[每日信息流] 2025-02-14

[chainreactorbot]

每日安全资讯（2025-02-14）

• SecWiki News
  • SecWiki News 2025-02-13 Review
• CXSECURITY Database RSS Feed - CXSecurity.com
  • ABB Cylon FLXeon 9.3.4 Default Credentials
  • Wattsense Bridge 6.x Remote Root / Information Disclosure
  • SolarView Compact 6.00 - Command Injection
• Security Boulevard
  • A New Chapter in Cybersecurity Excellence: Nuspire Becomes PDI Security & Network Solutions
  • From Reactive to Predictive: Building Cyber Resilience for 2025
  • DEF CON 32 – MFT Malicious Fungible Tokens
  • Energy Regulations Are Rising: Stay Ahead with Modern DCIM
  • Generative AI-centric technologies: Get Gartner® report
  • Daniel Stori’s Turnoff.US: ‘git submodules adoption flows’
  • Grip Security Adds SaaS Security Posture Management Offering
  • What developers think about application security might surprise you
  • Sophos Sheds 6% of Employees After Closing Secureworks Deal
  • Technical Analysis of Xloader Versions 6 and 7 | Part 2
• 安全客-有思想的安全新媒体
  • CISA警告称，黑客正在利用Trimble Cityworks
  • 美国指控五人与分散蜘蛛网络犯罪团伙有关
  • CVE-2025-24016（CVSS9.9）：Wazuh服务器中发现严重RCE漏洞
  • 微软提高了Copilot AI漏洞赏金计划的奖励
  • SaaS应用程序中人工智能Copilots的安全性可识别有风险的访问权限
  • Windows存储0-Day漏洞让攻击者远程删除目标文件
  • 黑客利用提示注射来篡改Gemini AI的长期记忆
  • 可 “蠕虫式传播” 的 Windows LDAP 漏洞使攻击者能够远程执行任意代码
  • 独家揭秘 | 仿冒网站超3000！DeepSeek爆火背后的暗流涌动
  • 遏制下一波网络钓鱼诈骗浪潮
• Trustwave Blog
  • The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks
• Tenable Blog
  • Frequently Asked Questions About DeepSeek Large Language Model (LLM)
• obaby@mars
  • 超级自恋狂 — 定制终端 ssh 欢迎语
• Recent Commits to cve:main
  • Update Thu Feb 13 20:14:58 UTC 2025
  • Update Thu Feb 13 12:28:06 UTC 2025
  • Update Thu Feb 13 04:27:07 UTC 2025
• 奇安信攻防社区
  • 突破后缀限制实现任意文件上传
  • 从CTF和勒索样本中学习AES加密算法逆向识别
• 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
  • 「深蓝洞察」2024年度最狂躁不安的漏洞
  • 智能防御新篇章：大模型携手零信任，让钓鱼邮件无所遁形
  • 漏洞检测革命！安几天鉴携DeepSeek黑科技，让漏洞挖掘效率飙升300%
  • Ivanti Connect Secure栈溢出漏洞（CVE-2025-0282）分析与复现
  • 盛邦安全入选工信部2024年网络安全技术应用典型案例名单
  • 黑客欺骗Microsoft ADFS登录页面以窃取凭据
  • 2024年活跃挖矿木马盘点
  • 攻击DeepSeek的相关僵尸网络样本分析
  • 国家发展改革委等部门印发《关于完善数据流通安全治理 更好促进数据要素市场化价值化的实施方案》的通知
• Doonsec's feed
  • 漏洞利用-可绕过已修复的NVIDIA容器工具包漏洞
  • 随机数、XKCD 漫画与 ZEN 系列最新 CPU 漏洞 CVE-2024-56161
  • 国外经典红蓝攻防演练方案+网络安全意识培训思路（一）
  • 黑客“杀手锏”-硬件安全攻防（抽奖送书）
  • 当我们谈论甲方视角的时候，其实心里是没有装着“业务”的
  • UCCTF赛事即将开始
  • UCCTF赛事即将开始，大家踊跃参加
  • 开源情报实战案例
  • 探索堆利用机制：深入理解 House of Force 攻击技术
  • DeepSeek研究框架+DeepSeek使用教程/手册
  • Android 原生组件模糊测试简介：工具创建策略
  • 针对性威胁研究 - 韩国和朝鲜（韩国 3 年威胁研究的细目）
  • SVG 文件构成新型网络钓鱼威胁
  • 赶快自查，Ollama重大安全隐患
  • AI 抢安全工程师饭碗？这款工具让 POC 自动生成，支持DeepSeek等多模型！
  • 一个快速发现隐秘资产的野路子
  • DevSecOps：超越工具集成
  • 下辈子再也不干网安了-过年相亲局
  • 【招聘】京东招人啦～
  • 【招聘】阿里云招人啦～
  • src上分神器: 一款强大的信息收集插件
  • 奇安信天眼中标某大型银行千万级信创项目
  • 百亿票房！从《哪吒 2》到终端软件管理，客户如何“守护结界”？
  • 利用js挖掘漏洞
  • SRC专项知识库
  • UAC完美绕过：Fodhelper.exe提权技术深度剖析
  • 首个GPU容器逃逸: NVIDIA Container Toolkit CVE-2024-0132 漏洞分析
  • 信息安全方面的书籍
  • Java实战篇-XXE漏洞利用从潜到深
  • JS前端加密自动化绕过工具 - SpiderX
  • G.O.S.S.I.P 阅读推荐 2025-02-13 征帆何处客，相见还相隔
  • NSFOCUS旧友记--bluerust精神失常之Tank大战Jerry
  • 从技术债务到架构升级，滴滴国际化外卖的变革
  • 免费神器！英国情报部门在线工具-Cyberchef
  • 提供AI提供DeepSeek的渗透攻防武器库
  • 预测技术在美团弹性伸缩场景的探索与应用
  • 中国信息通信研究院院长余晓晖一行赴启明星辰调研参观
  • 巧妙利用截屏窃取2FA认证码
  • ⌈京麒沙龙第15期⌋软件供应链安全专场
  • 美英“缺席”人工智能峰会背后：全球治理抵触与欧洲监管分歧
  • 2个躲过检测的恶意AI模型(附检测工具)
  • 严惩网络敲诈勒索！最高法发布6件典型案例
  • Secure by Design：Google 安全架构如何重塑 Web 安全
  • 综述导读 | 推荐系统的图基础模型
  • 【安卓逆向】某音stream通信方式截流问题
  • [LLM+AIGC] 03.零基础DeepSeek云端（硅基流动、腾讯云、国家超算平台）搭建及API接入
  • 没开课先血赚5倍学费？！小火炬SRC开课倒计时，这波操作太骚了！
  • 特朗普政府拉长0day漏洞披露时间
  • 黑客利用提示词注入严重篡改Gemini AI长期记忆
  • Windows存储系统现0day漏洞，攻击者可远程删除目标文件
  • “人工智能技术及其应用进展”专题边会在巴黎举行
  • 【安全圈】Ollama 安全警告：你的 IP 可能已泄露，显卡正被“白嫖”！
  • 【安全圈】CISA警告称，黑客正在利用Trimble Cityworks
  • 【安全圈】美国指控五人与分散蜘蛛网络犯罪团伙有关
  • 【安全圈】微软提高了Copilot AI漏洞赏金计划的奖励
  • 美国内战2：美国媒体军团的指挥体系大曝光
  • 【干货原创】实网攻防演习常态化，会带来什么变化01
  • 【干货原创】K12教育，鲜为人知的模式秘密
  • 原创文章目录
  • UK携手OSCP大神清风师傅共同助力HW，让我们卷起来吧！
  • 快来参加UCCTF全国高校精英赛！
  • 从《哪吒2》解码数字安全新范式：安全大模型重构防御体系
  • 薮猫科技：如何突破数据安全赛道成为行业先锋？
• Private Feed for M09Ic
  • mgeeky starred domienschepers/wifi-framework
  • mgeeky starred ainfosec/FISSURE
  • Freakboy starred Java-Chains/web-chains
  • zema1 starred Ne0nd0g/go-clr
  • Freakboy starred readest/readest
  • mozhu1024 created a repository virzz/structx
  • zema1 starred elichai/stdio-override
  • pmiaowu starred fingerprintjs/fingerprintjs
  • Ascotbe starred g1879/DrissionPage
  • zema1 starred herosi/CTO
  • 0xbug starred codecrafters-io/build-your-own-x
  • gh0stkey starred wh1te4ever/WebKit-Bug-256172
  • gh0stkey starred setu1421/SecretBench
  • gh0stkey starred Kiln-AI/Kiln
  • kyxiaxiang starred jm33-m0/windows-sandbox-init
  • pmiaowu starred Kiln-AI/Kiln
  • su18 starred oracle/visualvm
  • m0bilesecurity started following 2187Nick
• paper - Last paper
  • MARAGE：用于检索增强生成数据提取的可迁移多模型对抗攻击
• Sandfly Security Blog RSS Feed
  • Obsolete Linux Password Hash Threats
• Twitter @bytehx
  • RT Max Yaremchuk: Here’s my new blog post: “Redacted bugs #3: Hunting for bugs worth $7,750 in an adult content platform.” Happy reading! https://s...
• blog.avast.com EN
  • Fake e-Shop scams — How cybercriminals are cashing it in
  • How scammers are exploiting your favorite platforms
• Trail of Bits Blog
  • We’re partnering to strengthen TON’s DeFi ecosystem
• Intigriti
  • 5 Ways to hack WordPress targets
• Malwarebytes
  • How AI was used in an advanced phishing campaign targeting Gmail users
• PortSwigger Blog
  • The future of security testing: harness AI-Powered Extensibility in Burp 🚀
• Bug Bounty in InfoSec Write-ups on Medium
  • How does an extension help me find a PII data bug?
  • How to Automate Hunting for Open Redirect
  • Broken Brute-Force Protection: How to Bypass Rate Limiting in a Single Request  —  Authentication…
• daniel.haxx.se
  • curl 8.12.1
• FreeBuf网络安全行业门户
  • 前端加密靶场-记录（Js-Forword使用）
  • 攻击DeepSeek的僵尸网络HailBot的三个变种分析
  • 内网渗透之内网信息收集总结
  • FreeBuf早报 | Meta提醒情人节小心“浪漫骗局”；黑客利用提示词注入篡改Gemini AI长期记忆
  • 红笔Linux提权总结（上）
  • 企业级 Linux 挖矿实战揭秘，附应急专杀编写攻略
  • 揭秘macOS Apple Silicon内核防护机制：KASLR破解技术分析
• 体验盒子
  • 全球AI大模型2024全景图：核心技术、应用场景与中美领跑者深度解析
• Shostack & Friends Blog
  • Threat Modeling the Genomic Data Sequencing Workflow (Threat Model Thursday)
• Security Blog | Praetorian
  • Azure RBAC Privilege Escalations: Azure VM
• 绿盟科技技术博客
  • Palo Alto Networks PAN-OS身份验证绕过漏洞(CVE-2025-0108)
• 安全牛
  • 强化扩展的数字供应链安全防护的十三道防线
  • 字节跳动因代码侵权被判赔8266.8万元；私募股权巨头竞相“抢购”，趋势科技或将私有化 | 牛览
• 黑海洋 - IT技术知识库
  • 在线随机地址生成器：AddressGenerator
  • 免费在线PDF骑缝章盖章工具：章快图
• 安全分析与研究
  • 针对一款开源跨平台Linux远控样本的分析
  • BlackHunt2.0勒索病毒攻击
  • BlackBit勒索病毒攻击
• 奇客Solidot–传递最新科技情报
  • Google 计划用机器学习估计用户的 年龄
  • 百度宣布文心一言 4 月 1 日起免费
  • 丰田等多家日企内部禁用 DeepSeek
  • 科学家探测到迄今最高能的中微子
  • 大脑中的微塑料是否会伤害你？
  • NOAA 公开泰坦号内爆音频
• 绿盟科技CERT
  • 【漏洞通告】Palo Alto Networks PAN-OS身份验证绕过漏洞(CVE-2025-0108)
• 奇安信 CERT
  • 【已复现】Palo Alto Networks PAN-OS 身份验证绕过漏洞(CVE-2025-0108)安全风险通告
• Black Hills Information Security
  • Gone Phishing: Installing GoPhish and Creating a Campaign
• 威努特安全网络
  • 从AI的安全风险与自我觉醒，探索未来治理之路
• 农夫安全团队
  • 13期变革预告
• 绿盟科技研究通讯
  • 当风云卫拥抱DeepSeek发生了哪些（一）：DeepSeek-R1安全告警分析实测获三高
• 安全内参
  • 改进还是颠覆？英伟达展示网络安全AI平台最新方案
  • 红队必看：生成式AI安全的八大实战教训
• 青衣十三楼飞花堂
  • NSFOCUS旧友记--bluerust精神失常之Tank大战Jerry
• 看雪学苑
  • 被劝退的第N天？速通秘籍：VMProtect虚拟机逆向入门
  • 一次研究如何获得wifi密码的过程
  • zkLend 遭攻击被盗850万美元，平台喊话：归还将提供10%的被盗资金作为白帽赏金
• 安全圈
  • 【安全圈】Ollama 安全警告：你的 IP 可能已泄露，显卡正被“白嫖”！
  • 【安全圈】CISA警告称，黑客正在利用Trimble Cityworks
  • 【安全圈】美国指控五人与分散蜘蛛网络犯罪团伙有关
  • 【安全圈】微软提高了Copilot AI漏洞赏金计划的奖励
• dotNet安全矩阵
  • 扫描 .NET 中的敏感信息，通过 Sharp4FindKeyPlus 获取 machineKey 和数据库密码
  • .NET 安全基础入门学习知识库
  • 无需 Visual Studio，通过 Sharp4AutoCompile 编译 Web 环境
• 极客公园
  • 20+ 车企接入 DeepSeek，为啥没有「蔚小理华米特」？
  • DeepSeek 不够用吗？你的团队为什么还需要招人？！
  • 他用 AI 做了一个维基百科「抖音」版，学知识比刷短视频还上瘾！
  • 雷军直播中称小米 YU7 续航不错，回应直播间被封；OpenAI 承诺其 AI 模型不审查；多邻国宣告猫头鹰「死亡」｜极客早知道
• 数世咨询
  • 趋势科技收购战打响，私募股权巨头竞相角逐
• 慢雾科技
  • 慢雾：AAVE V2 安全审计手册
• 复旦白泽战队
  • 成果分享 | 频域视角下的时间序列分类模型后门攻击研究
• 情报分析师
  • ​如何用开源情报“解剖”美国国际开发署？
  • 2024年美开署在巴基斯坦的资助项目数据明细（完整版附下载）
• 猎户攻防实验室
  • 一次某APP的修复之旅
• 山石网科安全技术研究院
  • 微软2025年2月补丁日重点漏洞安全预警
• 代码卫士
  • Ivanti 修复 Connect Secure & Policy Secure 中的三个严重漏洞
  • 2025 Pwn2Own 汽车大赛落幕 Master of Pwn诞生
• 嘶吼专业版
  • 黑客欺骗Microsoft ADFS登录页面以窃取凭据
  • 国家发展改革委等部门印发《关于完善数据流通安全治理 更好促进数据要素市场化价值化的实施方案》的通知
• 深信服千里目安全技术中心
  • 【漏洞通告】Palo Alto Networks PAN-OS 身份验证绕过漏洞(CVE-2025-0108)
• 中国信息安全
  • 专题·人工智能安全治理 | 凝聚安全风险治理共识 促进人工智能创新发展
  • 刘烈宏：担当作为 改革攻坚 扎实推动数据工作取得新突破新进展
  • 专家解读 | 打通数据流通脉络 促进数据价值释放
  • 前沿 | 人工智能能否代替人类思考？
  • 法治 | 依法惩治利用网络敲诈勒索犯罪
  • 评论 | 图像采集设“禁区”让个人隐私更安全
  • 关注 | 多平台发布“清朗·2025年春节网络环境整治”专项行动治理成效和典型案例
• 美团技术团队
  • 预测技术在美团弹性伸缩场景的探索与应用
• 360数字安全
  • 从《哪吒2》解码数字安全新范式：安全大模型重构防御体系
• 黑伞安全
  • Ollama 远程代码执行漏洞 CVE-2024-37032
• 阿里安全响应中心
  • 报名开启｜2025阿里白帽大会议程发布
• 安全研究GoSSIP
  • G.O.S.S.I.P 阅读推荐 2025-02-13 征帆何处客，相见还相隔
• 威胁猎人Threat Hunter
  • 海外电商平台退款欺诈研究报告
• 字节跳动技术团队
  • Trae「超级体验官」启动！来掘金码字赢大奖，技术影响力翻倍！
• 京东安全应急响应中心
  • ⌈京麒沙龙第15期⌋软件供应链安全专场
• Qualys Security Blog
  • Qualys Adds Threat Intelligence for Typosquatting and Defamatory Domains to External Attack Surface Management
• Microsoft Security Blog
  • Securing DeepSeek and other AI systems with Microsoft Security
• DARKNAVY
  • 「深蓝洞察」2024年度最悲剧的后门
• 白泽安全实验室
  • GreenSpot APT针对163.com用户发起钓鱼攻击
• 迪哥讲事
  • 一个快速发现隐秘资产的野路子
• Hacking Exposed Computer Forensics Blog
  • Daily Blog #747: What I look for when reviewing external ips
• Arturo Di Corinto
  • Presentazione del libro “Connessi a morte. Guerra, media e democrazia nella società della cybersecurity”
• Krypt3ia
  • Krypt3ia Daily Cyber Threat Intelligence (CTI) Digest
• Have I Been Pwned latest breaches
  • Doxbin (TOoDA) - 136,461 breached accounts
• Over Security - Cybersecurity news aggregator
  • whoAMI attacks give hackers code execution on Amazon EC2 instances
  • Pseudonimizzazione dei dati personali: consigli per un fine tuning
  • Lexipol Leak: diffuse importanti quantità di dati sulle policy della polizia
  • Intelligence agencies must explain what they do, says UK’s former cyber spy chief
  • DOGE hasn’t accessed legally protected tax data, administration says in privacy suit response
  • Nearly a Year Later, Mozilla is Still Promoting OneRep
  • Dutch police say they took down 127 servers used by sanctioned hosting service
  • Changing the narrative on pig butchering scams
  • Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster
  • China’s Salt Typhoon hackers targeting Cisco devices used by telcos, universities
  • Hacker leaks account data of 12 million Zacks Investment users
  • Valve removes Steam game that contained malware
  • Cyber security aziendale: servono soluzioni di sicurezza adattive contro minacce emergenti
  • An Italian journalist speaks about being targeted with Paragon spyware
  • Out with the Old, In with the Bold: Gen Threat Labs
  • Spyware maker caught distributing malicious Android apps for years
  • Il phishing su Facebook prende di mira le aziende, credenziali a rischio: come difendersi
  • The rise of Savastan0: a look into a growing carding marketplace
  • Munich Cyber Security and Security Conferences 2025 [Live Updates]
  • Chinese espionage tools deployed in RA World ransomware attack
  • Come Zuckerberg ha seguito le orme di X
  • Threat Intelligence Reports: Get Fresh Research on the Latest Cyber Attacks and APTs
  • AI, innovazione responsabile a prova di privacy: le raccomandazioni della CNIL
  • CISA Updates Known Exploited Vulnerabilities Catalog with Four Critical Issues
  • Microsoft rivela BadPilot, una campagna pluriennale di Seashell Blizzard di impatto globale
  • Cyble Warns of Exposed Medical Imaging, Asset Management Systems
  • AI Action Summit: le fratture nella governance globale dell’intelligenza artificiale
  • Doxbin (TOoDA) - 136,461 breached accounts
  • Sekoia.io achieves ISO 27001 compliance
  • Zacks (2024) - 11,994,223 breached accounts
• Securityinfo.it
  • Microsoft rivela BadPilot, una campagna pluriennale di Seashell Blizzard di impatto globale
• IT Service Management News
  • DPCM sull'applicazione della clausola di salvaguardia NIS2
  • Commissione europea e interpretazioni AI Act
• 安全419
  • 薮猫科技：如何突破数据安全赛道成为行业先锋？
• ICT Security Magazine
  • Direttiva NIS 2 e Sicurezza Informatica in Italia: implementazione, impatti, scadenze e sanzioni per le organizzazioni
  • Big Data e Fast Data: Velocità e Sicurezza in Tempo Reale
• SANS Internet Storm Center, InfoCON: green
  • ISC Stormcast For Thursday, February 13th, 2025 https://isc.sans.edu/podcastdetail/9322, (Thu, Feb 13th)
  • DShield SIEM Docker Updates, (Thu, Feb 13th)
• Schneier on Security
  • DOGE as a National Cyberattack
• 娜璋AI安全之家
  • [LLM+AIGC] 03.零基础DeepSeek云端（硅基流动、腾讯云、国家超算平台）搭建及API接入
• Full Disclosure
  • SEC Consult SA-20250211-0 :: Multiple vulnerabilities in Wattsense Bridge
• 安全村SecUN
  • 「2025·国际版」中国网安科技全景图发布｜中国网安，走向世界
• RedTeam
  • Secure by Design：Google 安全架构如何重塑 Web 安全
• The Hacker News
  • Hackers Use CAPTCHA Trick on Webflow CDN PDFs to Bypass Security Scanners
  • North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks
  • Fast Deployments, Secure Code: Watch this Learn to Sync Dev and Sec Teams
  • RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset
  • AI and Security - A New Puzzle to Figure Out
  • Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software
  • FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux
• Desync InfoSec
  • 内推岗位-外企SOC manager
• Information Security
  • How does AI really make you feel at work?
  • XWorm leverages LOLBAS techniques to abuse CMSTPLUA
• Technical Information Security Content & Discussion
  • Curious case of AD CS ESC15 vulnerable instance and its manual exploitation
• Computer Forensics
  • How to Build a DFIR-Focused GitHub Portfolio?
  • WhatsApp Desktop and WhatsApp Web 4n6
• Graham Cluley
  • US Coast Guard told to improve its cybersecurity, after warning raised that hacked ports could cost $2 billion per day
  • US woman faces years in federal prison for running laptop farm for N Korean IT workers
  • Smashing Security podcast #404: Podcast not found
• The Register - Security
  • More victims of China's Salt Typhoon crew emerge: Telcos just now hit via Cisco bugs
  • US lawmakers press Trump admin to oppose UK's order for Apple iCloud backdoor
  • North Korea targets crypto developers via NPM supply chain attack
  • Mysterious Palo Alto firewall reboots? You're not alone
  • Have I Been Pwned likely to ban resellers from buying subs, citing ‘sh*tty behavior’ and onerous support requests
  • Feds want devs to stop coding 'unforgivable' buffer overflow vulnerabilities
  • Sophos sheds 6% of staff after swallowing Secureworks
• Krebs on Security
  • Nearly a Year Later, Mozilla is Still Promoting OneRep
• Palo Alto Networks Blog
  • Introducing Cortex Cloud — The Future of Real-Time Cloud Security
• TorrentFreak
  • DAZN Escrows €35m TV Rights Bill as Football Piracy Row Boils Over
• Security Affairs
  • The Rise of Cyber Espionage: UAV and C-UAV Technologies as Targets
  • China-linked APTs’ tool employed in RA World Ransomware attack
  • Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign
  • Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron
• Your Open Hacker Community
  • What is something you want to learn more about right now?
  • iMac password help
  • Hardware hacking??
  • How to get runtime information like api calls from a apk.
  • is there a solid IOS / iPhone VM .. software available??
  • A friend of mine had his Instagram account hacked
  • I want to bypass a site that blocks generic emails
  • Could You Hack a Brain Hacker to Prove Someone Has Your Neurodata?
  • USB stick
• Deeplinks
  • First Trump DOJ Assembled “Tiger Team” To Rewrite Key Law Protecting Online Speech
  • Google is on the Wrong Side of History
• Security Weekly Podcast Network (Audio)
  • Prompt Injection, CISA, Patch Tuesday - PSW #861