[每日信息流] 2026-02-04 #1138
Description
每日安全资讯(2026-02-04)
- 先知安全技术社区
- Tenable Blog
- SecWiki News
- 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
- paper - Last paper
- Recent Commits to cve:main
- Private Feed for M09Ic
- spf13 starred sheeki03/tirith
- kpcyrd contributed to kpcyrd/debian-repro-status
- OpenAEV-Platform released 2.1.3 at OpenAEV-Platform/openaev
- xnl-h4ck3r released v8.4 at xnl-h4ck3r/waymore
- OpenAEV-Platform released 2.1.1 at OpenAEV-Platform/openaev
- bolucat released 202602032003 at bolucat/Archive
- anthropics released v2.1.30 at anthropics/claude-code
- FunnyWolf starred thedotmack/claude-mem
- jar-analyzer released 5.14 at jar-analyzer/jar-analyzer
- firecrawl released v2.8.0 at firecrawl/firecrawl
- zema1 starred SecurityCrux/secrux
- mgeeky starred CodeXTF2/Cobaltstrike_BOFLoader
- liamg contributed to infracost/proto
- OpenAEV-Platform released 2.1.0 at OpenAEV-Platform/openaev
- Mr-xn forked Mr-xn/PicList from Kuingsmile/PicList
- WAY29 starred Haleclipse/CodexDesktop-Rebuild
- pmiaowu starred GBSOSS/skill-from-masters
- PrefectHQ released 3.6.16.dev5 at PrefectHQ/prefect
- gh0stkey starred keepassxreboot/keepassxc-browser
- WAY29 starred HKUDS/nanobot
- zema1 starred RainbowDynamix/GhostKatz
- Fplyth0ner-Combie starred SigmaHQ/pySigma-backend-elasticsearch
- Microsoft Security Blog
- 奇安信攻防社区
- Horizon3.ai
- NVISO Labs
- blog.avast.com EN
- Malware-Traffic-Analysis.net - Blog Entries
- Malwarebytes
- Securelist
- print("")
- daniel.haxx.se
- HackerNews
- 黑海洋Wiki | Web开发工具包 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台
- 奇客Solidot–传递最新科技情报
- 体验盒子
- text/plain
- 腾讯玄武实验室
- 黑鸟
- 绿盟科技技术博客
- 安全内参
- 代码卫士
- 威努特安全网络
- 看雪学苑
- 360漏洞云
- 数世咨询
- CT Stack 安全社区
- 安全分析与研究
- 数据安全与取证
- 信息安全国家工程研究中心
- 安全研究GoSSIP
- 极客公园
- 安全牛
- 阿里安全响应中心
- 中国信息安全
- 安全圈
- 默安科技
- 火绒安全
- 补天平台
- 字节跳动技术团队
- 威胁猎人Threat Hunter
- OnionSec
- 360数字安全
- 楼兰学习网络安全
- 国家互联网应急中心CNCERT
- 安全419
- 安全行者老霍
- 娜璋AI安全之家
- Over Security - Cybersecurity news aggregator
- Step Finance says compromised execs' devices led to $40M crypto theft
- CISA official says CIRCIA cyber reporting update is 'weeks' away
- CISA orders federal agencies to patch exploited SolarWinds bug by Friday
- Wave of Citrix NetScaler scans use thousands of residential proxies
- Spain will ban social media for kids under 16
- CISA flags critical SolarWinds RCE flaw as exploited in attacks
- Poland detains defense ministry employee on suspicion of spying for Russia
- French police search X office in Paris, summon Elon Musk for questioning
- California city turns off Flock cameras after company shared data without authorization
- French police search X office in Paris, summons Elon Musk for questioning
- Iron Mountain: Data breach mostly limited to marketing materials
- UK investigating first suspected breach of cyber sanctions
- Il diario di bordo del CISO: costruire la propria difendibilità
- Russian state hackers exploit new Microsoft Office flaw in attacks on Ukraine, EU
- Auditing Outline. Firsthand lessons from comparing manual testing and AI security platforms
- Cyber attacco agli Uffizi: cosa impariamo per mettere in sicurezza il patrimonio culturale
- NTLM verso lo “switch-off”: Microsoft si prepara a bloccarlo di default
- AI Agent Identity Management: A New Security Control Plane for CISOs
- Hackers exploit critical React Native Metro bug to breach dev systems
- UK privacy watchdog probes Grok over AI-generated sexual images
- French police raid X offices in Paris and summon Musk for interview over child abuse material
- The Week in Vulnerabilities: Open-Sources Fixes Urged by Cyble
- Sapsan Terminal: AI-Powered BadUSB Script Generator
- French prosecutors raid X offices, summon Musk over Grok deepfakes
- 16-31 January 2026 Cyber Attacks Timeline
- Supporting Wayland’s XDG activation protocol with Gtk/Glib
- Enterprise Phishing: How Attackers Abuse Microsoft & Google Platforms
- Prove forensi negli incidenti cyber: il ruolo del personale nella loro preservazione
- Attacco hacker alla Sapienza: servizi bloccati, ma al momento non c’è rivendicazione
- The Notepad++ supply chain attack — unnoticed execution chains and new IoCs
- AI, Explain Yourself: Why Is Explainable AI (XAI) Becoming Critical for Cybersecurity?
- 迪哥讲事
- 软件安全与逆向分析
- ICT Security Magazine
- Securityinfo.it
- Future of Tech and Security: Strategy & Innovation with Raffy
- HACKMAGEDDON
- TrustedSec
- The Hacker News
- Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata
- [Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate
- Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package
- When Cloud Outages Ripple Across the Internet
- APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks
- Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox
- Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group
- Security Affairs
- U.S. CISA adds SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities catalog
- Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure
- APT28 exploits Microsoft Office flaw in Operation Neusploit
- Notepad++ infrastructure hack likely tied to China-nexus APT Lotus Blossom
- TorrentFreak
- Schneier on Security
- CyberCrime & Doing Time
- SANS Internet Storm Center, InfoCON: green
- Security Weekly Podcast Network (Audio)
- The Register - Security
- AI agents can't yet pull off fully autonomous cyberattacks - but they are already very helpful to crims
- Critical React Native Metro dev server bug under attack as researchers scream into the void
- CISA updated ransomware intel on 59 bugs last year without telling defenders
- X marks the raid: French cops swoop on Musk's Paris ops
- Microsoft finally sends TLS 1.0 and 1.1 to the cloud retirement home
- Polish cops bail 20-year-old bedroom botnet operator
- DIY AI bot farm OpenClaw is a security 'dumpster fire'
- British military to get legal OK to swat drones near bases