[每日信息流] 2026-02-05

[chainreactorbot]

每日安全资讯（2026-02-05）

• 奇安信攻防社区
  • 某金融官网SQL注入bypass阿里云盾
• Doonsec's feed
  • 开源供应链安全新挑战：AI编码助手扩展的隐蔽风险与深度检测实践
• Tenable Blog
  • LookOut: Discovering RCE and Internal Access on Looker (Google Cloud & On-Prem)
• SecWiki News
  • SecWiki News 2026-02-04 Review
• 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
  • 360入选“数据安全服务机构推荐单位”名单
  • Moltbot AI 助手企业部署引发数据安全隐患 或致API密钥等敏感数据泄露
• 安全客-有思想的安全新媒体
  • 科技云报到：AI撕掉数字时差：“极致全球化”已无退路
  • “Exfil Out&Look”漏洞致攻击者可通过OWA隐秘窃取邮件
  • 新型高级Web后门潜入通信基础设施，利用高危漏洞将电话系统变为持久化后门
  • 暗网现新型工业控制系统攻击框架，直指能源基础设施
  • 微软新版Windows 11更新悄然收紧存储设置权限
  • Apache Syncope修复高危登录跨站脚本及外部实体注入漏洞
  • Notepad++被劫持国家级攻击者投毒更新包，持续数月作恶
  • Open VSX供应链攻击事件，黑客利用遭攻陷开发者账户传播GlassWorm恶意程序
  • WiFi劫持风险，海康威视修复DS-3WAP系列无线接入点命令注入漏洞
  • 安全鸿沟持续扩大—为何66%的企业无法实时检测云威胁
  • 数字签名安全军备竞赛—企业电子签名平台如何筑牢2026年网络威胁防线
• Recent Commits to cve:main
  • Update Wed Feb 4 11:23:18 UTC 2026
• Microsoft Security Blog
  • Detecting backdoored language models at scale
• Private Feed for M09Ic
  • bolucat released 202602041959 at bolucat/Archive
  • spf13 starred firecrawl/firecrawl
  • kpcyrd starred jannic/rp2040-panic-usb-boot
  • esrrhs starred itismoej/pingtunnel-client
  • esrrhs contributed to esrrhs/pingtunnel
  • pydantic released v1.54.0 at pydantic/pydantic-ai
  • OpenAEV-Platform released 2.1.4 at OpenAEV-Platform/openaev
  • esrrhs starred BurntSushi/toml
  • ZeddYu starred HKUDS/nanobot
  • pydantic released v1.53.0 at pydantic/pydantic-ai
  • CHYbeta starred NetSPI/gcpwn
  • mgeeky starred ioncodes/SilentLoad
  • PrefectHQ released 3.6.16.dev6 at PrefectHQ/prefect
  • niudaii starred passer-W/ctfSolver
  • gh0stkey starred milanvarady/Applite
  • 4ra1n forked 4ra1n/ctfSolver from passer-W/ctfSolver
  • 4ra1n starred passer-W/ctfSolver
  • Rvn0xsy starred ReFirmLabs/binwalk
  • zema1 starred libtom/libtomcrypt
  • WAY29 forked WAY29/claude-code-hub from ding113/claude-code-hub
  • Y4er starred NodeSeekDev/NodeScriptKit
• Insinuator.net
  • Capture Bumble Bluetooth Traffic with Wireshark
• Bug Bounty in InfoSec Write-ups on Medium
  • How I hacked a website just by looking at the source code Part-2
  • This Mobile App Trusted My Phone More Than It Should Have ⚠️
  • 1. Web Cache Deception When Private User Data Becomes Public
  • How to Hack Swagger UI Complete Guide.
  • I Followed the Password Reset Flow — and Ended Up Resetting Everyone’s Password
• Reverse Engineering
  • Resurrecting Crimsonland
  • Reverse Engineered SynthID's Text Watermarking in Gemini
• Malwarebytes
  • Grok continues producing sexualized images after promised fixes
  • Firefox is giving users the AI off switch
• Exploit-DB.com RSS Feed
  • [remote] windows 10/11 - NTLM Hash Disclosure Spoofing
  • [remote] Redis 8.0.2 - RCE
  • [webapps] OctoPrint 1.11.2 - File Upload
  • [remote] Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE
  • [webapps] aiohttp 3.9.1 - directory traversal PoC
  • [webapps] FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
  • [local] Docker Desktop 4.44.3 - Unauthenticated API Exposure
• 黑海洋Wiki | Web开发工具包 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台
  • 美国报社《华盛顿邮报》解雇三分之一员工
  • 马斯克成全球首个身家突破8000亿美元的人
• 奇客Solidot–传递最新科技情报
  • 附近星系发现一颗类地行星
  • 分析 Notepad++ 的供应链攻击
  • LibreOffice 26.2 释出
  • ZetaSQL 更名为 GoogleSQL
  • 沃尔玛市值突破万亿美元
  • NASA 将 Artemis II 的发射时间推迟至三月
  • AI 真的是裁员的原因？
  • 8K 电视时代尚未到来
• HackerNews
  • SQL 注入漏洞影响 40,000 个 WordPress 站点
  • DockerDash 漏洞暴露 Ask Gordon AI 供应链弱点
  • 研究人员警示新型 Vect RaaS 变种出现
  • 新型窃密网络钓鱼活动瞄准企业 Dropbox 账号凭证
  • Step Finance 称高管设备遭入侵，致 4000 万美元加密货币被盗
• 安全分析与研究
  • 银狐黑产新型免杀注入型攻击样本与威胁情报
• Security Blog | Praetorian
  • Gone Phishing, Got a Token: When Separate Flaws Combine
• 黑鸟
  • FBI未能解锁开启了锁定模式的苹果手机
• Black Hills Information Security, Inc.
  • When the SOC Goes to Deadwood: A Night to Remember
• 威努特安全网络
  • 行业首创！威努特一体化方案双倍守护工业主机安全
  • 威努特全面参与中关村论坛系列活动——AI+能源发展大会
• 安全客
  • 代码暴减99%！港大开源“纳米级OpenClaw”，仅4000行代码复刻OpenClaw核心战力！
• 青衣十三楼飞花堂
  • 2026年西城初中数学与几十年前的粗浅比较
• 安全内参
  • 智能必须内置安全！美国白宫拟出台AI安全政策框架
  • 2025年全球国防网络空间情况综述（网军建设篇）
• 微步在线研究响应中心
  • 已复现！大蚂蚁 (BigAnt) 即时通讯系统任意文件上传漏洞
• 二道情报贩子
  • 你的手机 GPS 位置，运营商其实早就能精准获取
• 长亭安全应急响应中心
  • 【已复现】大蚂蚁 (BigAnt) 即时通讯系统任意文件上传漏洞
• 奶牛安全
  • 爱泼斯坦邮件原文（2007年9月-2007年10月）第一批
• 安全研究GoSSIP
  • G.O.S.S.I.P 阅读推荐 2026-02-04 辨认“变色龙”APP
• Shostack & Friends Blog
  • Adam Featured on the AppSec Weekly Podcast
• 奇安信 CERT
  • 【已复现】Microsoft Office 安全功能绕过漏洞(CVE-2026-21509)安全风险通告第二次更新
• 代码卫士
  • AI 助手OpenClaw 易遭一次点击 RCE 攻击
  • Apache Syncope 漏洞可用于劫持用户会话
• 君哥的体历
  • 信息安全实践：等保系统管理员职责落地、DMZ代理架构解析与敏感文档防泄追踪｜总第307周
• 信息安全国家工程研究中心
  • 工业和信息化部等八部门联合发文 推进汽车数据高效便利安全跨境流动
• 网络空间安全科学学报
  • 2025年 第3卷 第4期
• 安全圈
  • 【安全圈】爆火 AI 智能体 OpenClaw 被发现严重漏洞，可传播 / 植入 macOS 病毒
  • 【安全圈】西班牙财政部已就“超 4700 万人信息泄露”传闻展开调查
  • 【安全圈】Fancy Bear 利用微软 Office 漏洞对乌克兰及欧盟发动网络攻击
• 数世咨询
  • 制造业勒索软件威胁持续升级：2026 年趋势与洞察
• 安全牛
  • 93%企业第三方服务成攻击入口，传统边界防御已死？
  • 72款App被点名：这些高频违规项你家产品中招了吗？；工业和信息化部等八部门联合发布新版汽车数据出境安全指引| 牛览
• 中国信息安全
  • 专题·回顾与展望 | 2025年中国网络与信息法治建设回顾与趋势展望
  • 国家安全部：“三招”教你护好数字安全
  • 专家解读 | 余晓晖：规范“指尖政务”，以制度创新破解基层减负难题
  • 通知 | 3项网络安全国家标准获批发布
  • 通知 | 网安标委发布《网络安全标准实践指南——网络数据标签标识技术要求》
  • 通知 | 网安标委下达7项网络安全推荐性国家标准计划
• 极客公园
  • 苹果 Xcode 终于引入 AI，「Agentic Coding」攻入「果系」开发者大本营
  • 雨之灵动：如何在六个月内从 0 到 1 落地爆款 AI 潮玩
  • 官方发文规范「隐藏式门把手」；传小米今年推 NAS 产品；传游戏行业税率增加，腾讯股价一度大跌｜极客早知道
• 嘶吼专业版
  • Moltbot AI助手企业部署引发数据安全隐患 或致API密钥等敏感数据泄露
  • 紧急预警! 钓鱼邮件破4.25亿+银狐黑产肆虐，邮件安全方案速收
• 腾讯安全威胁情报中心
  • 警惕你的Skills：OpenClaw开源生态skills风险分析
• 看雪学苑
  • PageCache详细分析(读写/写回) 基于 Linux 6.12.32版本
  • 杀毒软件竟成“投毒”帮凶？印度eScan更新服务器遭黑
  • 顶尖硕博战队亲授：30小时教你进阶CTF-密码学
• 微步在线
  • 微步云沙箱S重磅更新，专治高对抗钓鱼邮件！
  • 微步NGTIP获网安产业创新发展联盟“创新成果奖”
• 复旦白泽战队
  • 访谈资讯｜张谧教授就“低俗导向AI生成提示词”现象答南都记者问
• 补天平台
  • 新刊赠书！《奇安信攻防社区·2025专刊》，AI安全风向标！
• 字节跳动安全中心
  • 共建开源生态安全！ByteSRC正式启动开源项目漏洞收录计划！
• 火绒安全
  • 火绒小问答 ——「个人版」功能使用类top问题解答
  • 春醒万物生 护网正当时
  • 诚邀渠道合作伙伴共启新征程
• ChaMd5安全团队
  • 2026阿里CTF Writeup by Mini-Venom
• 美团技术团队
  • 互动有奖 | 美团技术年货加更，活动沉淀来啦！
• 墨菲安全
  • AI Agent失控风险：OpenClaw从提示词注入到skill投毒
• 迪哥讲事
  • 通过路径遍历所造成的信息泄露
• 字节跳动技术团队
  • TOS Vectors + TLS Trace：打造更高效、更智能的存储 SDK 工厂
• 360数字安全
  • 实力双认证！360揽获卓越贡献奖，入选数据安全建设推荐单位
  • 360亮相香港“AI+政务”技术论坛，助力政务效率全面升级
• Over Security - Cybersecurity news aggregator
  • Hackers compromise NGINX servers to redirect user traffic
  • Critical n8n flaws disclosed along with public exploits
  • Hackers publish personal information stolen during Harvard, UPenn data breaches
  • Protecting the Big Game: A Threat Assessment for Super Bowl LX
  • Taiwanese national sentenced to 30 years for running darknet Incognito Market
  • WhatsApp introduce le impostazioni restrittive dell’account: come attivarle
  • CISA: VMware ESXi flaw now exploited in ransomware attacks
  • Exclusive: US used cyber weapons to disrupt Iranian air defenses during 2025 strikes
  • Ukraine tightens controls on Starlink terminals to counter Russian drones
  • CISA warns of five-year-old GitLab flaw exploited in attacks
  • The Double-Edged Sword of Non-Human Identities
  • Speaking the Language of BLE Wearables - Analysis with Frida and ESP32
  • EDR killer tool uses signed kernel driver from forensic software
  • New Amaranth Dragon cyberespionage group exploits WinRAR flaw
  • Research: Predator spyware can turn off Apple indicators showing when microphone, camera are in use
  • Olimpiadi Milano-Cortina sotto attacco DDoS: qual è la vera minaccia
  • Microsoft rolls out native Sysmon monitoring in Windows 11
  • Ransomware Attacks Have Surged 30% Since Q4 2025
  • Owner of Incognito dark web drugs market gets 30 years in prison
  • Il mystery shopping in azienda, fra supervisione e privacy dei lavoratori
  • IA agentica, nuovo complice degli hacker: il rischio scorciatoia nella programmazione
  • Il mistery shopping in azienda, fra supervisione e privacy dei lavoratori
  • An Analysis of the BabLock Ransomware
  • AAA cercasi igiene cyber nel settore sanitario sotto attacco
  • Release Notes: Workflow Improvements, MISP Integration & 2,000+ New Detections
  • Shaping Shadows: Breaking Down New ShadowSyndicate Methods and Infrastructure
  • Coinbase confirms insider breach linked to leaked support tool screenshots
• Qualys Security Blog
  • TruConfirm: Ending Vulnerability Guesswork with Proof inside ETM
• 安全行者老霍
  • 开源AI渗透测试工具正变得令人不安地强大
• ICT Security Magazine
  • Tsurugi Linux: l’arsenale Open source italiano per la cybersecurity
  • Business Impact Analysis e Supply Chain per la NIS2
• 国家互联网应急中心CNCERT
  • 网络安全信息与动态周报2026年第5期（1月26日-2月1日）
• Coding Horror
  • Launching The Rural Guaranteed Minimum Income Initiative
• SANS Internet Storm Center, InfoCON: green
  • Malicious Script Delivering More Maliciousness, (Wed, Feb 4th)
  • ISC Stormcast For Wednesday, February 4th, 2026 https://isc.sans.edu/podcastdetail/9794, (Wed, Feb 4th)
• 云鼎实验室
  • 于新加坡见未来：腾讯云安全在AAAI 2026办了场可信AI智能体全球研讨
• Troy Hunt's Blog
  • Weekly Update 489
• Schneier on Security
  • US Declassifies Information on JUMPSEAT Spy Satellites
• The Register - Security
  • AWS intruder achieved admin access in under 10 minutes thanks to AI assist, researchers say
  • Critical SolarWinds Web Help Desk bug under attack
  • Nitrogen ransomware is so broken even the crooks can't unlock your files
  • Universal £7,500 payout offered to PSNI staff over major data breach
  • Clouds rush to deliver OpenClaw-as-a-service offerings
• TorrentFreak
  • NVIDIA: Contact With Anna’s Archive Doesn’t Prove Copyright Infringement
• bellingcat
  • Made in the USA: How American-Built Weapons Have Wrought Destruction in Gaza
• Tor Project blog
  • New Alpha Release: Tor Browser 16.0a2
• 希潭实验室
  • 第157篇：希水涵Web日志分析工具V0.32版本更新 | 一键日志分析、异常访问识别、IP 与流量可视化、报告生成
• Deeplinks
  • Smart AI Policy Means Examing Its Real Harms and Benefits
• Blackhat Library: Hacking techniques and research
  • what would attacker do with a first preimage attack on sha256?
• Technical Information Security Content & Discussion
  • Recreating uncensored Epstein PDFs from raw encoded attachments... or trying to, anyway
  • 2026: New N8N RCE Deep Dive into CVE-2026-25049
  • Kernel-Level Stealthy Observation of TTY Streams
• Information Security
  • Google cybersecurity certificate
• Computer Forensics
  • Forensic Examiner for the Fire Marshal
• The Hacker News
  • Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models
  • DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files
  • China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns
  • Orchid Security Introduces Continuous Identity Observability for Enterprise Applications
  • The First 90 Seconds: How Early Decisions Shape Incident Response Investigations
  • Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers
  • Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions
  • CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog
• Deep Web
  • Anyone remember DeepDotWeb?
  • .clos and .luky links
  • No hitmen?
• Your Open Hacker Community
  • How can I use the cloud for cracking?
  • hey how can i modify screen time?
  • Help regarding Hashcat
• Security Affairs
  • CVE-2025-22225 in VMware ESXi now used in active ransomware attacks
  • Taiwanese operator of Incognito Market sentenced to 30 years over $105M darknet drug ring
  • Paris raid on X focuses on child abuse material allegations
  • GreyNoise tracks massive Citrix Gateway recon using 63K+ residential proxies and AWS
  • Microsoft: Info-Stealing malware expands from Windows to macOS
• netsecstudents: Subreddit for students studying Network Security and its related subjects
  • Would you buy a plug-and-play T-Pot honeypot mini appliance? Looking for feedback.
• Social Engineering
  • The "Tolerance Trap": Engineering Consent through Neural Overwrites
  • Social Engineering Presentations
• 安全攻防团队
  • 招人啦！腾讯云安全运营岗位（深圳/武汉）
• Security Weekly Podcast Network (Audio)
  • Unexamined Leadership Behaviors as CEOs and CISOs Balance Cybersecurity Investments - Hacia Atherton - BSW #433