336 matches found
EUVD-2024-39568
Malicious code in bioql PyPI...
EUVD-2024-39564
Malicious code in bioql PyPI...
Exploit for CVE-2014-7911
Security-Data-Analysis-and-Visualization 2018-2020青年安全圈-活跃技术博主/博客 声明 所有数据均来自且仅来自公开信息,未加入个人先验知识,如有疑义,请及时联系[email protected]。 公开这批数据是为了大家一起更快更好地学习,请不要滥用这批数据,由此引发的问题,本人将概不负责。 对这批数据的分析文章首发在个人微信公众号,原文为:我分析了2018-2020年青年安全圈450个活跃技术博客和博主,转载请联系作者。 Why - 最初目的:个人日常安全阅读资源不足,需要从博客、Github、Twitter等多个数据源补充。 -...
Faraday 5.15.1
Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use...
CBP Wants New Tech to Search for Hidden Data on Seized Phones
Customs and Border Protection is asking companies to pitch tools for performing deep analysis on the contents of devices seized at the US border...
Reddit’s new AI-powered tools scan your posts to serve you better ads
Reddit has introduced two Artificial Intelligence AI tools which will use Reddit comments, posts, and conversations to help sellers make the most of the community. Reddit is a social media platform and online forum where users can share and discuss content across a wide range of topics. The...
GNU PSPP Buffer Overflow Vulnerability
GNU PSPP is a free statistical software used as an alternative to the commercial software SPSS for data analysis and statistics. GNU PSPP suffers from a buffer overflow vulnerability that originates in the parsevariablesoption function in the utilities/pspp-convert.c file. No detailed vulnerabili...
[SECURITY] Fedora 42 Update: LabPlot-2.12.0-3.fc42
LabPlot is a FREE, open source and cross-platform Data Visualization and Analysis software accessible to everyone. - High-quality Data Visualization and Plotting with just a few clicks - Reliable and easy Data Analysis and Statistics, no coding required! - Intuitive and fast Computing with...
Faraday 5.14.1
Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use...
When Blockchain Meets Crawlers: Real-Time Market Analytics in Solana NFT Markets
In this paper, we design and implement a web crawler system based on the Solana blockchain for the automated collection and analysis of market data for popular non-fungible tokens NFTs on the chain. Firstly, the basic information and transaction data of popular NFTs on the Solana chain are...
Private LoRA Fine-Tuning of Open-Source LLMs with Homomorphic Encryption
Preserving data confidentiality during the fine-tuning of open-source Large Language Models LLMs is crucial for sensitive applications. This work introduces an interactive protocol adapting the Low-Rank Adaptation LoRA technique for private fine-tuning. Homomorphic Encryption HE protects the...
Faraday 5.13.0
Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use...
Cybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind
AI is changing cybersecurity faster than many defenders realize. Attackers are already using AI to automate reconnaissance, generate sophisticated phishing lures, and exploit vulnerabilities before security teams can react. Meanwhile, defenders are overwhelmed by massive amounts of data and alert...
TSPlus Detected
This is an informational notice that the scanner was able to detect TSPlus on the target server. Note that this detection is included in the Remote Access Tools category. No source data...
These are the 10 worst PIN codes
Australian news outlet ABC NEWS analyzed a data set of 29 million 4-digit PIN numbers that people actually used to secure their devices, ATM withdrawals, building access, and more. What the outlet discovered is both expected and disappointing: Too many people use insecure PIN codes to protect...
Cisco Catalyst Center Detection
Binary data ciscocatalystcenterversion.nbin...
CISA Releases the Cybersecurity Performance Goals Adoption Report
Today, CISA released the Cybersecurity Performance Goals Adoption Report to highlight how adoption of Cybersecurity Performance Goals CPGs benefits our nation’s critical infrastructure sectors. Originally released in October 2022, CISA’s CPGs are voluntary practices that critical infrastructure...
Vulnerability in SICK OLM
SICK received a report about a vulnerability in the SICK Support Portal supportportal.sick.com, which was hosted and operated by a third-party service provider. Due to a misconfiguration, the access restriction of a NFS Network File System storage system has failed, which resulted in temporary...
The vulnerability of the data analysis tool from IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data arises due to synchronization errors when using a shared resource, allowing a malicious actor to trigger a service failure.
The vulnerability of the IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data data analysis service lies in synchronization errors when using a shared resource. Exploiting this vulnerability can allow a malicious actor to cause a service failure...
Apache Hive Code Execution Vulnerability
Apache Hive is a set of data warehouse software based on Hadoop Distributed Systems Infrastructure from the Apache Apache Foundation in the United States. The software provides a data integration approach and a high-level query language to support large-scale data analysis on Hadoop. A code...