[每日信息流] 2026-03-19

[chainreactorbot]

每日安全资讯（2026-03-19）

• SecWiki News
  • SecWiki News 2026-03-18 Review
• Private Feed for M09Ic
  • Rvn0xsy starred lightpanda-io/browser
  • anthropics released v2.1.79 at anthropics/claude-code
  • zeroclaw-labs released v0.5.0-beta.364 at zeroclaw-labs/zeroclaw
  • memN0ps starred MEhrn00/boflink
  • bolucat released 202603182010 at bolucat/Archive
  • mgeeky starred smtg-ai/claude-squad
  • IC3-CR3AM starred mrphrazer/agentic-malware-analysis
  • INotGreen starred shareAI-lab/learn-claude-code
  • zeroclaw-labs released v0.5.0-beta.351 at zeroclaw-labs/zeroclaw
  • IC3-CR3AM forked IC3-CR3AM/intelligence from ctrlaltint3l/intelligence
  • mgeeky starred six2dez/burp-ai-agent
  • 4ra1n starred ZeroPathAI/validation-benchmarks
  • niudaii starred Esonhugh/pydoll-cf-waf-bypasser-skills
  • uknowsec starred RuoJi6/java-decompile-mcp
  • Rvn0xsy starred whatevertogo/FeiShuSkill
  • gh0stkey starred unslothai/unsloth-studio
  • PrefectHQ released 3.6.23.dev3 at PrefectHQ/prefect
  • ZeddYu starred aiming-lab/AutoResearchClaw
  • niudaii starred shareAI-lab/learn-claude-code
  • safedv starred andreisss/KslDump
  • zeroclaw-labs released v0.5.0 at zeroclaw-labs/zeroclaw
  • su18 starred shareAI-lab/learn-claude-code
• CXSECURITY Database RSS Feed - CXSecurity.com
  • Kanboard < = 1.2.50 Authenticated SQL Injection
  • Glances < = 4.5.2 OS Command Injection via Mustache Template Fields
• Doonsec's feed
  • Rust for Malware Development：一个值得研究的Rust对抗技术仓库
  • 告别手动排查应急响应一键采集与可视化分析的自动化应急响应利器
  • CTF WEB-Jeewms
  • DarkEsn 通知/授权 | Darkesnvip最新通知
  • 网易回应清退全部外包的传言
  • 紧急！你的Chrome可能正在"裸奔"
  • 快普M6 GetPositionOfStaff接口存在sql注入漏洞 附POC
  • 老婆是一个小公司的hr兼行政，工作繁琐经常加班，我经常写一些小工具给她用。现在老婆要离职，老板要求这些工具必须留下。这合理吗？
  • 什么是信息安全，网络安全，数据安全
  • 聊一下我的“多源日志采集与智能分析平台”：支持两种 syslog 日志外发啦！
  • 美以空袭疑似炸死了伊朗黑客组织头目
  • 别浪费！iPhone这些隐藏功能不用等于白买
  • H6-3-逆向工程（Ghidra）长期支持维护基础环境设施知识共享
  • 苹果iOS26.3.1a正式版发布！投屏教程+版本亮点一次看懂
  • 利用skill解决CTF的逆向题
  • 吾爱破解论坛精华集2025
  • [EDU]动动手指的高危
  • 新课更新
  • Burp插件--MaR
  • 某CMS XSS漏洞代码审计
  • 智谱龙虾套餐可以用glm5-turbo了
  • 2026年国际网络安全奥林匹克中国区学术（NCO）活动正式启动
  • 北美校园医院警报！朝鲜APT新武器Dohdoor偷袭，病历成绩全被偷。
  • AI Guardrails：大模型安全护栏架构初探
  • 《经济半小时》| 守护安全 奇安信“龙虾安全伴侣”获央视关注
  • 奇安云镜发布：一天不到1毛钱，为中小企业打造专属“智能安全管家”
  • CTFshow-Pwn入门格式化字符串(91-100)
  • 鹈鹕、Three.js 与 Rebecca
  • 攻防中前端加密的分析与突破
  • Agent开发｜从0实现Agent（一）：50行代码实现Mini Claude Code（工具与执行篇）
  • 别再手动压缩图片了，来看看「自动挡」时代的正确做法！
  • [吃瓜速递]某大厂又开始裁员？？
  • 结构化思维、架构化认知--最重要的实力保障
  • 拆解机器人，分析其软硬件弱点（1)
  • 腾讯财报：人均年薪112万！
  • 17岁深圳少年破解AI底层难题，马斯克点赞：中国下一代程序员正在崛起
  • 信创私有化，源码交付！AIoT 大模型智慧城市生命线一网统管，涵盖城管住建、综合执法、智慧社区、水利水务、生态环保、应急安全
  • 突破防御极限！《APT攻击原理深度刨析》第二批课程
  • 开源！PromptFoo 让 AI 安全测试告别盲测
  • Ubuntu Desktop 24.04及更高版本存在本地权限提升漏洞，可导致未授权用户获取root权限
  • RegPwn：一种 Windows 注册表弱点
  • 沼泽蛇组织发起多波次间谍活动，目标直指外交官和关键基础设施
  • 华为中国合作伙伴大会2026｜华为星河AI网络安全参会指南一图掌握！
  • 2月银行AI项目动态：广西北部湾银行连推3项目，最高金额回落至三百余万
  • AI快讯：金融智能体标准编制启动，阿里云、百度云AI算力等产品涨价
  • 银雁科技第一中选！中行安徽省分行AI远程银行（云维）项目人员外包服务项目
  • 专题·原创 | 《中华人民共和国网络安全法》修改的背景、内容、创新之处及实施路径研究
  • 专家解读 | 筑牢数据产权制度基石 护航数据要素价值释放
  • 最高法：审理未成年人“充值”“打赏”案件应充分考虑各种因素综合判断
  • 前沿 | OpenClaw爆火背后：个人Agent狂欢更需警惕安全风险
  • 专家观点丨政策驱动全链条防护：我国工控安全撑起新型工业化“安全伞”
  • 可信数据丨建设面向AI赋能的高质量行业数据集！工信部启动工业数据筑基行动
  • Flashpoint：从暗网里长出来的情报公司，如何在"史诗狂怒"前夜发出全球威胁最强音
  • 龙虾归笼，筑牢底座：CSA GCR大会嘉宾揭晓
  • AI 安全的“插件革命”：深度拆解 730+ 个 Anthropic 风格原子化技能库
  • 老师，我想学渗透测试
  • 智行千里，安防于心|中机博也在AutoSec十周年荣获标杆企业
  • 前端加密测不动？全局热加载帮你自动接管签名流程
  • 现在学网安真的是49年入国军吗？
  • AI+安全，问鼎国际！默安科技斩获日内瓦国际发明展金奖
  • 【高危AI漏洞预警】OpenClaw Agent平台远程代码执行漏洞CVE-2026-30741
  • 某安全应急响应中心群发导致493个邮箱地址泄露
  • 无数挖坑题的反面
  • 龙信手机取证新突破：TG提取恢复再加强（70款变种支持）与主流输入法（含维语）提取全覆盖！
  • 央视曝光AI“投毒”，工信部紧急预警：AI浪潮下，企业如何看清“隐形威胁”？
  • 英伟达发布“安全版龙虾”NemoClaw
  • OpenClaw安全公告激增；Claude Code Security重塑网安企业 | 2025网安行业优质播客精选集⑮
  • 从Windows转向macOS：ClickFix攻击利用ChatGPT诱饵升级战术
  • 攻击者入侵史赛克微软系统，远程擦除数万台设备
  • 公开课 | 区块链安全（第三讲）
  • 字节跳动被曝在内部推出 ByteClaw 并发布“龙虾”安全规范，应对 AI 智能体安全风险
  • 稳步推进 聚力筑盾——武汉市网络安全协会两项团体标准编制工作取得阶段性进展
  • 国家互联网信息办公室关于发布生成式人工智能服务已备案信息的公告
  • 奇安信发布“龙虾安全伴侣”，破解企业“想用不敢用”难题
  • 会员动态 | 陈宇调研光谷信息
  • 合规领航·智赋新安 | 任子行AI驱动全面赋能393号文基础电信企业数据安全技术能力建设
  • 移动安全警报：AI驱动攻击、虚拟化逃逸、无感知盗刷来袭……梆梆安全防御能力全面升级！
  • 登榜IDC双图谱！亚信安全以AI原生实力筑牢智能体安全底座
  • OpenClaw被曝多项高危风险？观安智能体管控平台带你告别AI“裸奔”！
  • fastcms-v0.1.5代码审计
  • 生成式人工智能训练语料的法律风险及治理
  • 预警丨防范思科Catalyst SD-WAN管理软件多个漏洞
  • OpenClaw安全解决方案：安全与办公提效兼得
  • 火山引擎ArkClaw开启安全专测！顶尖赏金与限量周边奉上！
  • 网络安全行业有哪些“含金量高”的证书？一次讲清楚
  • 2026年成都市政府工作安排
• 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
  • 360龙虾卫士上线：九大能力专治OpenClaw“裸奔”
  • AI时代中国网络安全产业的五年变局|| 网络安全投融资的残酷分流
  • 嘶吼安全动态｜360回应“安全龙虾”私钥泄露：已吊销证书，系发布失误微博 Delta工业通信系统曝高危漏洞
• Microsoft Security Blog
  • Observability for AI Systems: Strengthening visibility for proactive risk detection
• Der Flounder
  • Managing Background Security Improvements for macOS using Blueprints in Jamf Pro
• Recent Commits to cve:main
  • Update Wed Mar 18 11:18:23 UTC 2026
• Insinuator.net
  • Vulnerabilities in Broadcom VMware Aria Operations: Privilege Escalation (CVE-2025-41245 / CVE-2026-22721)
• Sandfly Security Blog RSS Feed
  • Sandfly Security and Carahsoft Partner to Bring Agentless Linux EDR to the Public Sector
• Bug Bounty in InfoSec Write-ups on Medium
  • How I Found a Critical Authentication Bypass in a Lightning Network SDK (CVSS 9.8)
  • How I Discovered a Complete CSRF Protection Bypass on a Major Crypto Exchange And What Happened…
• Malware-Traffic-Analysis.net - Blog Entries
  • 2026-03-12: Files for an ISC diary (SmartApeSG ClickFix pushes Remcos RAT)
• Securelist
  • The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico
• Malwarebytes
  • Researchers found font-rendering trick to hide malicious commands
  • Apple patches WebKit bug that could let sites access your data
  • Inside a network of 20,000+ fake shops
• 绿盟科技技术博客
  • “影子AI”危机？绿盟威胁情报“三把锁”，构筑OpenClaw防御体系
  • RSAC 2026创新沙盒 | Charm Security：构建面向新型诈骗的AI反欺诈平台
• 奇客Solidot–传递最新科技情报
  • 瑞士构建 BGP 的安全替代
  • GTC 2026 重磅 AI 会议推荐：注册观看还有机会获得 NVIDIA 定制装备
  • 韩国游戏发行商 CEO 为避免支付合同承诺的 2.5 亿美元而求助于 ChatGPT
  • 法官裁决苹果可以以任何理由下架应用
• Offensive Security Blog: Latest Trends in Hacking | Praetorian
  • When HttpOnly Isn’t Enough: Chaining XSS and GhostScript for Full RCE Compromise
• 黑海洋Wiki | AI机器人硬件开发 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台
  • 美光表示需要投入巨资才能满足内存需求
• rtl-sdr.com
  • Ground Station: An Open Source SDR Orchestration Platform for Satellite Tracking and Decoding
  • Automatic Signal Recognition with AI Machine Learning and RTL-SDR
  • Integrive-100: A Standalone MIMO SDR for Real-Time Precision
• 安全分析与研究
  • EDR对抗策略概览——攻防博弈的艺术
• 吾爱破解论坛
  • 心流鼠标手势已上架火狐商店
• 看雪学苑
  • 特别预警｜开发者请注意：使用OpenAI Codex 可能被攻击
  • 今晚7点！安全圈顶流 “养虾局”：AI Agent 安全养虾实战，教你敏捷落地
  • 苹果紧急发布WebKit安全修复，同源策略绕过漏洞影响iOS/macOS
• Black Hills Information Security, Inc.
  • How to Lead Effective Tabletops
• 代码卫士
  • 简单的自定义字体渲染即可投毒 ChatGPT、Claude、Gemini 等 AI 系统
  • File Browser 满分漏洞可用于完全控制管理员权限
• 安全内参
  • 知名巨头近8万台设备所有数据被攻击者一键清空
  • 特朗普政府澄清无意让私营公司直接参与进攻性网络行动
• 漕河泾小黑屋
  • 鹈鹕、Three.js 与 Rebecca
• 威努特安全网络
  • 煤矿行业数据备份与恢复：从被动应对走向主动建设
• 先进攻防
  • 硅谷一线工程师已经集体换语言了，而你还在用 Python 让 AI 写代码
• 黑鸟
  • 美以空袭疑似炸死了伊朗黑客组织头目
• 青衣十三楼飞花堂
  • 无数挖坑题的反面
• 丁爸 情报分析师的工具箱
  • 【资料】美以伊战争动态
• 奇安信 CERT
  • 今日（2026年3月18日）OpenClaw 最新安全动态总结
• 信安之路
  • 这类漏洞危害有点低，SRC 好像不收录！
• 天黑说嘿话
  • Claude悄悄更新了Skills生成器，这绝对是一次史诗级升级。
• 君哥的体历
  • 大模型业务隔离与公共WiFi安全合规挑战｜总第310周
• 安全圈
  • 【安全圈】“ AI 刺客”漏洞披露：小字等方式伪装实现执行恶意代码
  • 【安全圈】亲俄黑客：已成功入侵乌克兰所有地区监控摄像头
  • 【安全圈】以色列多个情报和核位置坐标涉嫌数据泄露
• 微步在线
  • 真快！网安人又开始备战了
• 补天平台
  • 人生第一洞·补天生日季·赢13周年定制鼠标垫！
• XCTF联赛
  • SUCTF 2026 落幕，F1ux战队夺冠！
• 字节跳动安全中心
  • 火山引擎ArkClaw开启安全专测！顶尖赏金与限量周边奉上！
• 中国信息安全
  • 专题·原创 | 《中华人民共和国网络安全法》修改的背景、内容、创新之处及实施路径研究
  • 专家解读 | 筑牢数据产权制度基石 护航数据要素价值释放
  • 最高法：审理未成年人“充值”“打赏”案件应充分考虑各种因素综合判断
  • 前沿 | OpenClaw爆火背后：个人Agent狂欢更需警惕安全风险
• 默安科技
  • AI+安全，问鼎国际！默安科技斩获日内瓦国际发明展金奖
• 极客公园
  • OpenClaw 爆火之后，我体验了全球第一个 AI 员工
  • 「推理之王」黄仁勋：你们都误会了，1 万亿美元其实很保守
  • 王兴兴：今年机器人会比博尔特更快；QClaw 即将公测，微信入口全面升级；AI 大厂月薪三万疯抢文科生 | 极客早知道
• dotNet安全矩阵
  • 一文读懂 .NET 中的全局 Global.asax 文件
  • 从会话管理模式解读 .NET 身份验证绕过漏洞
• 阿里安全响应中心
  • 校企联动，实战赋能 | “阿里安全课堂——网络安全实战课”启动仪式顺利举行
• 百度安全应急响应中心
  • 百度“龙虾”全家桶开张 🦞 安全虾正式上岗！
  • 养龙虾，别“虾”浪！直击龙虾市集 PLUS「安全实战工坊」！
• 嘶吼专业版
  • AI时代中国网络安全产业的五年变局|| 网络安全投融资的残酷分流
  • 嘶吼安全动态｜360回应“安全龙虾”私钥泄露：已吊销证书，系发布失误微博Delta工业通信系统曝高危漏洞
• 数世咨询
  • 智能体时代 漏洞管理要跃迁到10.0版本
  • RSAC 2026创新沙盒 | Charm Security：构建面向新型诈骗的AI反欺诈平台
• 火绒安全
  • 火绒小问答——「企业版」升级提示需要SHA-2签名补丁
  • 诚邀渠道合作伙伴共启新征程
• 枇杷熟了
  • 枇杷熟了-全球网络安全日报2026-03-18
• 慢雾科技
  • SlowMist × Bitget AI 安全报告：把钱交给“龙虾”等 AI Agent 真的安全吗？
• 京东安全应急响应中心
  • 春日活动开启 漏洞挖掘奖励翻倍！
• ChaMd5安全团队
  • 2026SUCTF Writeup by Mini-Venom
• 360数字安全
  • 政企"养虾"遭遇安全暗礁？360终端安全智能体为"龙虾"穿上防弹衣
• 情报分析师
  • "伊朗无迫切威胁"，一份情报评估如何在战争前夜被扔进废纸篓
• 威胁猎人Threat Hunter
  • 【信贷欺诈】2026年消费贷骗贷新变化：“真实补缴”成为主流手法
• 迪哥讲事
  • 【SRC实战】JS逆向到成功注入
• 安全行者老霍
  • 人工智能驱动的机器人入侵 GitHub Actions Workflows
• Qualys Security Blog
  • 5 Steps to Turn Compliance Checks into Audit Outcomes
• 国家互联网应急中心CNCERT
  • 网络安全信息与动态周报2026年第11期（3月9日-3月15日）
• DEF CON Announcements!
  • Call for Hosts: Hacker Jeopardy at DEF CON Singapore
• 字节跳动技术团队
  • 如何让你的 Agent 更准确：MCP 工具设计技巧
  • 【养虾人必读】告别黑盒！让你的 OpenClaw 像水晶一样透明
• 云鼎实验室
  • 铸刃止戈，以智御危｜第二届腾讯云黑客松智能渗透挑战赛等你来战！
• Over Security - Cybersecurity news aggregator
  • Aura confirms data breach exposing 900,000 marketing contacts
  • Russia-linked hackers use advanced iPhone exploit to target Ukrainians
  • CISA orders feds to patch Zimbra XSS flaw exploited in attacks
  • DHS nominee Mullin pressed on restoring CISA staffing
  • US intelligence chief grilled on absence of election threats in security assessment
  • ConnectWise patches new flaw allowing ScreenConnect hijacking
  • Bank software vendor Marquis says more than 670,000 impacted by August breach
  • Ransomware gang exploits Cisco flaw in zero-day attacks since January
  • Cyble and Optiv Partner to Bring Digital Risk Protection to Managed Security Operations
  • Storm-2561 e il SEO poisoning: così con falsi client VPN rubano credenziali
  • Marquis: Ransomware gang stole data of 672K people in cyberattack
  • Apple corregge WebKit senza aggiornare iOS: debuttano i Background Security Improvements
  • Russians caught stealing personal data from Ukrainians with new advanced iPhone hacking tools
  • CISA official says agency has not seen uptick in cyber threats amid Iran war
  • Inside DarkSword: A New iOS Exploit Kit Delivered Via Compromised Legitimate Websites
  • New “Darksword” iOS exploit used in infostealer attack on iPhones
  • The Refund Fraud Economy: Exploiting Major Retailers and Payment Platforms
  • Nordstrom's email system abused to send crypto scams to customers
  • Handala, cosa sapere del cyber gruppo iraniano che attacca l’Occidente
  • Moscow seeks to limit internet to state-approved websites amid ongoing outages
  • Agentic AI Run Fraud Campaigns Earning 4.5 Times More: Interpol
  • AI-Powered Cyber Warfare: How Autonomous Attack Agents Are Changing the Threat Landscape
  • The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico
  • Maxi truffe travestite da informazioni finanziarie sfruttano l’advertising di Meta: come proteggersi
  • L’AI nella kill chain: i vantaggi e le perplessità nella guerra in Iran
  • How a Ukrainian Vishing Ring Stole €2M From EU Citizens — and Nearly Got Away
  • How to Reduce MTTR in Your SOC with Better Threat Intelligence
  • La sicurezza dell’Active Directory come pilastro della cyber security
  • Transparent COM instrumentation for malware analysis
  • Fusion Fireside #17: Inside the Chinese Smishing Triad with Gary Warner
  • CRIL Flags Growing Threat of Middle East Cyber Attacks and Hacktivist Campaigns
  • How Cortex XDR BIOC Rules Could Become an Attack Surface
  • ‘Give to Gain’ is Relevant for Security and Resilience: Bonnie Butlin, Chats with TCE
  • FBI Intensifies Crackdown on Thai Scam Centers Targeting Americans
  • Aura - 903,080 breached accounts
  • Crypto e-commerce platform Bitrefill accuses North Korea of stealing 18,500 purchase records
  • Apple pushes first Background Security Improvements update to fix WebKit flaw
  • Rischio AI: falle in Amazon Bedrock, LangSmith e SGLang
• ICT Security Magazine
  • Supply chain software, attacco npm PyPI: 454.000 pacchetti malevoli e il primo worm autoreplicante che ha cambiato tutto
  • Data Breach sanitari: minacce informatiche e protezione dati personali nel sistema sanitario italiano
• JUMPSEC
  • ALBIROX Malware Analysis
• SANS Internet Storm Center, InfoCON: green
  • Scans for "adminer", (Wed, Mar 18th)
  • ISC Stormcast For Wednesday, March 18th, 2026 https://isc.sans.edu/podcastdetail/9854, (Wed, Mar 18th)
• Have I Been Pwned latest breaches
  • Aura - 903,080 breached accounts
• Schneier on Security
  • Meta’s AI Glasses and Privacy
• Instapaper: Unread
  • Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
  • Mac Imaging Made Easy with Fuji
  • A Study in DFIR Open-Source, Enterprise, and the Art of Analysis
  • Looks Can Lie Is That Really an NVMe Drive
• TorrentFreak
  • Cloudflare Challenges Legality of Italy’s “Piracy Shield”, Appeals €14 Million Fine
• Trend Micro Research, News and Perspectives
  • Why East-West Visibility Matters for Grid Security
  • From Misconfigured Spring Boot Actuator to SharePoint Exfiltration: How Stolen Credentials Bypass MFA
• Security Affairs
  • U.S. CISA adds Microsoft SharePoint and Zimbra  flaws to its Known Exploited Vulnerabilities catalog
  • Researchers warn of unpatched, critical Telnetd flaw affecting all versions
  • CVE-2026-3888: Ubuntu Desktop 24.04+ vulnerable to Root exploit
  • Robotic surgery firm Intuitive reports data breach after targeted phishing attack
  • Tracking the Iran War: A Month of Escalation and Regional Impact
• Securityinfo.it
  • DarkSword: exploit chain iOS tra zero-day, spyware e cybercrime finanziario
• The Hacker News
  • OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs
  • Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access
  • Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE
  • Claude Code Security and Magecart: Getting the Threat Model Right
  • 9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors
  • Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels
  • Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
  • Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
• NetSPI
  • Meet NetSPI’s Modern Pentesting Experience: Use Case-Driven, AI-Accelerated
• The Register - Security
  • Okta made a nightmare micromanager for your AI agents
  • State snoops and spyware vendors planting info-stealing malware on iPhones, Google warns
  • Amazon security boss says crims abused max-security Cisco firewall flaw weeks before disclosure
  • North Korea's 100,000-strong fake IT worker army rake in $500M a year for Kim Jong Un
  • Britain's satellite-watching gap to be plugged with £17.5M eyeball in Cyprus
  • Iran's cyberattack against med tech firm is 'just the beginning'
  • Linux Foundation kicks off effort to shield FOSS maintainers from AI slop bug reports
  • Japan to allow ‘proactive cyber-defense’ from October 1st
• DEFION Research Labs
  • Ruckus Unleashed: Multiple vulnerabilities exploited
  • Pwn2Own Automotive 2024: Hacking the Autel MaxiCharger
  • Pwn2Own Automotive 2024: Hacking the JuiceBox 40
  • Pwn2Own Automotive 2024: Hacking the ChargePoint Home Flex (and their cloud...)
  • DoNex/DarkRace Ransomware Decryptor
  • CVE-2024-20693: Windows cached code signature manipulation
  • Bringing process injection into view(s): exploiting all macOS apps using nib files
  • Don’t Talk All at Once! Elevating Privileges on macOS by Audit Token Spoofing
  • Getting SYSTEM on Windows in style
  • Technical analysis of the Genesis Market
  • Bad things come in large packages: .pkg signature verification bypass on macOS
  • Pwn2Own Miami 2022: ICONICS GENESIS64 Arbitrary Code Execution
  • Pwn2Own Miami 2022: Unified Automation C++ Demo Server DoS
  • Pwn2Own Miami 2022: AVEVA Edge Arbitrary Code Execution
  • Process injection: breaking all macOS security layers with a single vulnerability
  • Pwn2Own Miami 2022: Inductive Automation Ignition Remote Code Execution
  • Pwn2Own Miami 2022: OPC UA .NET Standard Trusted Application Check Bypass
  • CoronaCheck App TLS certificate vulnerabilities
  • Sandbox escape + privilege escalation in StorePrivilegedTaskService
  • Proctorio Chrome extension Universal Cross-Site Scripting
  • Zoom RCE from Pwn2Own 2021
  • Adobe Acrobat privilege escalation
  • iOS VPN support: 3 different bugs
  • Sign in with Apple - authentication bypass
  • Jenkins - authentication bypass
  • DNS rebinding for HTTPS
  • Spring Security - insufficient cryptographic randomness
  • XenServer - path traversal leading to authentication bypass
  • Volkswagen Auto Group MIB infotainment system - unauthenticated remote code execution as root
  • NAPALM - command execution on NAPLM controller from host
  • MySQL Connector/J - Unexpected deserialisation of Java objects
  • Ansible - command execution on Ansible controller from host
  • Observium - unauthenticated remote code execution
  • cSRP/srpforjava - obtaining of hashed passwords
  • StartEncrypt - obtaining valid SSL certificates for unauthorized domains
• Yak Project
  • 前端加密测不动？全局热加载帮你自动接管签名流程
• Security Weekly Podcast Network (Audio)
  • Language of the Board as CISO-Board Time Falls Short and CISOs Struggle with Risk - Ben Wilcox - BSW #439