[每日信息流] 2025-10-07

# 每日安全资讯（2025-10-07）

- SecWiki News
  - [ ] [SecWiki News 2025-10-06 Review](http://www.sec-wiki.com/?2025-10-06)
- Doonsec's feed
  - [ ] [OpSalwarKameez24-1: Super-Star](https://mp.weixin.qq.com/s?__biz=Mzg4NzU4MDE5NQ==&mid=2247484626&idx=1&sn=92c6930a29014d1edf6f7c26fa8b53fa)
  - [ ] [开放一天](https://mp.weixin.qq.com/s?__biz=MzU2MDYxNDQ4Ng==&mid=2247484573&idx=1&sn=0fd8312697cd98baa5745a70782b4dcb)
  - [ ] [设备在内网，如何从公网访问它？内网穿透真的很香！](https://mp.weixin.qq.com/s?__biz=MzIyMzIwNzAxMQ==&mid=2649471038&idx=1&sn=25fcca6b57e1772689e128a48887b2f2)
  - [ ] [注意！你天天用的鼠标，可能在偷偷录你说话](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451182920&idx=1&sn=299fa013bc20266e1067d2eae66e99c6)
  - [ ] [突发！128亿，数据备份巨头并购数据隐私管理明星厂商！](https://mp.weixin.qq.com/s?__biz=MzkzNjE5NjQ4Mw==&mid=2247545438&idx=1&sn=8fd69c9b7a54c75e97d0dbd6ba4ca0a6)
  - [ ] [中秋节快乐！](https://mp.weixin.qq.com/s?__biz=Mzg2NTk4MTE1MQ==&mid=2247488023&idx=1&sn=e7fe8219459cb36604b1cfe32e3ca06a)
  - [ ] [【游戏逆向】Unity+Lua端游协议封包分析初探之AssetStudio反编译Lua](https://mp.weixin.qq.com/s?__biz=MzkyNjY3OTI4Ng==&mid=2247485229&idx=1&sn=cf247bed0bb53068a5d8a5e8662fa369)
  - [ ] [网络安全公司招投标所需产品资质一览](https://mp.weixin.qq.com/s?__biz=MzI3NzM5NDA0NA==&mid=2247492093&idx=1&sn=0d5288ff87a71e73f40b5a6b90aec815)
  - [ ] [AI与黑客的终极对决：速看HexStrike AI如何重塑渗透测试？](https://mp.weixin.qq.com/s?__biz=MzkyMTYyOTQ5NA==&mid=2247487553&idx=1&sn=49ac93e35b3c95a3a270aaf0547c3d4d)
  - [ ] [Gartner发布2025中国网络安全技术成熟度曲线](https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655292622&idx=1&sn=b1205b18e85b62a093e2eb6b269843b6)
  - [ ] [AI时代的安全未来：利用AI原生打破网络杀伤链](https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655292622&idx=2&sn=9883f4d9fcba61003d4c6357de654d53)
  - [ ] [假期港股看点](https://mp.weixin.qq.com/s?__biz=MzkzMjIwMDY4Nw==&mid=2247486184&idx=1&sn=3b17c68363111f1f050b3adfa71ee3f8)
  - [ ] [捆绑LetsVPN安装程序银狐最新攻击样本分析](https://mp.weixin.qq.com/s?__biz=MzA4ODEyODA3MQ==&mid=2247493591&idx=1&sn=187d9350ac428bd6bcc66a2b8f92b155)
  - [ ] [俄绝密级资料外泄？暗网现“柳叶刀-3”巡飞弹技术文档兜售信息](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247514274&idx=1&sn=8b2edf0aa45352ec56db97b353ab520f)
  - [ ] [【安全圈】多人因贩卖个人信息获刑：通过“小红书”寻找客户，查询信息530余条](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072069&idx=1&sn=bfb8a7e2f5a3b7543d048ac9d51823ac)
  - [ ] [【安全圈】黑客组织勒索39家企业，泄露思科、谷歌及全球航空公司失窃数据](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072069&idx=2&sn=3ad6f6f17217e44e8055a65dd0751026)
  - [ ] [【安全圈】又一起针对第三方的黑客攻击：雷诺英国公司部分客户数据遭窃](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072069&idx=3&sn=8b0468cc42064cad2588c57885634ce1)
  - [ ] [TSN—— 时间同步类标准协议：内容、作用与关键术语问答](https://mp.weixin.qq.com/s?__biz=MzIzOTc2OTAxMg==&mid=2247560477&idx=1&sn=91b798248bc3bfb3dee1b58df6980fc7)
  - [ ] [拆解高通自动驾驶域控制器](https://mp.weixin.qq.com/s?__biz=MzIzOTc2OTAxMg==&mid=2247560477&idx=2&sn=b5e114cc5b8fd888fd1f1819fac8b420)
  - [ ] [【资料5篇】犯罪因素、环境、时空全面分析](https://mp.weixin.qq.com/s?__biz=MzkxMDIwMTMxMw==&mid=2247494962&idx=1&sn=26ba08c7dee1ce292483da2cd3729039)
  - [ ] [Redis曝高危漏洞（CVE-2025-49844，CVSS 10.0）可导致远程代码执行](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651328427&idx=1&sn=e706caef26a8a6b587b711f368f8f2d6)
  - [ ] [Unity引擎漏洞可导致数百万游戏面临本地代码执行风险](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651328427&idx=2&sn=20ec85c35193e4a42470ed65afa128ba)
  - [ ] [云端幽灵：将AWS X-Ray武器化为C2隐蔽通道](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651328427&idx=3&sn=8e48d49a47c9f5893ef3e361fe664a69)
  - [ ] [2025中秋致谢 | 致深耕安全领域的伙伴，月圆情更浓，安全同共建！](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458601625&idx=1&sn=96d973714d0be329e83848c5b8f9c9cb)
  - [ ] [常见系统的默认口令](https://mp.weixin.qq.com/s?__biz=Mzk1NzgzMjkxOQ==&mid=2247485442&idx=1&sn=17a01211ad6bc6d527a0466dacb1e616)
  - [ ] [SDL序列课程-第58篇-安全需求-文件上传需求-上传文件类型限制](https://mp.weixin.qq.com/s?__biz=Mzk0NzE5NjI0Mg==&mid=2247484903&idx=1&sn=1a84b5227d11f9671720871884f3b835)
  - [ ] [Gemini CLI 到您的 Kali Linux 终端以自动执行渗透测试任务](https://mp.weixin.qq.com/s?__biz=MzI2MDg3MTM3Nw==&mid=2247484651&idx=1&sn=17f3dfee8b68489940570c32d538f6b7)
  - [ ] [雅虎商业平台密码重置漏洞分析与利用](https://mp.weixin.qq.com/s?__biz=Mzg4NjY3OTQ3NA==&mid=2247487226&idx=1&sn=c23aeefbdbbbad583c10ceb7814af719)
  - [ ] [带你解锁编码新世界！-随波逐流CTF编码工具使用教程115 -关键字密码（Nihilist Cipher）](https://mp.weixin.qq.com/s?__biz=MzU2NzIzNzU4Mg==&mid=2247491178&idx=1&sn=8145e0ec8edb24ac56f27a8a90c2552f)
  - [ ] [记某众测任意用户密码重置漏洞挖掘](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247498363&idx=1&sn=8cc94bffd169214ad2bab275c2506a6b)
  - [ ] [CVE-2025-20362 和 CVE-2025-20333  思科 0day漏洞分析](https://mp.weixin.qq.com/s?__biz=MzAxMjYyMzkwOA==&mid=2247532972&idx=1&sn=9f82a679db67ff1b554ff196ec247023)
  - [ ] [自从进了这个京东捡漏福利群，拿了很多0元商品，还有很多秒杀呢！](https://mp.weixin.qq.com/s?__biz=MzAxMjYyMzkwOA==&mid=2247532972&idx=2&sn=a74d480641333dc32b56fa21e904b30d)
  - [ ] [各位黑客！中秋节快乐！送上我拍的美女！](https://mp.weixin.qq.com/s?__biz=MzU2NDY2OTU4Nw==&mid=2247524134&idx=1&sn=46e095f2277cf5988fc2b4f2adf7c2bd)
  - [ ] [祝大家中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzkwODI1ODgzOA==&mid=2247507259&idx=1&sn=461ef15cd40fe1bf956ff9a76c449337)
  - [ ] [2025 AI智能体平台终极选型指南：三步框架+11大多代理深度对比](https://mp.weixin.qq.com/s?__biz=Mzg5MDQyMzg3NQ==&mid=2247485086&idx=1&sn=04ddb339a38dadd677646261a4756642)
  - [ ] [每周论文分享-3](https://mp.weixin.qq.com/s?__biz=Mzk0NTI1MzU0MQ==&mid=2247485627&idx=1&sn=28795f239b8c6ecb1509fbd2086bc0b4)
  - [ ] [专题·反电诈 | 通信短信息领域执法边界及争议处理分析](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250339&idx=1&sn=fa24e1b3357f34b1367b85dcc6a4d1ed)
  - [ ] [专家解读｜程学旗：新框架实现三个“转变”，构建我国人工智能安全治理新格局](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250339&idx=2&sn=df03d98f02e2f22d8a0526ab5a3c2d8b)
  - [ ] [观点 | 构建更有温度的智能社会](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250339&idx=3&sn=abc105356120b3a8df5690bc43655d12)
  - [ ] [全网首发！Kali Linux 2025工具指南-发现篇](https://mp.weixin.qq.com/s?__biz=MzkxMzIwNTY1OA==&mid=2247514258&idx=1&sn=1a1f8a2f562b7d3113b5803bd1b367f0)
  - [ ] [【中秋活动】暗月安全攻防课](https://mp.weixin.qq.com/s?__biz=MzAwMjc0NTEzMw==&mid=2653589128&idx=1&sn=9a5ac9139be143ed2339fe70391f7388)
  - [ ] [佳節共賞天上月](https://mp.weixin.qq.com/s?__biz=MzI2MjcwMTgwOQ==&mid=2247492702&idx=1&sn=9b574ff63967a3b06ac6e536514aa9f0)
  - [ ] [猎洞网安挖洞培训国庆末尾优惠上车-文末抽奖星球！](https://mp.weixin.qq.com/s?__biz=MzkyNTUyNTE5OA==&mid=2247488648&idx=1&sn=9d45adb0c63b719ce28a00039ed354b8)
  - [ ] [SRC | 一次路径可控造成0click的账号接管](https://mp.weixin.qq.com/s?__biz=MzkyNTUyNTE5OA==&mid=2247488648&idx=2&sn=5f3f5edea308e8b460c753b393cf7803)
  - [ ] [威零安全祝大家中秋快乐！](https://mp.weixin.qq.com/s?__biz=Mzg4Mzg4OTIyMA==&mid=2247485915&idx=1&sn=9b818dde829be4d7340e5eb5020d7fe7)
  - [ ] [墨云科技 | 桂香浮动，月圆网安](https://mp.weixin.qq.com/s?__biz=MzU5ODE2NDA3NA==&mid=2247497061&idx=1&sn=3004f0d314523d124df0ca4419f91fe7)
  - [ ] [月光所照，皆是团圆；心之所向，皆是家国。](https://mp.weixin.qq.com/s?__biz=MzkxNjU2NjY5MQ==&mid=2247516814&idx=1&sn=19267ff60aa78fb9aa7c4e505b4bcd14)
  - [ ] [中秋节 | 但愿人长久,千里共婵娟](https://mp.weixin.qq.com/s?__biz=MzI0NjAyMjU4MA==&mid=2649597558&idx=1&sn=2112afa39a00852f287f4a7d913b12e2)
  - [ ] [间谍行动背后：美国最令人不安的十个秘密计划](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650562262&idx=1&sn=293a23fdbf581995fc3ce2cb3154a54e)
  - [ ] [解密台美百亿农产品采购案，一场精心策划的“经济独幕剧”。](https://mp.weixin.qq.com/s?__biz=MzkwNzM0NzA5MA==&mid=2247511484&idx=1&sn=c8aa385923b73b5fbe7495b712b87ef4)
  - [ ] [月满人团圆，家国共安康！](https://mp.weixin.qq.com/s?__biz=MzkwMTMyMDQ3Mw==&mid=2247601705&idx=1&sn=cd5d5e2fbd4b0b6bcf85af4234db98b6)
  - [ ] [星途CTF即将开启！10月25日，共赴网络安全竞技之旅！](https://mp.weixin.qq.com/s?__biz=Mzk2NDI0MjUyNQ==&mid=2247485528&idx=1&sn=04942607e20aab23c70d815c56f9de80)
  - [ ] [对Okta Verify 绕过的安全研究](https://mp.weixin.qq.com/s?__biz=MzI4NTcxMjQ1MA==&mid=2247617240&idx=1&sn=14a9bc41c36f569a6a1eef5b1c9ae28c)
  - [ ] [白帽一百祝您中秋节快乐！](https://mp.weixin.qq.com/s?__biz=MzIxMDYyNTk3Nw==&mid=2247515267&idx=1&sn=0f4e380ec5e3b2cf4316c4590cfe88f6)
  - [ ] [全球活跃的APT战争升级：AI钓鱼、内核后门、云间谍，12大组织的致命新玩法](https://mp.weixin.qq.com/s?__biz=Mzg3OTYxODQxNg==&mid=2247486856&idx=1&sn=cb711f59d85cc18d91c025b5932a583b)
  - [ ] [月圆桂香满，家阖人安康！](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489385&idx=1&sn=3bb329f091c84d771b3186980502c9b5)
  - [ ] [CTF精英特训营开营须知！](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489385&idx=2&sn=0017d1808cbe61fda1b9caeef977a672)
  - [ ] [喜乐中秋，花好月圆，T00ls㊗️大家2025中秋节快乐！🎆🎆🎆](https://mp.weixin.qq.com/s?__biz=Mzg3NzYzODU5NQ==&mid=2247485451&idx=1&sn=9ca65a82e388acf0ad598be68d24ba66)
  - [ ] [大模型在软件工程中的真实能力边界](https://mp.weixin.qq.com/s?__biz=Mzk0MzY1NDc2MA==&mid=2247484481&idx=1&sn=7ce2c4aae76f4171bacfb9220d0a223e)
  - [ ] [2025 各大厂中秋礼盒价值排行榜](https://mp.weixin.qq.com/s?__biz=Mzg2NDYwMDA1NA==&mid=2247545629&idx=1&sn=53f3e648511a6201275018b921c144e3)
  - [ ] [2025 大厂中秋礼盒卷疯了，你最pick哪家的心意？](https://mp.weixin.qq.com/s?__biz=Mzg2NDYwMDA1NA==&mid=2247545629&idx=2&sn=246d0cefbf555980cf09a8c936156937)
  - [ ] [赛博研究院祝您中秋节快乐！](https://mp.weixin.qq.com/s?__biz=MzUzODYyMDIzNw==&mid=2247520292&idx=1&sn=dfefeca22bb6ba9f4ad76ad7e2c25245)
  - [ ] [如何一周自学网络安全？这份学习顺序送给你](https://mp.weixin.qq.com/s?__biz=Mzk0MzcyNjMyNg==&mid=2247486477&idx=1&sn=c580c40fcfc589da0867e08e4cf5b345)
  - [ ] [网安人躲不开的 6 个痛苦瞬间：看似很酷，实则满是无奈](https://mp.weixin.qq.com/s?__biz=MzkzNzk5MjEyNg==&mid=2247486032&idx=1&sn=96b32077e633f6bf174efcfcd410bc91)
  - [ ] [中秋佳节，月圆人团圆](https://mp.weixin.qq.com/s?__biz=MzI1OTExNDY1NQ==&mid=2651621922&idx=1&sn=52161827fef243a6ba0f1d6a1a43326f)
  - [ ] [【工具推荐】Obex - DLL Blocking](https://mp.weixin.qq.com/s?__biz=MzI2Mjk4NjgxMg==&mid=2247483761&idx=1&sn=1314f1584c24d05fc31b8b13a307e05d)
  - [ ] [中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzU2MTQwMzMxNA==&mid=2247543071&idx=1&sn=f6a391fa455c82c7b63969be4b0c0303)
  - [ ] [AOSP Pixel4 Android13系统定制(编译问题解决)](https://mp.weixin.qq.com/s?__biz=Mzg2NzUzNzk1Mw==&mid=2247498767&idx=1&sn=89114aff3aeaff0bb936e3d5b867fa10)
  - [ ] [Wireshark & Packetdrill | TCP Quick ACK（3）](https://mp.weixin.qq.com/s?__biz=MzA5NTUxODA0OA==&mid=2247493551&idx=1&sn=5f11cb3ad23af8cebdd11cca9fddb529)
  - [ ] [月照渊亭，共赏婵娟丨渊亭科技祝大家中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzIzNjE1ODE2OA==&mid=2660192401&idx=1&sn=9841be1def2d1eaad33f4d6f9d0b57de)
  - [ ] [InForSec祝全球华人学者中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzA4ODYzMjU0NQ==&mid=2652318071&idx=1&sn=fd2ea3df0e15cca3b51922abcacd4d4a)
  - [ ] [祝大家中秋节快乐，万事如意、身体健康！](https://mp.weixin.qq.com/s?__biz=MzAwMzAwOTQ5Nw==&mid=2650941858&idx=1&sn=f03d72c7400b40bd72ff894e5874844e)
  - [ ] [中秋特辑:中外AI大战!让AI们通过MCP玩帝国时代2](https://mp.weixin.qq.com/s?__biz=MzkyOTc0NDY2Nw==&mid=2247485632&idx=1&sn=5099048f6d21234acfacb5f13d2c7545)
  - [ ] [中秋｜月满中秋 花好月圆](https://mp.weixin.qq.com/s?__biz=MzIxNDIzNTcxMg==&mid=2247509492&idx=1&sn=70ef0c9a94422c81e8d02d25ac79a232)
  - [ ] [11号截止，限时领取](https://mp.weixin.qq.com/s?__biz=MzU4OTg4Nzc4MQ==&mid=2247506670&idx=1&sn=f3e2fe8fef7d0845e4f0ed791b5e1d4e)
  - [ ] [为什么充电时用手机会触电致死？](https://mp.weixin.qq.com/s?__biz=MzU2MjU2MzI3MA==&mid=2247484981&idx=1&sn=a97370d5e28ffcc26d4f1903dd79e5fd)
  - [ ] [三种常见无线路由器网线连接方式，你家用哪种？](https://mp.weixin.qq.com/s?__biz=MzU2MjU2MzI3MA==&mid=2247484981&idx=2&sn=ceb530ec8576a0eb4fa4056081d828b7)
  - [ ] [DXMSRC|明月照山河，白帽守星河](https://mp.weixin.qq.com/s?__biz=Mzg2MjIzODI3Mw==&mid=2247493068&idx=1&sn=a8db483515acd15c09c46e95640d209a)
  - [ ] [速通国赛尝试：AI+IDA+GDB+MCP=自动PWN！](https://mp.weixin.qq.com/s?__biz=MzI5NDg0ODkwMQ==&mid=2247486677&idx=1&sn=48ce9da93bf2cd50291439278e72e4f8)
  - [ ] [网安原创文章推荐【2025/10/5】](https://mp.weixin.qq.com/s?__biz=MzAxNzg3NzMyNQ==&mid=2247490515&idx=1&sn=4767352f3b9b86631323197bb7669330)
  - [ ] [🌙 月圆共此时，携手启新程](https://mp.weixin.qq.com/s?__biz=MzU1Njk1NTYzOA==&mid=2247491898&idx=1&sn=367350f027b28c5681bc1312c989c808)
  - [ ] [别再靠人肉运维了！这份2025年SOC报告揭示：AI如何让你的团队战斗力翻倍](https://mp.weixin.qq.com/s?__biz=Mzk1NzM4NzMyMw==&mid=2247485107&idx=1&sn=7ccdbc8054fbd2575ae40ec947983a91)
  - [ ] [全球安全实验室祝您中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzU1ODk1MzI1NQ==&mid=2247493129&idx=1&sn=d48477b436d01f30a675fd575715f86b)
  - [ ] [中秋节 | 月满无虞，链安相伴！](https://mp.weixin.qq.com/s?__biz=MzU1OTc2MzE2Mg==&mid=2247489916&idx=1&sn=de8cd1798d5e8914e8a91440aadf3818)
  - [ ] [中秋｜团圆佳节，安全与共](https://mp.weixin.qq.com/s?__biz=MjM5ODI2MTg3Mw==&mid=2649820693&idx=1&sn=d4ea1b646fac397406e6800ee204ea66)
  - [ ] [月满山河，“安” 伴左右｜这个中秋，让安全与美好同行](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247582335&idx=1&sn=43bae252974fda7dfb7660cac61c4f20)
  - [ ] [.NET 实战攻防电子报刊，从内网基础到高阶实战！](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500748&idx=1&sn=0e6903ff69f0e0370b0c28df1369681a)
  - [ ] [.NET内网实战：.NET 通过APC注入绕过终端安全防护](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500748&idx=2&sn=bc3f1c3930a87dd21e7e32cdb94e0fba)
  - [ ] [.NET内网实战：.NET 红队通过 SharpZipLib 批量压缩打包文件](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500748&idx=3&sn=a25ac436682ab22db9e5bc5a6795d9a8)
  - [ ] [中秋月圆，极验护 “安”](https://mp.weixin.qq.com/s?__biz=MzI2MDE5MTQxNg==&mid=2649723921&idx=1&sn=8f3d85ef1a640262f5067af4d5245a5b)
  - [ ] [以全维度安全 · 守护每一份圆满 | 中新赛克祝您中秋快乐](https://mp.weixin.qq.com/s?__biz=Mzk0ODUwNTg0Ng==&mid=2247490412&idx=1&sn=88d9f5e714a3ff2bb768db64dd8d4b6b)
  - [ ] [技术深扒：黑客如何利用NeutralinoJS和Unicode障眼法，打造“合法”木马？](https://mp.weixin.qq.com/s?__biz=MzA4NTY4MjAyMQ==&mid=2447901421&idx=1&sn=ab7a9ebe21673ff77dc06d0010356e96)
  - [ ] [月满中秋！明月海天阔·万里山河长](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612578&idx=1&sn=76165abda0f88b0eca98622f5233fef5)
  - [ ] [CISO为何成了美国最不受欢迎的高管职位？](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612578&idx=2&sn=635d908d60f9fa38a94d3cb622c64232)
  - [ ] [新型FileFix社工攻击诱导用户安装StealC信息窃取恶意软件](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612578&idx=3&sn=d394376e07a6ba56eb1daa7b7837437a)
  - [ ] [渗透利器 | 一款New自动化加解密Tools（附下载）](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612578&idx=4&sn=491328e86ef3c02ebd5fda8250fe3225)
  - [ ] [今日，中秋](https://mp.weixin.qq.com/s?__biz=MzkyNDUxNTQ2Mw==&mid=2247485841&idx=1&sn=60329dad350f8d2b6ff5c1243754464f)
  - [ ] [万元以内，设计师电脑这样配就对啦！](https://mp.weixin.qq.com/s?__biz=MzIzMzI1Njg3Mw==&mid=2651930196&idx=1&sn=0a3dad9e82a64da3519a9551aea8de71)
  - [ ] [美国海军转型动向与战略发展研究报告](https://mp.weixin.qq.com/s?__biz=MzkyMjY1MTg1MQ==&mid=2247496444&idx=1&sn=5e6720edaa42cf6ccba4cf8916b2b69b)
  - [ ] [2025美CSBA智库《和平解决：重构美国对台防务战略》](https://mp.weixin.qq.com/s?__biz=MzkyMjY1MTg1MQ==&mid=2247496444&idx=2&sn=879e265d714e9d553fabe2142c1d1a46)
  - [ ] [中秋 | 月满中秋，情满家国；一轮清辉，万缕安康！](https://mp.weixin.qq.com/s?__biz=Mzk0ODI4MDI4Nw==&mid=2247494738&idx=1&sn=6faf3b60356a1d97093d5d3de96eab7e)
  - [ ] [中秋佳节 | 家家团圆，祖国昌盛](https://mp.weixin.qq.com/s?__biz=MzkxMzAzMjU0OA==&mid=2247553303&idx=1&sn=bec84e98c3d45b2ec92f680d73cac23d)
  - [ ] [中秋 | 月满人团圆，信守万家安。](https://mp.weixin.qq.com/s?__biz=MzU4MzY5MzQ4MQ==&mid=2247542843&idx=1&sn=0594a6172562420723469c1e4a9a4b40)
  - [ ] [笑死](https://mp.weixin.qq.com/s?__biz=MzIxNTIzNTExMQ==&mid=2247492256&idx=1&sn=2d411634ec28ab5dadbdca75276c4b69)
  - [ ] [【证书挖掘】手把手EDUSRC、CNVD挖洞技巧分享](https://mp.weixin.qq.com/s?__biz=Mzk0Mzc1MTI2Nw==&mid=2247497673&idx=1&sn=c7239ae86170e19a08bdb41175266a47)
  - [ ] [无糖信息祝您中秋快乐 | 玉露生凉秋满怀，天涯此夕共团圆](https://mp.weixin.qq.com/s?__biz=MzAxMzkzNDA1Mg==&mid=2247514425&idx=1&sn=1709c59c5bad07b9d1216a17ca50d12b)
  - [ ] [安全守护 阖家团圆|海云安祝您中秋节快乐！](https://mp.weixin.qq.com/s?__biz=MzI2MjY2NTM0MA==&mid=2247492930&idx=1&sn=9ade8a3cf40e7a5d26e8f5b254b499bf)
  - [ ] [赛宁网安祝您中秋节快乐！](https://mp.weixin.qq.com/s?__biz=MzA4Mjk5NjU3MA==&mid=2455490204&idx=1&sn=534d344e5887b31a80eefe71a0cf581b)
  - [ ] [双节同庆丨神州万里庆华诞，家和国盛万事兴](https://mp.weixin.qq.com/s?__biz=Mzk0NTU0ODc0Nw==&mid=2247494478&idx=1&sn=3b9c19f0035a1df6f7bb599d466770cf)
  - [ ] [国庆网安 | 赋能国密安全，助力安全可信密改](https://mp.weixin.qq.com/s?__biz=MzI2MzU0NTk3OA==&mid=2247507210&idx=1&sn=ac8df8f53d3d2a7fea29e79d9b4962b1)
  - [ ] [国庆网安专栏 | 织密“安全网”，推进医疗行业信息安全建设](https://mp.weixin.qq.com/s?__biz=MzI2MzU0NTk3OA==&mid=2247507210&idx=2&sn=bd51af1a75a7b667de3bbfb5a642b211)
  - [ ] [中秋节：团圆时的安心由我们守护](https://mp.weixin.qq.com/s?__biz=MzA4MTE0MTEwNQ==&mid=2668670769&idx=1&sn=674b90c02ad2837ea2ab41d861f87bb5)
  - [ ] [【20251006】网安市场周度监测Vol.277](https://mp.weixin.qq.com/s?__biz=MzA5OTg4MzIyNQ==&mid=2247504264&idx=1&sn=ec483e10ccbb2b420945add2cf8ae501)
  - [ ] [一款完全开源的漏洞挖掘神器 - LoveJS](https://mp.weixin.qq.com/s?__biz=MzU2NzY5MzI5Ng==&mid=2247507507&idx=1&sn=9bc55c5d1b0476ceb62a9f474b2bd308)
  - [ ] [“一周懿语”丨第四十二期](https://mp.weixin.qq.com/s?__biz=MjM5NTE0MjQyMg==&mid=2650633501&idx=1&sn=3a2f77ff8319d1377db7189e4eba7c7d)
  - [ ] [中秋团员](https://mp.weixin.qq.com/s?__biz=Mzg3NTU3NTY0Nw==&mid=2247490144&idx=1&sn=6194c1ad82a870fb616e9ca3f4ef1121)
  - [ ] [兄弟别搞](https://mp.weixin.qq.com/s?__biz=MzAwMjQ2NTQ4Mg==&mid=2247500579&idx=1&sn=92f477e711f06592ce2f4f677e5600c8)
  - [ ] [SCI论文一直投不中？保姆级投稿套餐来了！润色、选刊、投稿、返修，最快3个月中刊！](https://mp.weixin.qq.com/s?__biz=MzAwMjQ2NTQ4Mg==&mid=2247500579&idx=2&sn=d4a18a74bc739a42aea31667ce7746dc)
  - [ ] [中秋快乐，阖家团圆！](https://mp.weixin.qq.com/s?__biz=MzIxNTQxMjQyNg==&mid=2247494420&idx=1&sn=d3ab496d4ceb76c5eebe115951837c49)
  - [ ] [中秋团圆](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250328&idx=1&sn=89aedef8d0da623774dbc17bf70f1576)
  - [ ] [花好月圆 中秋快乐](https://mp.weixin.qq.com/s?__biz=MzAxMzg0NjY2NA==&mid=2247493606&idx=1&sn=e9d8c61aa7cf39d016de8f7bb6e9b820)
  - [ ] [史上最狂APT扫描器！3分钟扒光国家级攻击队底裤，连CIA后门都藏不住！](https://mp.weixin.qq.com/s?__biz=MzkxNzY5MTg1Ng==&mid=2247492927&idx=1&sn=44a26fbb33a65b76e4bfa7ad1571c7cc)
  - [ ] [速进！全平台项目群“安服崽”交流群](https://mp.weixin.qq.com/s?__biz=MzkxNzY5MTg1Ng==&mid=2247492927&idx=2&sn=05468d50e570af61ab77a37e2bcae740)
  - [ ] [中秋节 | 月照渊亭，共赏婵娟](https://mp.weixin.qq.com/s?__biz=Mzg2NTYyODgyNg==&mid=2247508196&idx=1&sn=918544289a1b131a53a2e45565abac3e)
  - [ ] [又一年，千里婵娟，万里归心，共赴一场月圆 | 最是团圆中秋夜](https://mp.weixin.qq.com/s?__biz=Mzg4MDU0NTQ4Mw==&mid=2247533940&idx=1&sn=f4b32a2ae82fa9bbee3a567e6e801bd1)
  - [ ] [魔方安全祝您月满人圆，阖家安康！](https://mp.weixin.qq.com/s?__biz=MzI3NzA5NDc0MA==&mid=2649292459&idx=1&sn=c9dee26d74166d1a71f233d9fa653bd4)
  - [ ] [中秋节｜月圆人团圆 中秋共此时](https://mp.weixin.qq.com/s?__biz=MjM5NzE0NTIxMg==&mid=2651136299&idx=1&sn=b42183e1f4bc43a2d4e8991892d8f6dc)
  - [ ] [揽一轮明月，筑网络安全](https://mp.weixin.qq.com/s?__biz=Mzk0MDQ5MTQ4NA==&mid=2247488165&idx=1&sn=7eabddaff349e76135d98da80045d3e8)
  - [ ] [月满山河，人间团圆](https://mp.weixin.qq.com/s?__biz=MzI4MDE2MzA4Mw==&mid=2667651267&idx=1&sn=e662817094e1c9657115d7f12b117b31)
  - [ ] [中秋快乐丨安心相伴 月满情深](https://mp.weixin.qq.com/s?__biz=MzA5MTM1MjMzNA==&mid=2653426786&idx=1&sn=b5bcd216dce4d8ed146da14a7780ef2e)
  - [ ] [每天一个网络知识：什么是TCP/IP模型？](https://mp.weixin.qq.com/s?__biz=MzUyNTExOTY1Nw==&mid=2247531904&idx=1&sn=933c4925ec8aa9f9aefac265169a4624)
  - [ ] [中秋佳节 | 又一年，千里共婵娟](https://mp.weixin.qq.com/s?__biz=Mzk0MjI4MzA5MQ==&mid=2247485330&idx=1&sn=597057d7c1e4e1490fd9faae47eb486c)
  - [ ] [团圆共此时，美好长相伴：中秋快乐！](https://mp.weixin.qq.com/s?__biz=Mzg2MDg0ODg1NQ==&mid=2247548861&idx=1&sn=2e39bfa8f653d80ebebec2882a092aeb)
  - [ ] [月满人间，桂香遥寄丨云天安全祝您中秋安康，阖家团圆](https://mp.weixin.qq.com/s?__biz=MzI2NDYzNjY0Mg==&mid=2247502520&idx=1&sn=2634470c5cde8cb7d5ebb4064cb0548e)
  - [ ] [【中秋】花好月圆日 中秋喜相逢](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649254761&idx=1&sn=c1ce8741bb3e8174c66524e27162462f)
  - [ ] [后渗透神器-V1.30](https://mp.weixin.qq.com/s?__biz=MzkyNzIxMjM3Mg==&mid=2247491459&idx=1&sn=80cc661126bafdd46863704a080a1130)
  - [ ] [皇帝新装：CBT与网络钓鱼演练实质上基本无效](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247514268&idx=1&sn=b011cb285d443676fb41ed060fee39d4)
  - [ ] [美国移民与海关执法局拟组建全天候社交媒体监控团队](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247514268&idx=2&sn=63c826094822c1076e854b762bb75678)
  - [ ] [5th域安全微讯早报【20251006】239期](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247514268&idx=3&sn=a0642ad559d1e012c25f6ac2219a238f)
  - [ ] [【暗网快讯】20251006期](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247514268&idx=4&sn=cde66d23f82ab3bdc17ad66b49ab7a80)
  - [ ] [奇安信集团祝您中秋快乐 阖家幸福](https://mp.weixin.qq.com/s?__biz=MzU0NDk0NTAwMw==&mid=2247629299&idx=1&sn=c4205ffeb8f08ed017cb32addec46f7b)
  - [ ] [亚信安全祝大家中秋快乐、阖家团圆](https://mp.weixin.qq.com/s?__biz=MjM5NjY2MTIzMw==&mid=2650625565&idx=1&sn=32ebfdf8463d0fe0fdc2c89aee2e7ce8)
  - [ ] [中秋快乐｜绿盟君邀您举杯共赏盛世华章](https://mp.weixin.qq.com/s?__biz=MjM5ODYyMTM4MA==&mid=2650473315&idx=1&sn=7db4cc111475a04a02dcc3dc210935e4)
- Recent Commits to cve:main
  - [ ] [Update Mon Oct  6 11:26:23 UTC 2025](https://github.com/trickest/cve/commit/ca8c8a73a131e630ba0953cfa3a2451d9c6d9960)
- Tenable Blog
  - [ ] [How Exposure Management Helped Three Companies Transform Their Cybersecurity Program](https://www.tenable.com/blog/how-exposure-management-helped-three-companies-transform-their-cybersecurity-program)
  - [ ] [CVE-2025-61882: Frequently Asked Questions About Oracle E-Business Suite (EBS) Zero-Day and Associated Vulnerabilities](https://www.tenable.com/blog/cve-2025-61882-faq-oracle-e-business-suite-zero-day-cl0p-and-july-2025-cpu)
- Microsoft Security Blog
  - [ ] [Inside Microsoft Threat Intelligence: Calm in the chaos](https://www.microsoft.com/en-us/security/security-insider/threat-landscape/inside-microsoft-threat-intelligence-calm-in-chaos#overview-video)
  - [ ] [Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability](https://www.microsoft.com/en-us/security/blog/2025/10/06/investigating-active-exploitation-of-cve-2025-10035-goanywhere-managed-file-transfer-vulnerability/)
- Trustwave Blog
  - [ ] [Manufacturing: Executives Voice Cyberattack Readiness Concerns](https://www.trustwave.com/en-us/resources/blogs/trustwave-blog/manufacturing-executives-voice-cyberattack-readiness-concerns/)
- Private Feed for M09Ic
  - [ ] [itm4n released 2025.10.06-1 at itm4n/PrivescCheck](https://github.com/itm4n/PrivescCheck/releases/tag/2025.10.06-1)
  - [ ] [lz520520 starred ParkSnoopy/rust_llvm-arkari_ollvm](https://github.com/ParkSnoopy/rust_llvm-arkari_ollvm)
  - [ ] [bolucat released 202510062034 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202510062034)
  - [ ] [oiweiwei released v1.2.9 at oiweiwei/go-msrpc](https://github.com/oiweiwei/go-msrpc/releases/tag/v1.2.9)
  - [ ] [mgeeky starred FutureComputing4AI/EMBER2024](https://github.com/FutureComputing4AI/EMBER2024)
- Bug Bounty in InfoSec Write-ups on Medium
  - [ ] [Actuator Unleashed: A Guide to Finding and Exploiting Spring Boot Actuator Endpoints](https://infosecwriteups.com/actuator-unleashed-a-guide-to-finding-and-exploiting-spring-boot-actuator-endpoints-29252dcd9d79?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [Week 12— Async API Calls: fetch, Axios, and Promises](https://infosecwriteups.com/week-12-async-api-calls-fetch-axios-and-promises-f8da63c5d91c?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [SQHell: Manually hunting SQL injection with detailed explanation](https://infosecwriteups.com/sqhell-manually-hunting-sql-injection-with-detailed-explanation-8fd24360c65e?source=rss----7b722bfd1b8d--bug_bounty)
- Securelist
  - [ ] [How we trained an ML model to detect DLL hijacking](https://securelist.com/building-ml-model-to-detect-dll-hijacking/117565/)
  - [ ] [Detecting DLL hijacking with machine learning: real-world cases](https://securelist.com/detecting-dll-hijacking-with-machine-learning-in-kaspersky-siem/117567/)
- GuidePoint Security
  - [ ] [Cybersecurity Awareness Month: 3 Simulations that Reveal the Human Weaknesses in Your Security Posture](https://www.guidepointsecurity.com/blog/cam-3-simulations-that-reveal-human-weakness/)
- Hexacorn
  - [ ] [ntprint.exe lolbin](https://www.hexacorn.com/blog/2025/10/06/ntprint-exe-lolbin/)
- Malwarebytes
  - [ ] [Phishers target 1Password users with convincing fake breach alert](https://www.malwarebytes.com/blog/news/2025/10/phishers-target-1password-users-with-convincing-fake-breach-alert)
  - [ ] [What&#8217;s there to save about social media? (Lock and Code S06E20)](https://www.malwarebytes.com/blog/podcast/2025/10/whats-there-to-save-about-social-media-lock-and-code-s06e20)
  - [ ] [How to set up two-factor authentication (2FA) on your Facebook account](https://www.malwarebytes.com/blog/news/2025/10/how-to-set-up-two-factor-authentication-2fa-on-your-facebook-account)
  - [ ] [A week in security (September 29 &#8211; October 5)](https://www.malwarebytes.com/blog/news/2025/10/a-week-in-security-september-29-october-5)
- Malware-Traffic-Analysis.net - Blog Entries
  - [ ] [2025-10-01: Possible Rhadamanthys disguised as cracked version of popular software](https://www.malware-traffic-analysis.net/2025/10/01/index.html)
- 黑海洋 - Wiki
  - [ ] [Sora Code Finder：Sora 邀请码查找器 实时获取最新 OpenAI Sora 邀请码](https://blog.upx8.com/4862)
- 奇客Solidot–传递最新科技情报
  - [ ] [如果 AI 泡沫破裂？](https://www.solidot.org/story?sid=82486)
  - [ ] [天文学家发现至今信号最强的奇异电波圈](https://www.solidot.org/story?sid=82485)
  - [ ] [2025 年诺贝尔生理学或医学奖授予了免疫系统研究员](https://www.solidot.org/story?sid=82484)
  - [ ] [如何阻止 AI 设计出有害蛋白质](https://www.solidot.org/story?sid=82483)
- 黑鸟
  - [ ] [注意！你天天用的鼠标，可能在偷偷录你说话](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451182920&idx=1&sn=299fa013bc20266e1067d2eae66e99c6)
- 锦行科技
  - [ ] [中秋快乐，阖家团圆！](https://mp.weixin.qq.com/s?__biz=MzIxNTQxMjQyNg==&mid=2247494420&idx=1&sn=d3ab496d4ceb76c5eebe115951837c49)
- 安全小飞侠
  - [ ] [祝大家中秋节快乐，万事如意、身体健康！](https://mp.weixin.qq.com/s?__biz=MzAwMzAwOTQ5Nw==&mid=2650941858&idx=1&sn=f03d72c7400b40bd72ff894e5874844e)
- 白帽100安全攻防实验室
  - [ ] [白帽一百祝您中秋节快乐！](https://mp.weixin.qq.com/s?__biz=MzIxMDYyNTk3Nw==&mid=2247515267&idx=1&sn=0f4e380ec5e3b2cf4316c4590cfe88f6)
- 吾爱破解论坛
  - [ ] [（图作者 | @Aoemax）](https://mp.weixin.qq.com/s?__biz=MjM5Mjc3MDM2Mw==&mid=2651143105&idx=1&sn=e5c65c407fb0f85eb24cd54c7e071ffc)
- 看雪学苑
  - [ ] [2025中秋致谢 | 致深耕安全领域的伙伴，月圆情更浓，安全同共建！](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458601625&idx=1&sn=96d973714d0be329e83848c5b8f9c9cb)
- 安全圈
  - [ ] [【安全圈】多人因贩卖个人信息获刑：通过“小红书”寻找客户，查询信息530余条](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072069&idx=1&sn=bfb8a7e2f5a3b7543d048ac9d51823ac)
  - [ ] [【安全圈】黑客组织勒索39家企业，泄露思科、谷歌及全球航空公司失窃数据](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072069&idx=2&sn=3ad6f6f17217e44e8055a65dd0751026)
  - [ ] [【安全圈】又一起针对第三方的黑客攻击：雷诺英国公司部分客户数据遭窃](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652072069&idx=3&sn=8b0468cc42064cad2588c57885634ce1)
- DataCon大数据安全分析竞赛
  - [ ] [月圆桂香满，家阖人安康！](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489385&idx=1&sn=3bb329f091c84d771b3186980502c9b5)
  - [ ] [CTF精英特训营开营须知！](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489385&idx=2&sn=0017d1808cbe61fda1b9caeef977a672)
- 信息安全国家工程研究中心
  - [ ] [中秋 | 工程中心祝您中秋快乐，阖家幸福！](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247501171&idx=1&sn=39ef9a8f1911ee229053edb8712402f3)
- dotNet安全矩阵
  - [ ] [.NET 实战攻防电子报刊，从内网基础到高阶实战！](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500748&idx=1&sn=0e6903ff69f0e0370b0c28df1369681a)
  - [ ] [.NET内网实战：.NET 通过APC注入绕过终端安全防护](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500748&idx=2&sn=bc3f1c3930a87dd21e7e32cdb94e0fba)
  - [ ] [.NET内网实战：.NET 红队通过 SharpZipLib 批量压缩打包文件](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500748&idx=3&sn=a25ac436682ab22db9e5bc5a6795d9a8)
- 极客公园
  - [ ] [社交媒体的黄金时代，结束了](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653087866&idx=1&sn=7af8fa8c87bf18994e230abaf97ca45e)
  - [ ] [今日迎本世纪「最晚中秋月圆」；雷军：小米17 五天销量破百万；ChatGPT 或添私信聊天功能 | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653087974&idx=1&sn=138a707f3d42bf1b212bd69f060a71c3)
- 慢雾科技
  - [ ] [🌕 祝大家中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzU4ODQ3NTM2OA==&mid=2247503448&idx=1&sn=2abc657fbe6643290c47088b3c5d9764)
- 中国信息安全
  - [ ] [专题·反电诈 | 通信短信息领域执法边界及争议处理分析](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250339&idx=1&sn=fa24e1b3357f34b1367b85dcc6a4d1ed)
  - [ ] [专家解读｜程学旗：新框架实现三个“转变”，构建我国人工智能安全治理新格局](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250339&idx=2&sn=df03d98f02e2f22d8a0526ab5a3c2d8b)
  - [ ] [观点 | 构建更有温度的智能社会](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664250339&idx=3&sn=abc105356120b3a8df5690bc43655d12)
- 情报分析师
  - [ ] [间谍行动背后：美国最令人不安的十个秘密计划](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650562262&idx=1&sn=293a23fdbf581995fc3ce2cb3154a54e)
  - [ ] [解密台美百亿农产品采购案，一场精心策划的“经济独幕剧”。](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650562262&idx=2&sn=68e8f18014fdb4d79a94124c08963d07)
- 网安国际
  - [ ] [InForSec祝全球华人学者中秋快乐！](https://mp.weixin.qq.com/s?__biz=MzA4ODYzMjU0NQ==&mid=2652318071&idx=1&sn=fd2ea3df0e15cca3b51922abcacd4d4a)
- 360数字安全
  - [ ] [月满山河，“安” 伴左右｜这个中秋，让安全与美好同行](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247582335&idx=1&sn=43bae252974fda7dfb7660cac61c4f20)
- Qualys Security Blog
  - [ ] [How to Prevent NPM Supply Chain Attacks in CI/CD Pipelines with Container Security](https://blog.qualys.com/category/product-tech)
- 迪哥讲事
  - [ ] [记某众测任意用户密码重置漏洞挖掘](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247498363&idx=1&sn=8cc94bffd169214ad2bab275c2506a6b)
- JUMPSEC
  - [ ] [JUMPSEC Continuing to Inspire Primary School Children Towards Cyber Careers](https://www.jumpsec.com/guides/jumpsec-team-meets-local-primary-school-children-to-consider-a-future-career-in-cyber-security/)
- Over Security - Cybersecurity news aggregator
  - [ ] [Red Hat data breach escalates as ShinyHunters joins extortion](https://www.bleepingcomputer.com/news/security/red-hat-data-breach-escalates-as-shinyhunters-joins-extortion/)
  - [ ] [Medusa ransomware used during exploitation of GoAnywhere file transfer bug, Microsoft says](https://therecord.media/medusa-ransomware-exploited-file-transfer)
  - [ ] [FBI, UK Gov’t urge orgs to patch Oracle E-Business vuln after alleged Clop campaign](https://therecord.media/fbi-uk-urge-orgs-to-patch-after-clop-campaign)
  - [ ] [Microsoft: Critical GoAnywhere bug exploited in ransomware attacks](https://www.bleepingcomputer.com/news/security/microsoft-critical-goanywhere-bug-exploited-in-ransomware-attacks/)
  - [ ] [Microsoft: Running multiple Office apps causes Copilot issues](https://www.bleepingcomputer.com/news/microsoft/microsoft-running-multiple-office-apps-causes-copilot-issues/)
  - [ ] [New malware leverages WhatsApp to target Brazilian government and businesses](https://therecord.media/brazil-malware-whatsapp-sorvepotel)
  - [ ] [Zeroday Cloud hacking contest offers $4.5 million in bounties](https://www.bleepingcomputer.com/news/security/zeroday-cloud-hacking-contest-offers-45-million-in-bounties/)
  - [ ] [ChatGPT Pulse is coming to the web, but no word on free or Plus roll out](https://www.bleepingcomputer.com/news/artificial-intelligence/chatgpt-pulse-is-coming-to-the-web-but-no-word-on-free-or-plus-roll-out/)
  - [ ] [OpenAI is testing ChatGPT-powered Agent Builder](https://www.bleepingcomputer.com/news/artificial-intelligence/openai-is-testing-chatgpt-powered-agent-builder/)
  - [ ] [Redis warns of critical flaw impacting thousands of instances](https://www.bleepingcomputer.com/news/security/redis-warns-of-max-severity-flaw-impacting-thousands-of-instances/)
  - [ ] [Signal calls on Germany to vote against ‘Chat Control,’ saying it would leave EU market](https://therecord.media/signal-calls-on-germany-to-vote-no-chat-control)
  - [ ] [Honeypot ed integrazione con gli LLM](https://roccosicilia.com/2025/10/06/honeypot-ed-integrazione-con-gli-llm/)
  - [ ] [Cybersecurity Awareness Month 2025: Don’t Just Be Aware, Be Ahead](https://cyble.com/blog/cybersecurity-awareness-month-2025/)
  - [ ] [Impennata delle scansioni dei portali di login di Palo Alto Networks: +500%](https://www.securityinfo.it/2025/10/06/impennata-delle-scansioni-dei-portali-di-login-di-palo-alto-networks-500/)
  - [ ] [Cybersecurity360 Awards 2025: i progetti che hanno convinto i CISO italiani](https://www.cybersecurity360.it/soluzioni-aziendali/cybersecurity360-awards-2025-i-progetti-che-hanno-convinto-i-ciso-italiani/)
  - [ ] [LinkedIn sues ProAPIs for using 1M fake accounts to scrape user data](https://www.bleepingcomputer.com/news/legal/linkedin-sues-proapis-for-using-1m-fake-accounts-to-scrape-user-data/)
  - [ ] [La cyber migliora imprese e business: come le PMI possono proteggere il futuro digitale](https://www.cybersecurity360.it/soluzioni-aziendali/la-cyber-migliora-imprese-e-business-come-le-pmi-possono-proteggere-il-futuro-digitale/)
  - [ ] [The role of Artificial Intelligence in today’s cybersecurity landscape](https://www.bleepingcomputer.com/news/security/the-role-of-artificial-intelligence-in-todays-cybersecurity-landscape/)
  - [ ] [Suspected Chinese cyber spies targeted Serbian aviation agency](https://therecord.media/suspected-chinese-spies-serbia)
  - [ ] [Microsoft Sentinel: arriva l’era degli agenti AI e della difesa predittiva](https://www.securityinfo.it/2025/10/06/microsoft-sentinel-arriva-lera-degli-agenti-ai-e-della-difesa-predittiva/)
  - [ ] [Steam and Microsoft warn of Unity flaw exposing gamers to attacks](https://www.bleepingcomputer.com/news/security/steam-and-microsoft-warn-of-unity-flaw-exposing-gamers-to-attacks/)
  - [ ] [ThreatFabric Secures Strategic Investment from OneSpan to Accelerate Global Fraud and Scam Prevention](https://www.threatfabric.com/blogs/threatfabric-secures-strategic-investment-from-onespan-to-accelerate-global-fraud-and-scam-prevention)
  - [ ] [Android and Windows gamers worldwide potentially affected by bug in Unity game engine](https://therecord.media/unity-game-engine-vulnerability-android-windows-linux-macos)
  - [ ] [XWorm malware resurfaces with ransomware module, over 35 plugins](https://www.bleepingcomputer.com/news/security/xworm-malware-resurfaces-with-ransomware-module-over-35-plugins/)
  - [ ] [Cyber Resilience Act (CRA): la svolta che cambia il volto della sicurezza dei prodotti digitali](https://www.cybersecurity360.it/legal/cyber-resilience-act-cra-la-svolta-che-cambia-il-volto-della-sicurezza-dei-prodotti-digitali/)
  - [ ] [Nudificazione digitale: perché il Garante privacy dice basta e cosa c’è dietro Clothoff](https://www.cybersecurity360.it/news/nudificazione-digitale-perche-il-garante-privacy-dice-basta-e-cosa-ce-dietro-clothoff/)
  - [ ] [Detecting DLL hijacking with machine learning: real-world cases](https://securelist.com/detecting-dll-hijacking-with-machine-learning-in-kaspersky-siem/117567/)
  - [ ] [How we trained an ML model to detect DLL hijacking](https://securelist.com/building-ml-model-to-detect-dll-hijacking/117565/)
  - [ ] [CERT-AGID 27 settembre – 3 ottobre: Weebly, tessera sanitaria e CieID sotto attacco](https://www.securityinfo.it/2025/10/06/cert-agid-27-settembre-3-ottobre-weebly-tessera-sanitaria-e-cieid-sotto-attacco/)
  - [ ] [Oracle patches EBS zero-day exploited in Clop data theft attacks](https://www.bleepingcomputer.com/news/security/oracle-patches-ebs-zero-day-exploited-in-clop-data-theft-attacks/)
- Securityinfo.it
  - [ ] [Impennata delle scansioni dei portali di login di Palo Alto Networks: +500%](https://www.securityinfo.it/2025/10/06/impennata-delle-scansioni-dei-portali-di-login-di-palo-alto-networks-500/?utm_source=rss&utm_medium=rss&utm_campaign=impennata-delle-scansioni-dei-portali-di-login-di-palo-alto-networks-500)
  - [ ] [Microsoft Sentinel: arriva l’era degli agenti AI e della difesa predittiva](https://www.securityinfo.it/2025/10/06/microsoft-sentinel-arriva-lera-degli-agenti-ai-e-della-difesa-predittiva/?utm_source=rss&utm_medium=rss&utm_campaign=microsoft-sentinel-arriva-lera-degli-agenti-ai-e-della-difesa-predittiva)
  - [ ] [CERT-AGID 27 settembre – 3 ottobre: Weebly, tessera sanitaria e CieID sotto attacco](https://www.securityinfo.it/2025/10/06/cert-agid-27-settembre-3-ottobre-weebly-tessera-sanitaria-e-cieid-sotto-attacco/?utm_source=rss&utm_medium=rss&utm_campaign=cert-agid-27-settembre-3-ottobre-weebly-tessera-sanitaria-e-cieid-sotto-attacco)
- SEI Blog
  - [ ] [Enhancing Security with Cloud Flow Logs](https://www.sei.cmu.edu/blog/enhancing-security-with-cloud-flow-logs/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updates)
- ICT Security Magazine
  - [ ] [Controlli e certificazioni in Unione Europea: AI Act, NIS2 e gestione dei rischi](https://www.ictsecuritymagazine.com/articoli/certificazioni-ue/)
  - [ ] [AI Security: Zero Knowledge Proofs vs crittografia omomorfica nel futuro dell’imaging intelligente](https://www.ictsecuritymagazine.com/articoli/zero-knowledge-proofs-ai/)
- SANS Internet Storm Center, InfoCON: green
  - [ ] [Quick and Dirty Analysis of Possible Oracle E-Business Suite Exploit Script (CVE-2025-61882) &#x5b;UPDATED&#x5b;, (Mon, Oct 6th)](https://isc.sans.edu/diary/rss/32346)
  - [ ] [ISC Stormcast For Monday, October 6th, 2025 https://isc.sans.edu/podcastdetail/9642, (Mon, Oct 6th)](https://isc.sans.edu/diary/rss/32344)
- Arturo Di Corinto
  - [ ] [Datacrazia. Politica, cultura, algoritmica e conflitti al tempo dei big data](https://dicorinto.it/articoli/recensioni/datacrazia-politica-cultura-algoritmica-e-conflitti-al-tempo-dei-big-data/)
- T00ls安全
  - [ ] [喜乐中秋，花好月圆，T00ls㊗️大家2025中秋节快乐！🎆🎆🎆](https://mp.weixin.qq.com/s?__biz=Mzg3NzYzODU5NQ==&mid=2247485451&idx=1&sn=9ca65a82e388acf0ad598be68d24ba66)
- Instapaper: Unread
  - [ ] [Se il peso della prova è 73 tera](http://www.giustiziami.it/gm/se-il-peso-della-prova-e-73-tera/)
  - [ ] [Seminario ONIF 2025 sull’informatica forense a Bari](https://www.forenser.it/seminario-onif-bari-2025-informatica-forense/)
  - [ ] [AI in Digital Forensics a Tool, not an Oracle](https://blog.elcomsoft.com/2025/10/ai-in-digital-forensics-a-tool-not-an-oracle/)
  - [ ] [DMARC Forensics un tool per verificare la compliance ed evitare problemi di spoofing](https://www.dalchecco.it/dmarcforensics-dmarc-compliance-spoofing/)
- The Hacker News
  - [ ] [New Report Links Research Firms BIETA and CIII to China’s MSS Cyber Operations](https://thehackernews.com/2025/10/new-report-links-research-firms-bieta.html)
  - [ ] [⚡ Weekly Recap: Oracle 0-Day, BitLocker Bypass, VMScape, WhatsApp Worm & More](https://thehackernews.com/2025/10/weekly-recap-oracle-0-day-bitlocker.html)
  - [ ] [5 Critical Questions For Adopting an AI Security Solution](https://thehackernews.com/2025/10/5-critical-questions-for-adopting-ai.html)
  - [ ] [Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks](https://thehackernews.com/2025/10/oracle-rushes-patch-for-cve-2025-61882.html)
  - [ ] [Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers](https://thehackernews.com/2025/10/chinese-cybercrime-group-runs-global.html)
  - [ ] [Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files](https://thehackernews.com/2025/10/zimbra-zero-day-exploited-to-target.html)
- Security Affairs
  - [ ] [Discord discloses third-party breach affecting customer support data](https://securityaffairs.com/183039/data-breach/discord-discloses-third-party-breach-affecting-customer-support-data.html)
  - [ ] [Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers](https://securityaffairs.com/183029/security/oracle-patches-critical-e-business-suite-flaw-exploited-by-cl0p-hackers.html)
  - [ ] [LinkedIn sues ProAPIs for $15K/Month LinkedIn data scraping scheme](https://securityaffairs.com/183001/security/linkedin-sues-proapis-for-15k-month-linkedin-data-scraping-scheme.html)
  - [ ] [Zimbra users targeted in zero-day exploit using iCalendar attachments](https://securityaffairs.com/183014/hacking/zimbra-users-targeted-in-zero-day-exploit-using-icalendar-attachments.html)
  - [ ] [Reading the ENISA Threat Landscape 2025 report](https://securityaffairs.com/182978/security/reading-the-enisa-threat-landscape-2025-report.html)
- Tor Project blog
  - [ ] [Arti 1.6.0 released: Circuit padding, side-channel attack mitigations, OpenTelemetry, and more.](https://blog.torproject.org/arti_1_6_0_released/)
- Schneier on Security
  - [ ] [AI in the 2026 Midterm Elections](https://www.schneier.com/blog/archives/2025/10/ai-in-the-2026-midterm-elections.html)
- Graham Cluley
  - [ ] [Discord users’ data stolen by hackers in third-party data breach](https://www.bitdefender.com/en-us/blog/hotforsecurity/discord-users-data-stolen-by-hackers-in-third-party-data-breach)
- TorrentFreak
  - [ ] [RIAA: Telegram & Discord Are Notorious Hubs For Pre-Release Music Piracy](https://torrentfreak.com/riaa-telegram-discord-are-notorious-hubs-for-pre-release-music-piracy/)
  - [ ] [LaLiga’s 360° Piracy Blitz, New Blocking Tactics & Fines, Meet Rising Disapproval](https://torrentfreak.com/laligas-360-piracy-blitz-on-off-blocking-and-fan-fines-face-growing-opposition-251006/)
- Troy Hunt's Blog
  - [ ] [Weekly Update 472](https://www.troyhunt.com/weekly-update-472/)
- The Register - Security
  - [ ] [Scattered Lapsus$ Hunters offering $10 in Bitcoin to 'endlessly harass' execs](https://go.theregister.com/feed/www.theregister.com/2025/10/06/scattered_lapsus_bitcoin_reward/)
  - [ ] [Radiant Group won't touch kids' data now, but apparently hospitals are fair game](https://go.theregister.com/feed/www.theregister.com/2025/10/06/radiant_group_hospital/)
  - [ ] [Thieves steal IDs and payment info after data leaks from Discord support vendor](https://go.theregister.com/feed/www.theregister.com/2025/10/06/discord_support_data_breach/)
  - [ ] [Jaguar Land Rover engines ready to roar again after weeks-long cyber stall](https://go.theregister.com/feed/www.theregister.com/2025/10/06/jlr_phased_production/)
  - [ ] [Clop crew hits Oracle E-Business Suite users with fresh zero-day](https://go.theregister.com/feed/www.theregister.com/2025/10/06/clop_oracle_ebs_zeroday/)
  - [ ] [Leak suggests US government is fibbing over FEMA security failings](https://go.theregister.com/feed/www.theregister.com/2025/10/06/infosec_in_brief/)
- Daniel Miessler
  - [ ] [AI Combines Tools, Operators, and Outcomes](https://danielmiessler.com/blog/ai-gives-you-outcomes?utm_source=rss&utm_medium=feed&utm_campaign=website)
- Security Weekly Podcast Network (Audio)
  - [ ] [AI & IAM: Where Security Gets Superhuman (Or Supremely Stuck) - Matt Immler, Heather Ceylan, Alexander Makarov, Nitin Raina, Dor Fledel, Aaron Parecki - ESW #427](http://sites.libsyn.com/18678/ai-iam-where-security-gets-superhuman-or-supremely-stuck-matt-immler-heather-ceylan-alexander-makarov-nitin-raina-dor-fledel-aaron-parecki-esw-427)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[每日信息流] 2025-10-07 #1007

每日安全资讯（2025-10-07）

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[每日信息流] 2025-10-07 #1007

Description

每日安全资讯（2025-10-07）

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions