Aggregator

2025年白宫重启关税战，政治困境同步映射到了网络空间，海莲花发起供应链攻击刺探我国十五五规划中对外贸易政策情报，企图寻找缓解之法。为了降低对单一市场的依赖，扩展多元化供应链并打通欧盟次级贸易通道，该组织近期将战略目光转向非洲。

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

TongWeb 内存马深度剖析：攻击者利用JSP触发器加载三段式Filter马，UA头“Chrome/70.0.5961.XX”激活JS引擎与AES加密后门，实现全流量劫持。速查“/*”路径异常流量！

这是一个开放的黑客社区，旨在帮助新手成长为资深人士。用户可以提问、解答和学习地下技能。社区活跃于Discord平台，并提供在线互动机会。

The Apache Software Foundationが提供するApache HTTP Serverには、RewriteCondディレクティブの実装不備が存在します。

An unusual attack targeting Linux servers has unveiled a new echelon of malware obfuscation—and possibly, its artificial origin. Researchers at AquaSec have documented a threat dubbed Koske, which hides within seemingly innocuous images of...

The post Koske Malware: AI-Generated Cryptojacker Hides in Panda Images, Targets Linux Servers with Rootkit Stealth appeared first on Penetration Testing Tools.

Firefox中国版将于2025年停止运营；懂车帝辅助驾驶测试引发争议；英伟达高端GPU维修需求激增；阿根廷法院裁定谷歌街景侵犯隐私；美国女子因协助朝鲜IT人员获刑；英国新法规催生多种规避手段。

飞鱼（FlyFish）是一个数据可视化编码平台。通过简易的方式快速创建数据模型，通过拖拉拽的形式，快速生成一

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

Law enforcement agencies have conducted a sweeping international operation to dismantle the digital infrastructure of one of the most prolific ransomware enterprises of the past decade—BlackSuit. This cybercriminal syndicate was responsible for hundreds of...

The post Operation Checkmate: BlackSuit Ransomware Sites Seized, But Is “Chaos” Their Next Rebrand? appeared first on Penetration Testing Tools.

大家好，我是老白！自研数据更新系统已开发测试，每周一8：45准时通过本公众号推送最新DNS解析包（A/AAAA/CNAME/MX记录），助您高效追踪网络资产动态！

The wave of attacks targeting vulnerabilities in Microsoft SharePoint continues to escalate, reaching levels of sophistication and scale not witnessed since the mass infections orchestrated by LockBit. According to Microsoft, the breaches are attributed...

The post SharePoint Under Siege: China-Linked Storm-2603 Unleashes Warlock Ransomware After Zero-Day Exploitation appeared first on Penetration Testing Tools.

安全设备配齐，为啥还建“文件安全中心”

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

宇树科技创始人王兴兴表示很多代码文字都懒得写，不如告诉一个大模型；“廉价版 Model Y”车型内饰谍照，该车基于现款 Model Y 车型进行了较大精简。

当前环境出现异常状态，需完成验证后方可继续访问。

Researchers at CYFIRMA have issued a warning about a new wave of cyberattacks leveraging malicious Android applications disguised as legitimate banking clients. These apps are designed to steal user credentials, intercept messages, and execute...

The post New Android Banking Malware Targets Indian Banks: Steals Credentials, Intercepts OTPs via Fake Apps appeared first on Penetration Testing Tools.