Frequent verification codes may appear for non-Mainland China IP visits. If visitors are severely affected, please send [IP|ASN](|AS14618) to the bottom mailbox to add to the whitelist


40min ago   Analysis of SideWinder's new infrastructure and tool that narrows their reach to Pakistan    #alienvault #威胁情报 Researchers from Group-IB Threat Intelligence have discovered a new malicious infrastructure and a custom tool of the Indian nation-state cyber-attack group SideWinder, which has been targeting Pakistani targets since 2012.

40min ago   State-sponsored Attack Groups Capitalise on Russia-Ukraine War for Cyber Espionage    #alienvault #威胁情报 State-sponsored cyber-espionage groups around the world are using the ongoing Russia-Ukraine war as a bait for their attacks, according to research by Check Point Research and Kaspersky Technologies.

4hour ago   SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide    #Security Affairs #安全文章 Researchers warn of a new ‘SessionManager’ Backdoor that was employed in attacks targeting Microsoft IIS Servers since March 2021. Researchers from Kaspersky Lab have discovered a new ‘SessionManager’ Backdoor that was employed in attacks targeting Microsoft IIS Servers since

5hour ago   CISA orders federal agencies to patch Windows bug    #The Record #安全文章 The Cybersecurity and Infrastructure Security Agency on Friday said that federal civilian executive branch agencies must apply remediations for a security bug affecting Microsoft devices by July 22.The post CISA orders federal agencies to patch Windows bug appeared first on The Record by Recorded Fu

7hour ago   Publishing giant Macmillan still unable to process orders after ransomware attack    #The Record #安全文章 Publishing giant Macmillan is in the process of recovering from a ransomware attack that has left it unable to process orders electronically.  No ransomware group has come forward to claim the attack, but employees of the company initially took to Twitter to discuss the incident. Publishers Weekly w

8hour ago   DIDs approved to W3C recommendation    #Avast Blog #安全文章 Yesterday was a major milestone in the evolution of the Web. The World Wide Web Consortium (W3C) announced it was overruling the objections of Apple, Google, and Mozilla and approving W3C Decentralized Identifiers (DIDs) 1.0 as a W3C Recommendation. 

8hour ago   DOJ sets new goals for responding to ransomware attacks    #The Record #安全文章 The Justice Department said it wants to increase the percentage of reported ransomware incidents it handles to 65% by September 2023. In a strategic planning document published Friday, the Department of Justice said that by September 30, 2023, it pledges to increase “the percentage of reported ranso

8hour ago   Facial recognition in Oz    #Avast Blog #安全文章 Despite concerns from privacy advocates, Australia is currently the only democracy in the world that uses facial recognition technology to aid Covid-19 containment procedures. Police ensure that Western Australian citizens are following the seven-day quarantine rule by sending periodic text me

9hour ago   CISA Adds One Known Exploited Vulnerability to Catalog    #Us-Cert #安全文章 Original release date: July 1, 2022CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise

10hour ago   A long-running cryptomining campaign conducted by 8220 hackers now targets Linux servers    #Security Affairs #安全文章 Microsoft spotted a cloud threat actor tracked as 8220 that is now targeting Linux servers in a long-running cryptomining campaign. Microsoft Security Intelligence experts are warning of a long-running campaign conducted by a cloud threat actor group, tracked as 8220, that is now targeting Linux ser

11hour ago   State Department offers up to $10 million for info on foreign election interference    #The Record #安全文章 The State Department announced on Thursday that it is offering up to $10 million for tips about foreign interference in U.S. elections, including illegal cyber activities. The cash, offered through the department’s Rewards for Justice program, would be for any information that leads to the identific

11hour ago   Optimizing TCP for high WAN throughput while preserving low latency    #CloudFlare Blog #安全文章 In this post, we describe how we modified the Linux kernel to optimize for both low latency and high throughput concurrently

13hour ago   前谷歌資深工程總監談精實創業    #iThome 新聞 #社交媒体 我躺在小船頂,順著緬甸偉河(Ywe River)漂流而下,穿過兩岸茂密叢林,偶爾會看到佛塔金光燦爛,真是令我大開眼界。當時的緬甸正處於關鍵時刻。二○○八年的納吉斯超級颱風(Cyclone Nargis)造成將近十萬人死亡,鄰近地區直到現在才漸漸恢復正常;推動民主的領導人翁山蘇姬(Aung San Suu Kyi)解除軟禁,數十年來國會首次舉行公開選舉,這些發展都讓緬甸人民日益期盼好日子趕快到來。但是這個國家還有很多極度貧困的人,他們在自家薄田辛勤耕作,平均收入每天不到兩美元。我在這裡探訪的專案就是和三角洲地區一些農家合作,提升農作生產,改善收入。

14hour ago   微軟揭開Android收費詐騙程式的面紗    #iThome 新聞 #社交媒体 微軟Microsoft 365 Defender研究團隊在本周發表了有關Android收費詐騙程式(Toll Fraud)的研究報告,指出它雖然是Google Play上市占率第二高的惡意程式,卻顯少有業者分享相關資訊,使得該團隊決定揭露收費詐騙程式的手法,以及如何辨識及預防。