio) - [ ] [Cloudflare, Gh0stRAT, npm, North Koreans, Arch, Steam, Documentaries, Aaran Leyland.. - SWN #530](http://sites.libsyn.com/18678/cloudflare-gh0strat-npm-north-koreans-arch-steam-documentaries-aaran-leyland-swn-530) - [ ] [Secure Coding as Critical Thinking Instead of Vulnspotting - Matias Madou - ASW #357](http://sites.libsyn.com/18678/secure-coding-as-critical-thinking-instead-of-vulnspotting-matias-madou-asw-357) - The Register - Security - [ ] [Self-replicating botnet attacks Ray clusters](https://go.theregister.com/feed/www.theregister.com/2025/11/18/selfreplicating_botnet_ray_clusters/) - [ ] [FCC looks to torch Biden-era cyber rules sparked by Salt Typhoon mess](https://go.theregister.com/feed/www.theregister.com/2025/11/18/fcc_salt_typhoon_rules/) - [ ] [Take fight to the enemy, US cyber boss says](https://go.theregister.com/feed/www.theregister.com/2025/11/18/the_us_wants_to_go/) - [ ] [Google Chrome bug exploited as an 0-day - patch now or risk full system compromise](https://go.theregister.com/feed/www.theregister.com/2025/11/18/google_chrome_seventh_0_day/) - [ ] [Zoomers are officially worse at passwords than 80-year-olds](https://go.theregister.com/feed/www.theregister.com/2025/11/18/zoomer_passwords/) - TorrentFreak - [ ] [LaLiga: ISPs Must Join Anti-Piracy War to Secure Broadcasting Rights](https://torrentfreak.com/laliga-says-isps-joining-its-piracy-war-is-mandatory-for-broadcasting-rights-251118/) - Securityinfo.it - [ ] [Rust riduce sensibilmente le vulnerabilità di memory safety in Android](https://www.securityinfo.it/2025/11/18/rust-riduce-sensibilmente-le-vulnerabilita-di-memory-safety-in-android/?utm_source=rss&utm_medium=rss&utm_campaign=rust-riduce-sensibilmente-le-vulnerabilita-di-memory-safety-in-android) - [ ] [Impressionate! Un attacco DDoS da quasi 16 Tbps contro Azure](https://www.securityinfo.it/2025/11/18/impressionate-un-attacco-ddos-da-quasi-16-tbps-contro-azure/?utm_source=rss&utm_medium=rss&utm_campaign=impressionate-un-attacco-ddos-da-quasi-16-tbps-contro-azure) - 0x727开源安全团队 - [ ] [认识安全本身(手稿一)](https://mp.weixin.qq.com/s?__biz=MzkwNTI3MjIyOQ==&mid=2247484235&idx=1&sn=5182ac1bea0533f521fbaf0d28b7826e) - Your Open Hacker Community - [ ] [Want to start ethical hacking](https://www.reddit.com/r/HowToHack/comments/1p0ltxs/want_to_start_ethical_hacking/) - [ ] [How to Approach Learning Penetration Testing for Beginners?](https://www.reddit.com/r/HowToHack/comments/1p0kqgl/how_to_approach_learning_penetration_testing_for/)
每日安全资讯(2025-11-19)