[每日信息流] 2026-02-26 #1160
Description
每日安全资讯(2026-02-26)
- SecWiki News
- Private Feed for M09Ic
- PrefectHQ released 3.6.20.dev2 at PrefectHQ/prefect
- mgeeky starred wietze/ArgFuscator.net
- anthropics released v2.1.58 at anthropics/claude-code
- bolucat released 202602252014 at bolucat/Archive
- strands-agents released v1.28.0 at strands-agents/sdk-python
- Mr-xn starred Lakr233/AssppWeb
- INotGreen starred Wei-Shaw/sub2api
- WAY29 starred Panniantong/Agent-Reach
- gh0stkey starred microclaw/microclaw
- PrefectHQ released 3.6.20.dev1 at PrefectHQ/prefect
- Rvn0xsy contributed to microclaw/microclaw
- INotGreen starred Evil0ctal/Douyin_TikTok_Download_API
- mgeeky starred HackingDave/nightwire
- anthropics released v2.1.56 at anthropics/claude-code
- WAY29 starred zeroclaw-labs/zeroclaw
- gh0stkey starred Caldis/Mos
- Ridter starred hangwin/mcp-chrome
- anthropics released v2.1.55 at anthropics/claude-code
- DVKunion starred vxcontrol/pentagi
- Google Online Security Blog
- 安全客-有思想的安全新媒体
- 2025,AI Agent时代的主动防御:安全防御体系的重构之年
- 黑客在新型NPM供应链攻击中,将Pulsar远控木马隐匿于PNG图片内
- Android恶意软件运行时调用Google Gemini
- 黑客利用BeyondTrust高危漏洞 在多行业部署VShell与SparkRAT
- 零售巨头旗下PrestaShop商城遭支付窃密程序入侵
- 多款PDF平台曝多个零日漏洞 可触发XSS与一键式攻击
- 黑客利用Facebook广告投放虚假Win11更新实施恶意攻击
- 银狐APT组织利用BYOVD攻击投放Winos 4.0恶意软件
- CISA警告USR-W610物联网设备存在9.8分高危漏洞且已无补丁支持
- Swiper曝高危原型污染漏洞CVE-2026-27212(CVSS 9.4)波及全球应用
- 谷歌大规模封禁OpenClaw引发开发者强烈不满
- Tenable Blog
- Doonsec's feed
- 字节跳动估值冲上5500亿美元,超越SpaceX,坐稳全球第二大独角兽
- 【今日话题】AI 会不会取代传统安全岗位?
- 失控的AI身份核验:OpenAI、Persona 与美政府的监控边界
- EDR绕过技术发展时间线
- 好靶场-致给李华的一封信-WP
- JSInfoFinder(v1.0)
- 猫头鹰 XSS 平台:一个针对XSS漏洞的测试平台
- AI 安全Agent智能体:具体落地场景、现存不足与完善路径剖析
- 网络安全面临三大长期困扰.wav
- AI 自主进化!变异算法零干预击穿 GPT防线
- 挖洞了这么久也该提车了
- 告别散装工具!Onyx:集Fscan解析、FinalShell解密、小程序逆向于一体的桌面端神器
- 可深度抓取网站JS文件的工具 Packer-InfoFinder
- Recent Commits to cve:main
- ElcomSoft blog
- Horizon3.ai
- Malwarebytes
- GuidePoint Security
- SentinelOne
- The Trail of Bits Blog
- daniel.haxx.se
- 奇客Solidot–传递最新科技情报
- 黑海洋Wiki | AI机器人硬件开发 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台
- Security Blog | Praetorian
- 黑鸟
- Black Hills Information Security, Inc.
- 安全客
- 威努特安全网络
- 安全分析与研究
- 天黑说嘿话
- 安全圈
- M01N Team
- 中国信息安全
- 安全牛
- 数世咨询
- 极客公园
- 嘶吼专业版
- 火绒安全
- 情报分析师
- 威胁棱镜
- 吴鲁加
- 看雪学苑
- 360数字安全
- 迪哥讲事
- 吾爱破解论坛
- 毕方安全实验室
- 安全行者老霍
- 字节跳动技术团队
- Over Security - Cybersecurity news aggregator
- Medical device maker UFP Technologies warns of data stolen in cyberattack
- FTC says it won’t enforce COPPA against proper use of age verification tools
- Apache-2.4.58 (Win64) - php56 - Error PHP Startup: Unable to load dynamic library
- Fake Next.js job interview tests backdoor developer's devices
- Understanding the DarkCloud Infostealer
- Inside the story of the US defense contractor who leaked hacking tools to Russia
- Health insurance tech provider TriZetto says more than 3 million impacted by 2024 breach
- What Windows Server 2025 Quietly Did to Your NTLM Relay
- Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023
- Password manager, tra promesse di inattaccabilità e lacune nella sicurezza
- Discord puts global age verification policy on hold after backlash
- Five Eyes allies warn hackers are actively exploiting Cisco SD-WAN flaws
- Kali & LLM: macOS with Claude Desktop GUI & Anthropic Sonnet LLM
- Anthropic Claude Code Security: l’AI è parte integrante della superficie d’attacco e della difesa
- PowerSchool, Chicago Public Schools to settle student data privacy lawsuit for $17 million
- Chinese cyberspies breached dozens of telecom firms, govt agencies
- Il 44% delle principali aziende italiane è a rischio di email spoofing: come difenderle
- Active exploitation of Cisco Catalyst SD-WAN by UAT-8616
- Marquis sues SonicWall over backup breach that led to ransomware attack
- Medical device firm UFP says backup data systems deployed following cyberattack
- Chinese prosecutors raise alarm about growth of domestic IP theft
- The OpenClaw Hype: Analysis of Chatter from Open-Source Deep and Dark Web
- The Week in Vulnerabilities: WordPress, BeyondTrust, and Critical ICS Bugs
- Zyxel warns of critical RCE flaw affecting over a dozen routers
- How to Quantify the Value of Preemptive Cybersecurity
- Moscow man accused of posing as FSB officer to extort Conti ransomware gang
- US sanctions Russian broker for buying stolen zero-day exploits
- Come difendersi dai sistemi di Agentic AI: serve più cultura organizzativa
- Marquis Accuses SonicWall of Security Lapses; Ties it to Ransomware Attack
- Turn Your SOC Into a Detection Engine: Rethinking Threat Monitoring
- Continuous Vulnerability Detection
- Claude Code Security crea il panico, ma… non uccide la cyber
- Ex-L3Harris exec jailed for selling zero-days to Russian exploit broker
- Minacce cyber 2026, l’intelligenza artificiale è il nemico numero uno
- Windows 11 KB5077241 update improves BitLocker, adds Sysmon tool
- Canadian Tire - 38,306,562 breached accounts
- SURXRAT, a Trojan’s LLM-Driven Expansion in Android Malware
- U.S. Sanctions Russian Broker Over Zero-Day Exploits Theft
- Scam Centers in Southeast Asia Drive Billion-Dollar Losses: FBI
- datapizza-ai, Yet Another Vulnerable AI Framework
- Phishing campaign targets freight and logistics orgs in the US, Europe
- IT Service Management News
- ICT Security Magazine
- Have I Been Pwned latest breaches
- Kali Linux
- Securityinfo.it
- SANS Internet Storm Center, InfoCON: green
- TG Soft Software House - News
- Deeplinks
- The Hacker News
- Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries
- Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration
- SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks
- Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing It
- Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware
- Manual Processes Are Putting National Security at Risk
- Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker
- SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution
- CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability
- Schneier on Security
- Arturo Di Corinto
- The Register - Security
- Google catches Beijing spies using Sheets to spread espionage across 4 continents
- Fake 'interview' repos lure Next.js devs into running secret-stealing malware
- Ex-L3Harris exec jailed 7 years for selling exploits to Russia
- Wynn Resorts takes attacker's word for it that stolen staff data was deleted
- OpenAI says Chinese cops used ChatGPT to plan and track smear ops against opponents
- Threat intelligence supply chain is full of weak links, researchers find
- Security Affairs
- Untrusted repositories turn Claude code into an attack vector
- Critical Zyxel router flaw exposed devices to remote attacks
- ShinyHunters cyberattack on CarGurus impacts 12.4 Million users
- Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero
- U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog
- Lazarus APT group deployed Medusa Ransomware against Middle East target
- 白帽子章华鹏
- GRAHAM CLULEY
- Instapaper: Unread
- Security Weekly Podcast Network (Audio)