[每日信息流] 2026-02-24 #1158
Description
每日安全资讯(2026-02-24)
- SecWiki News
- Private Feed for M09Ic
- joaoviictorti starred mannyfred/wpd_com
- github released v0.1.6 at github/spec-kit
- bolucat released 202602232019 at bolucat/Archive
- INotGreen starred Wei-Shaw/claude-relay-service
- pydantic released v1.63.0 at pydantic/pydantic-ai
- CHYbeta starred datawhalechina/self-llm
- Pennyw0rth released v1.5.1 at Pennyw0rth/NetExec
- 0xbug starred nelvko/clash-for-linux-install
- safedv starred dazzyddos/lsawhisper-bof
- 0xbug starred cilium/cilium
- obfuscar released v3.0.0-beta.3 at obfuscar/obfuscar
- IC3-CR3AM forked IC3-CR3AM/CobaltStrikeBeaconCppSource from kirs112/CobaltStrikeBeaconCppSource
- IC3-CR3AM starred kirs112/CobaltStrikeBeaconCppSource
- Recent Commits to cve:main
- CXSECURITY Database RSS Feed - CXSecurity.com
- Oracle HTTP Server & WebLogic Proxy Plug-in – Unauthenticated Improper Access Control
- FreeBSD rtsold 15.x Remote Code Execution via DNSSL
- FileBrowser ≤ v2.57.0 - Path-Based Access Control Bypass via Multiple Leading Slashes in URL (Authenticated Authorization Byp
- Icinga for Windows 1.13.3 - Incorrect Default Permissions Private Key Exposure
- LangGraph SQLite Checkpoint - SQL Injection via Metadata Filter Key
- Google Chrome < 145.0.7632.75 - CSSFontFeatureValuesMap Use-After-Free
- Cerbero Blog
- Payatu
- Hacking Dream
- Malwarebytes
- Reverse Engineering
- /r/ReverseEngineering's Weekly Questions Thread
- I got tired of digging through noisy driver patches, so I built a semantic diff engine for Windows kernel drivers
- Reverse Engineering the PROM for the SGI O2
- GitHub - merces/awesome-hex-editors: A curated and enriched list of awesome hexadecimal editors for Windows, macOS, and Linux.
- Checkmarx
- 黑海洋Wiki | AI机器人硬件开发 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台
- 奇客Solidot–传递最新科技情报
- 锦行科技
- 威努特安全网络
- 黑鸟
- 中国信息安全
- 安全研究GoSSIP
- 数世咨询
- 极客公园
- 吴鲁加
- 迪哥讲事
- 安全行者老霍
- 360数字安全
- Over Security - Cybersecurity news aggregator
- Android mental health apps with 14.7M installs filled with security flaws
- Spain arrests suspected hacktivists for DDoSing govt sites
- UK regulator fines porn company $1.8 million for failing to verify user ages
- Microsoft says bug in classic Outlook hides the mouse pointer
- Ad tech firm Optimizely confirms data breach after vishing attack
- Russian-speaking hackers used gen AI tools to compromise 600 firewalls, Amazon says
- Global data protection authorities warn generative AI companies against replicating real people
- Air Côte d'Ivoire confirms cyberattack following ransomware claims
- Ring: una taglia a 4 zeri per forzare l’esecuzione in locale
- VPN flaws allowed Chinese hackers to compromise dozens of Ivanti customers, says report
- EDPB, diritto alla cancellazione: tra risultati positivi e sfide molteplici
- Shadowleak, l’attacco senza permesso: nel Cybercrime 5.0 l’IA minaccia l’IA
- When identity isn’t the weak link, access still is
- CISA: Recently patched RoundCube flaws now exploited in attacks
- Ransomware gangs advancing Moscow’s geopolitical aims, Romanian cyber chief warns
- Ukraine says cyberattacks on energy grid now used to guide missile strikes
- The First Mobile Hacking Conference Is Coming This March
- Il cyber sabotaggio russo diventa più audace: il Cremlino sfrutta le divisioni fra Usa e Ue
- Attenti a quell’sms, è una truffa: 25 casi reale e come difendersi
- ATM Jackpotting Losses Cross $20M as Malware Targets U.S. Cash Machines
- X vs EU: Platform Appeals Against €120M Digital Services Act Penalty
- Analisi dei processi e teoria dei sistemi: un framework per mitigare i rischi dei LLM
- UAE Blocked AI-Powered Terrorist Cyberattacks Targeting Critical Infrastructure
- Securityinfo.it
- SANS Internet Storm Center, InfoCON: green
- ICT Security Magazine
- Schneier on Security
- Daniel Miessler
- NetSPI
- The Hacker News
- APT28 Targeted European Entities Using Webhook-Based Macro Malware
- Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb
- ⚡ Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More
- How Exposed Endpoints Increase Risk Across LLM Infrastructure
- Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens
- MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP
- The Register - Security
- Infosec community panics as Anthropic rolls out Claude code security checker
- Global regulators say AI image tools don't get a free pass on privacy rules
- Break free of Ring's servers, earn a five-figure bounty
- Suspected Anonymous members detained in Spain over post-flood DDoS blitz
- AWS says more than 600 FortiGate firewalls hit in AI-augmented campaign
- Every day in every way, passwords are getting worse and worse
- TorrentFreak
- Security Affairs
- Wormable XMRig campaign leverages BYOVD and timed kill switch for stealth
- Romanian hacker pleads guilty to selling access to Oregon state networks
- CVE-2026-1731 fuels ongoing attacks on BeyondTrust remote access products
- AI-powered campaign compromises 600 FortiGate systems worldwide
- Anthropic unveils Claude Code Security to detect and fix code bugs
- Deep Web
- Trend Micro Research, News and Perspectives
- Information Security
- 600 FortiGate firewalls compromised across 55 countries. not a zero-day. just exposed management ports and no MFA
- Weatherzero
- Mapping the federal identity verification contract stack: IBM VIS modernization + Palantir analytics layer
- Checking Security Alerts During Business Hours” Is No Longer Enough
- Your Open Hacker Community
- Is there a way to find my raw gps data?
- Please help me recover my dads photos and phone
- Android 12, Moto g40, how to unlock
- iPhone Pictures Access
- Help to end network/device hacking attack please
- Is this exe file safe?
- How can i find someones social media account using only there name, country and date of birth?
- Computer Forensics
- Technical Information Security Content & Discussion
- Security Weekly Podcast Network (Audio)