记录黑客技术中优秀的内容,传播黑客文化,分享黑客技术精华

白帽黑客们,美联航免费带你飞

值此2015乌云白帽子大会召开,全国白帽子聚集帝都之际,辛巴达给大家分享一个好消息:美联航(United Airlines)今年5月推出的漏洞奖励计划,刚给两个安全研究人员奖励了100万英里的里程! 美联航(UA)和国航(CA)同属星空联盟,里程可以互兑机票。能飞多少趟呢?100万英里是160万公里,举例来说,北京到深圳的CA航班需要15000公里兑换,可以飞100趟单程!以票价1500计算,价值15万人民币。 UA的漏洞奖励范围包括网站和应用,奖励分为三档,高危漏洞圈定为“远程代码执行”,奖励100万英里。
发布时间:2015-07-17 11:00 | 阅读:112244 | 评论:0 | 标签:信息速递

潜力股-最新年度开源项目新秀榜

黑鸭(Black Duck)软件公布了一份名叫“年度开源项目新秀”的报告,介绍了由全球开源协会发起的10个最有趣、最活跃的新项目。 年度开源项目新秀 每年都有上千新的开源项目问世,但只有少数能够真正的吸引我们的关注。一些项目因为利用了当前比较流行的技术而发展壮大,有一些则真正地开启了一个新的领域。很多开源项目建立的初衷是为了解决一些生产上的问题,还有一些项目则是世界各地志同道合的开发者们共同发起的一个宏伟项目。 从2009年起,开源软件管理公司黑鸭便发起了年度开源项目新秀这一活动,它的评选根据Open Hub网站(即以前的Ohloh)上的活跃度。
发布时间:2015-06-28 02:55 | 阅读:115631 | 评论:0 | 标签:信息速递

Penn State Takes Network Offline After Attack From China

Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine   Penn State University has been forced to disconnect one of its college networks from the internet after discovering
发布时间:2015-05-19 16:25 | 阅读:104887 | 评论:0 | 标签:信息速递

Phantom Menace Attacker Set Sights on Oil Companies

Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine   Security researchers have uncovered a major new targeted attack seemingly originating from Nigeria and designed to
发布时间:2015-05-19 16:25 | 阅读:107337 | 评论:0 | 标签:信息速递

FBI Claims Hacker Made Plane Fly Sideways

Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine The FBI has accused a security researcher of hacking a plane’s on-board computers to make it fly sideways during a f
发布时间:2015-05-19 16:25 | 阅读:115019 | 评论:0 | 标签:信息速递

United Airlines Launches Bug Disclosure Program to Bolster Software Security

BY JAIKUMAR VIJAYAN United Airlines has become the first company in the airline industry — and one of the few non-software vendors — to launch a bug disclosure bounty program for third-par
发布时间:2015-05-19 16:25 | 阅读:133333 | 评论:0 | 标签:信息速递

More on the NSA’s Capabilities

Bruce Schneier   Ross Anderson summarizes a meeting in Princeton where Edward Snowden was "present." Third, the leaks give us a clear view of an intelligence analyst's wor
发布时间:2015-05-17 07:45 | 阅读:130735 | 评论:0 | 标签:信息速递

VENOM – Does it live up to the hype?

SANS InfoSec Community Forums, RICK     Unless you have been hiding under a rock this week you have heard about VENOM.  The first article that I saw was from ZDNet with t
发布时间:2015-05-17 07:45 | 阅读:111700 | 评论:0 | 标签:信息速递

Hiding in Plain Sight: FireEye and Microsoft Expose Chinese APT Group’s Obfuscation Tactic

May 14, 2015 | By FireEye Threat Intelligence | Vulnerabilities, Exploits, Threat Research   In late 2014, FireEye Threat Intelligence and the Microsoft Threat
发布时间:2015-05-16 03:25 | 阅读:113291 | 评论:0 | 标签:信息速递 exp

Spyware Firm Hacked: 400,000 Victims’ Data Stuck on Dark Web

Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine MSpy, a maker of notorious mobile spyware, has reportedly been breached and the personal details of over 400,000 of its vi
发布时间:2015-05-16 03:25 | 阅读:121766 | 评论:0 | 标签:信息速递

Chinese Site Serves 83 Windows Executables in Drive-By Attack

Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine Security researchers have discovered a new drive-by-download attack serving up a staggering 83 Windows executables to infe
发布时间:2015-05-16 03:25 | 阅读:164296 | 评论:0 | 标签:信息速递

New Flaws Identified in Lenovo’s System Update Service

  Statement from Kevin Bocek, Vice President, Security Strategy & Threat Intelligence at Venafi IoActive’s researchers have identified some new flaws in Lenovo’s system updat
发布时间:2015-05-16 03:25 | 阅读:150507 | 评论:0 | 标签:信息速递

Tinba Malware Watches Mouse Movements, Screen Activity to Avoid Sandbox Detection

  BY SHANE SCHICK   MAY 13, 2015 IT security programs would probably be much worse than they are without sandboxes, which isolate programs to prevent them from being infected by hackers
发布时间:2015-05-14 23:05 | 阅读:135606 | 评论:0 | 标签:信息速递

VENOM Vulnerability: Community Patching and Mitigation Update

THE LAB  13 MAY 2015  DMITRI ALPEROVITCH Today, CrowdStrike disclosed a critical virtual machine escape vulnerability (which we named VENOM) discovered by our Senior Security Researcher Jaso
发布时间:2015-05-14 23:05 | 阅读:140059 | 评论:0 | 标签:信息速递

VENOM-Virtualized Environment Neglected Operations Manipulation

Discovered by Jason Geffner, CrowdStrike Senior Security Researcher   Vendor advisories, patches, and notifications available below in Q&A section.   VENOM, CVE-2015-3456, is a
发布时间:2015-05-14 23:05 | 阅读:135837 | 评论:0 | 标签:信息速递

安全运行中心SOC分析金字塔

SOC Analyst Pyramid 转帖自:SANS Internet Storm Center Introduction Last weekend, I did a 10 minute fireside chat during lunch at BSidesSATX 2015 [1].  It was an informal presentation, w
发布时间:2015-05-14 08:55 | 阅读:227571 | 评论:0 | 标签:信息速递

Launching First Data Classification Solution Designed for SAP

Launching First Data Classification Solution Designed for SAP 转贴自:SECUDE SECUDE’s Halocore for Data Classification is a data governance and security solution that offers a unique blend o
发布时间:2015-05-14 08:55 | 阅读:113337 | 评论:0 | 标签:信息速递

Cyveillance Phishing Report: Top 20 Targets

Cyveillance Phishing Report: Top 20 Targets PHISHING Phishing Report: Top 20 Targets Week of May 3-9, 2015 RBC Royal Bank, Facebook, and Sparkasse were new entrants on the Cyveillance top 20 list, dis
发布时间:2015-05-14 08:55 | 阅读:108525 | 评论:0 | 标签:信息速递

Hackers Target Starbucks Mobile Payments App

Tara Seals US/North America News Reporter, Infosecurity Magazine Email Tara   Credit-card hackers are reportedly targeting Starbucks gift card and mobile payment users around the countr
发布时间:2015-05-14 08:55 | 阅读:223917 | 评论:0 | 标签:信息速递 mobile

US Navy Looks to Dump Lenovo Servers on Security Concerns – Report

Phil MuncasterUK / EMEA News Reporter , Infosecurity Magazine The US Navy is reportedly looking for a new server supplier for some of its guided missile cruisers and destroyers due to securi
发布时间:2015-05-14 08:55 | 阅读:141119 | 评论:0 | 标签:信息速递

AlienVault Partners with Intel on Threat Intelligence

Tara Seals US/North America News Reporter,Infosecurity Magazine   AlienVault is partnering with Intel Security, to share real-time, actionable threat data between the companies.   Under the
发布时间:2015-05-14 08:55 | 阅读:116817 | 评论:0 | 标签:信息速递

New ‘NSA’ App Designed to Expose Android Apps’ Secret Web Visits

Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine French researchers have built a new Android app designed to monitor the network activity of other applications on their device,
发布时间:2015-05-14 08:55 | 阅读:130294 | 评论:0 | 标签:信息速递 exp Android

微软2015年5月周二补丁日补丁总结

May 2015 Microsoft Patch Tuesday Summary 转帖自:SANS Internet Storm Center Overview of the May 2015 Microsoft patches and their status. # Affected Contra Indications – KB Kno
发布时间:2015-05-13 18:45 | 阅读:153967 | 评论:0 | 标签:信息速递

公告

❤人人都能成为掌握黑客技术的英雄❤

ADS

标签云