值此2015乌云白帽子大会召开,全国白帽子聚集帝都之际,辛巴达给大家分享一个好消息:美联航(United Airlines)今年5月推出的漏洞奖励计划,刚给两个安全研究人员奖励了100万英里的里程! 美联航(UA)和国航(CA)同属星空联盟,里程可以互兑机票。能飞多少趟呢?100万英里是160万公里,举例来说,北京到深圳的CA航班需要15000公里兑换,可以飞100趟单程!以票价1500计算,价值15万人民币。 UA的漏洞奖励范围包括网站和应用,奖励分为三档,高危漏洞圈定为“远程代码执行”,奖励100万英里。
发布时间:
2015-07-17 11:00 |
阅读:177032 | 评论:0 |
标签:
信息速递
黑鸭(Black Duck)软件公布了一份名叫“年度开源项目新秀”的报告,介绍了由全球开源协会发起的10个最有趣、最活跃的新项目。 年度开源项目新秀 每年都有上千新的开源项目问世,但只有少数能够真正的吸引我们的关注。一些项目因为利用了当前比较流行的技术而发展壮大,有一些则真正地开启了一个新的领域。很多开源项目建立的初衷是为了解决一些生产上的问题,还有一些项目则是世界各地志同道合的开发者们共同发起的一个宏伟项目。 从2009年起,开源软件管理公司黑鸭便发起了年度开源项目新秀这一活动,它的评选根据Open Hub网站(即以前的Ohloh)上的活跃度。
发布时间:
2015-06-28 02:55 |
阅读:163776 | 评论:0 |
标签:
信息速递
Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine Penn State University has been forced to disconnect one of its college networks from the internet a
发布时间:
2015-05-19 16:25 |
阅读:153479 | 评论:0 |
标签:
信息速递
Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine Security researchers have uncovered a major new targeted attack seemingly originating from Nigeria
发布时间:
2015-05-19 16:25 |
阅读:173800 | 评论:0 |
标签:
信息速递
Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine The FBI has accused a security researcher of hacking a plane’s on-board computers to make it fly sid
发布时间:
2015-05-19 16:25 |
阅读:172380 | 评论:0 |
标签:
信息速递
BY JAIKUMAR VIJAYAN United Airlines has become the first company in the airline industry — and one of the few non-software vendors — to launch a bug disclosure bounty program for t
发布时间:
2015-05-19 16:25 |
阅读:194428 | 评论:0 |
标签:
信息速递
Bruce Schneier Ross Anderson summarizes a meeting in Princeton where Edward Snowden was "present." Third, the leaks give us a clear view of an intelligen
发布时间:
2015-05-17 07:45 |
阅读:186123 | 评论:0 |
标签:
信息速递
SANS InfoSec Community Forums, RICK Unless you have been hiding under a rock this week you have heard about VENOM. The first article that I saw was from&nb
发布时间:
2015-05-17 07:45 |
阅读:168635 | 评论:0 |
标签:
信息速递
May 14, 2015 | By FireEye Threat Intelligence | Vulnerabilities, Exploits, Threat Research In late 2014, FireEye Threat Intell
发布时间:
2015-05-16 03:25 |
阅读:159082 | 评论:0 |
标签:
信息速递 exp
Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine MSpy, a maker of notorious mobile spyware, has reportedly been breached and the personal details of over 400,0
发布时间:
2015-05-16 03:25 |
阅读:163887 | 评论:0 |
标签:
信息速递
Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine Security researchers have discovered a new drive-by-download attack serving up a staggering 83 Windows executa
发布时间:
2015-05-16 03:25 |
阅读:214492 | 评论:0 |
标签:
信息速递
Statement from Kevin Bocek, Vice President, Security Strategy & Threat Intelligence at Venafi IoActive’s researchers have identified some new flaws in Lenovo&
发布时间:
2015-05-16 03:25 |
阅读:207248 | 评论:0 |
标签:
信息速递
BY SHANE SCHICK MAY 13, 2015 IT security programs would probably be much worse than they are without sandboxes, which isolate programs to prevent them from being infecte
发布时间:
2015-05-14 23:05 |
阅读:192179 | 评论:0 |
标签:
信息速递
THE LAB 13 MAY 2015 DMITRI ALPEROVITCH Today, CrowdStrike disclosed a critical virtual machine escape vulnerability (which we named VENOM) discovered by our Senior Security Researc
发布时间:
2015-05-14 23:05 |
阅读:193968 | 评论:0 |
标签:
信息速递
Discovered by Jason Geffner, CrowdStrike Senior Security Researcher Vendor advisories, patches, and notifications available below in Q&A section. VENOM, CVE-2015
发布时间:
2015-05-14 23:05 |
阅读:206102 | 评论:0 |
标签:
信息速递
SOC Analyst Pyramid 转帖自:SANS Internet Storm Center Introduction Last weekend, I did a 10 minute fireside chat during lunch at BSidesSATX 2015 [1]. It was an informal present
发布时间:
2015-05-14 08:55 |
阅读:295816 | 评论:0 |
标签:
信息速递
Launching First Data Classification Solution Designed for SAP 转贴自:SECUDE SECUDE’s Halocore for Data Classification is a data governance and security solution that offers a unique ble
发布时间:
2015-05-14 08:55 |
阅读:158717 | 评论:0 |
标签:
信息速递
Cyveillance Phishing Report: Top 20 Targets PHISHING Phishing Report: Top 20 Targets Week of May 3-9, 2015 RBC Royal Bank, Facebook, and Sparkasse were new entrants on the Cyveillance top 20 list, dis
发布时间:
2015-05-14 08:55 |
阅读:142163 | 评论:0 |
标签:
信息速递
Tara Seals US/North America News Reporter, Infosecurity Magazine Email Tara Credit-card hackers are reportedly targeting Starbucks gift card and mobile payment users aroun
发布时间:
2015-05-14 08:55 |
阅读:301805 | 评论:0 |
标签:
信息速递 mobile
Phil MuncasterUK / EMEA News Reporter , Infosecurity Magazine The US Navy is reportedly looking for a new server supplier for some of its guided missile cruisers and destroyers due t
发布时间:
2015-05-14 08:55 |
阅读:191939 | 评论:0 |
标签:
信息速递
Tara Seals US/North America News Reporter,Infosecurity Magazine AlienVault is partnering with Intel Security, to share real-time, actionable threat data between the companies. Un
发布时间:
2015-05-14 08:55 |
阅读:179690 | 评论:0 |
标签:
信息速递
Phil Muncaster UK / EMEA News Reporter , Infosecurity Magazine French researchers have built a new Android app designed to monitor the network activity of other applications on their
May 2015 Microsoft Patch Tuesday Summary 转帖自:SANS Internet Storm Center Overview of the May 2015 Microsoft patches and their status. # Affected Contra Indications &a
发布时间:
2015-05-13 18:45 |
阅读:216489 | 评论:0 |
标签:
信息速递