[每日信息流] 2025-11-20

[MM0x02]

每日安全资讯（2025-11-20）

• SecWiki News
  • SecWiki News 2025-11-19 Review
• Private Feed for M09Ic
  • PrefectHQ released 3.6.3 at PrefectHQ/prefect
  • liamg starred alecthomas/participle
  • bolucat released 202511191937 at bolucat/Archive
  • kpcyrd contributed to kpcyrd/rebuilderd
  • whwlsfb contributed to jar-analyzer/jar-analyzer
  • OpenAEV-Platform released 2.0.3 at OpenAEV-Platform/openaev
  • x90skysn3k released v2.4.1 at x90skysn3k/brutespray
  • itm4n released 2025.11.19-1 at itm4n/PrivescCheck
  • kpcyrd starred dtolnay/itoa
  • memN0ps starred prove-rs/z3.rs
  • niudaii starred yhy0/passive-scan-client
  • inclusionAI released v0.3.0 at inclusionAI/AWorld
  • esrrhs starred daurnimator/lua-http
  • safedv starred joaoviictorti/rustclr
  • PrefectHQ released 3.6.3.dev3 at PrefectHQ/prefect
  • uknowsec starred NanoWraith/BlindEdr
  • WAY29 starred dongyubin/DockerHub
  • timwhitez starred NanoWraith/BlindEdr
  • wh0amitz starred NanoWraith/BlindEdr
  • pydantic released v1.20.0 at pydantic/pydantic-ai
• CXSECURITY Database RSS Feed - CXSecurity.com
  • Fortinet FortiWeb Auth-8.0.0 Bypass CVE-2025-64446
• Der Flounder
  • Granting a local user account administrator rights on a Mac which only has accounts with standard user rights
• Tenable Blog
  • Active Directory Trust Misclassification: Why Old Trusts Look Like Insecure External Trusts
• 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
  • 监管通报70款APP违法违规收集个人信息，涉及宠物服务、医疗健康、出行租车、物流查询等民生高频使用场景
  • 【梆梆安全监测】安全隐私合规监管趋势及漏洞风险报告 （1012-1025）
  • 【直播预告】大模型时代：邮件数据安全新解法
  • 1分钟选对邮件安全管理！SMC2 基础版 vs 高级版选型指南
  • Finger协议遭滥用 沦为 ClickFix 恶意软件攻击工具
  • ISC.AI 2025创新百强启幕，首创可交互榜单、报告、图谱等智能体成果
  • 高危runC漏洞曝光 黑客可突破Docker容器逃逸
  • Cloudflare全球网络服务突发中断 多国用户遭遇访问故障
• Recent Commits to cve:main
  • Update Wed Nov 19 11:48:22 UTC 2025
• Doonsec's feed
  • 汇编系列第一篇-准备工作
  • 三星手机预装以色列公司开发的AppCloud应用争议事件
  • Cloudflare全球中断事故官方复盘来了
  • EasyTools渗透测试工具箱V1.9.7更新(支持cli工具参数添加与调用功能，支持定时任务执行)
  • CVE-2025-55752：Apache Tomcat 路径遍历漏洞漏洞分析与复现（含RCE）
  • Cloudflare 2025年11月18日故障详细根因技术分析
  • 【Web逆向】反调试之跳转新标签页+dom断点vue框架定位+AntiDebug_Breaker绕过
  • 发个公众号证明还活着
  • 【APP解密系列】03 objection的简单使用
  • java-object-searcher使用的最少必要姿势
  • Tabby挖掘TongWeb链子
  • 零成本搭建开放式漏扫系统OpenVAS
  • 【SRC实战】只给了800的严重漏洞
  • 宣传一下
  • 生成式人工智能的政治化是否不可避免？
  • 美国谷歌正式发布新一代旗舰大模型Gemini 3 Pro，性能力压GPT-5.1等业内顶尖模型
  • 安全服务集成，功能全面的工具集——Slack
  • 因为盗版网站提供 CDN 服务，CloudFlare 被判需赔偿版权方 5 亿日元
  • 致远OA中公告附件有小瑕疵了又不能删除重发怎么办？
  • Vulnhub靶场之bluemoon
  • 补天漏洞提交助手，一键提交快人一步（浏览器插件版）
  • 连载】红蓝对抗-攻防演练-WEB安全渗透测试：文件包含漏洞
  • 洞悉·探索·严谨 | 记 R3CON × BitsLab 安全沙龙
  • 攻防演练之SQL注入
  • 直播预告｜办公安全踩坑无数？大厂实战方案重磅揭秘！
  • 专家解读 | 范科峰：以标准引领筑牢电子印章互信互认根基
  • 前沿 | 我国网络安全基本制度的建立与实施
  • 专家观点 | 以法治筑牢人工智能安全防线
  • 评论 | 让直播打赏远离“打劫”阴影
  • 勇敢的光
  • 【会议活动】刘龙庚主任出席“人工智能+数字孪生”共探产业跃迁新路径研讨会并做专题报告
  • 【会议活动】国际绿色燃料联盟在港成立，赛迪认证赋能全球航运绿色转型与产业协同
  • 【新业务】全国温室气体自愿减排量（CCER）项目全流程开发指南
  • 【赛迪热点】绿茵驰骋绽活力 同心竞技结情谊 ——赛迪研究院与工信部足球友谊赛成功举办
  • 端点安全评估新思路：基于Windows原生机制的权限管理工具
  • 我写了一款让Claude Code快速接入国产AI的工具
  • JAVA线程池原理
  • 西城某中学2025级初一数学期中考试正卷压轴题
  • 渣打银行：网络安全文化是我们最强大的一道“防火墙”
  • go-wasm基础和案例分析
  • Google antigravity反蒸馏鲜为人知的一面
  • 【AI安全】间接提示词注入（IPI）
  • 中行原行长李礼辉：中美之间的AI竞争，中国选择硬算力软算力并行
  • AI快讯：港深探索利用AI对金融机构动态监管，夸克AI眼镜与支付宝合作升级
  • 江阴农商银行代码安全检测AI模块升级项目供应商征集
  • 百融云创37万中标！北银金租AI尽调报告智能体优化项目
  • N-able N-central：从已知漏洞到0day发现之旅(CVE-2025-9316)
  • MSG_OOB：一个“绝版”内核特性，如何从Chrome沙箱一路干到内核
  • 网安资源库【加入即送CVE编号】
• 安全客-有思想的安全新媒体
  • SnowSoul勒索软件样本分析：加密机制与解密研究
  • Windows 11 新增云重建与时间点还原系统恢复工具
  • Thunderbird新增原生支持，实现对Microsoft Exchange账户的全面兼容
  • Cloudflare全球服务中断，引发互联网大面积瘫痪——多家主流网络平台无法访问
  • 谷歌已修复2025年第7个被积极利用的Chrome零日漏洞
  • macOS平台曝出“Nova”钱包窃取程序：通过替换Ledger/Trezor应用为钓鱼克隆版来窃取用户助记词
  • 新型.NET加载器“隐匿窃密者”通过高级隐写术将LokiBot窃密木马植入BMP/PNG图片
  • npm供应链攻击预警：黑客利用Adspect伪装技术与虚假加密货币验证码同时欺骗用户与安全研究人员
  • SolarWinds Serv-U 中存在严重漏洞（CVSS 9.1），可导致已认证的管理员实现远程代码执行并完成路径绕过
  • 900万次安装量：恶意Chrome VPN扩展程序通过远程PAC代理注入劫持用户流量
  • Fortinet发布警告：其FortiWeb产品中的新零日漏洞正遭攻击利用
• SpiderLabs Blog
  • SpiderLabs IDs New Banking Trojan Distributed Through WhatsApp
• CCC Event Blog
  • 39C3 – Haecksen-Workshops
• Orange Cyberdefense
  • Noooooooooo Touch!
• Malwarebytes
  • Mac users warned about new DigitStealer information stealer
  • Attackers are using “Sneaky 2FA” to create fake sign-in windows that look real
  • Sharenting: are you leaving your kids’ digital footprints for scammers to find?
• Securelist
  • IT threat evolution in Q3 2025. Mobile statistics
  • IT threat evolution in Q3 2025. Non-mobile statistics
• Intigriti
  • Black Friday and Cyber Monday price distortion identification
• Horizon3.ai
  • Supercharging Enterprise AI with Real-World Exploitability Data: The NodeZero MCP Server Advantage
  • Horizon3.ai Ranked 3rd Fastest-Growing Company in North America on the 2025 Deloitte Technology Fast 500™
  • Deloitte Technology Fast 500 Award 2025
• text/plain
  • Defensive Technology: Ransomware Data Recovery
• HackerNews
  • 俄罗斯嫌犯在泰国被捕，据称与 “Void Blizzard” 组织有关联
  • LG 电池子公司确认海外工厂遭勒索软件攻击
  • 谷歌修复 2025 年第七个 Chrome 零日漏洞
  • 社交工程攻击导致 DoorDash 数据泄露 个人信息遭曝光
  • 荷兰警方捣毁与 80 余起网络犯罪案件相关的 “防弹主机” 枢纽
  • 伊朗黑客利用 DEEPROOT 和 TWOSTROKE 恶意软件袭击航空航天与国防领域
• Dhole Moments
  • Moving Beyond the NPM elliptic Package
• 安全分析与研究
  • 内存拒绝访问对抗型银狐最新攻击样本分析
• 黑鸟
  • 三星手机预装以色列公司开发的AppCloud应用争议事件
• 威努特安全网络
  • 硬核干货：JAVA+Linux的CPU性能优化实践
  • 数据脱敏≠加密！3大关键差异一次讲透
• Black Hills Information Security, Inc.
  • Why You Got Hacked – 2025 Super Edition
• 奇客Solidot–传递最新科技情报
  • 近半美国儿童希望的圣诞礼物是游戏虚拟币
  • 全球近半数人口定居城市
  • 超加工食品与人体主要器官的损伤相关
  • Z 世代的密码安全意识甚至不如 80 岁的老年人
  • Google 发布 Gemini 3
  • Blender 5.0 释出
  • 脑深部电刺激显著改善重度抑郁及焦虑
  • 超加工食品增加年轻人的糖尿病风险
  • 聚变装置 FuZE-3 等离子体压力创纪录
  • 超算模拟银河系千亿颗恒星的演化
• 看雪学苑
  • MSVC编译器/Warbird初步逆向记录
  • 突发！Cloudflare全球中断，ChatGPT、Uber等大批网站瘫痪
  • 《进阶逆向工程实战》：解锁逆向技术的全链路实战能力
• 先进攻防
  • 史上最大00000级互联网宕机事故原因分析
• 青衣十三楼飞花堂
  • 西城某中学2025级初一数学期中考试正卷压轴题
• 代码卫士
  • IBM AIX 多个漏洞可导致远程攻击者执行任意命令
  • W3 Total Cache 插件存在严重的命令注入漏洞，百万网站易受RCE攻击
• 安全客
  • Cloudflare全球宕机：多国网络瘫痪、主流在线服务大面积受影响
• 安全内参
  • 重塑身份安全格局！2026年十大身份威胁预测
  • 特朗普政府即将推出包含六大支柱的新网络安全战略
• 天黑说嘿话
  • 甲方左脑攻击右脑魅力时刻——第三弹！！！！！
• 君哥的体历
  • 重运营的游戏公司，如何做好安全？从防泄密到渗透测试的实战思考｜总第303周
• 丁爸 情报分析师的工具箱
  • 【情报机构】湾湾的情报与反情报体系
• 中国信息安全
  • 中国信息安全测评中心主任彭涛：低空经济乘风起 安全护航不缺席
• 嘶吼专业版
  • Cloudflare全球网络服务突发中断 多国用户遭遇访问故障
  • 高危runC漏洞曝光 黑客可突破Docker容器逃逸
• 虎符智库
  • AI 驱动的网络攻击演进：趋势研判、风险洞察与防御思考
• 数世咨询
  • 《全球数据泄露态势月度报告》（2025年10月）| 附下载地址
• 火绒安全
  • 火绒小问答——「个人版」漏洞修复类top问题解答
  • 诚邀渠道合作伙伴共启新征程
• 威胁棱镜
  • 威胁情报平台到底是独占还是重合
• 安全牛
  • 你的防火墙“看”不见它！揭秘利用Blob URI的内存钓鱼攻击
  • Cloudflare宕机引发全球互联网“雪崩”；高校官网群组二维码泄露，骗子冒充老师通过屏幕共享转走学生钱款| 牛览
• 极客公园
  • 字节张楠、张宏江、田渊栋······极客公园创新大会 2026 嘉宾阵容更新！
  • 对话斑马口语：如何用 AI Agent 造出「超人类外教」？
  • Gemini 3发布，多榜单断崖式领先；美安全服务商网络中断，ChatGPT受牵连；苹果承认酒精擦拭可能导致手机掉色｜极客早知道
• GobySec
  • 技术分享 | EXP能力升级（第一期）：从CVE-2025-61882看Goby如何破解路径固定难题
• 360数字安全
  • AI赋能警务新战力！360反涉网犯罪训练营第七期圆满结营
• Over Security - Cybersecurity news aggregator
  • How the classic anime ‘Ghost in the Shell’ predicted the future of cybersecurity 30 years ago
  • Autumn Dragon: China-nexus APT Group Targets South East Asia
  • Sneaky2FA PhaaS kit now uses redteamers' Browser-in-the-Browser attack
  • Scanners-Box – Open-Source Reconnaissance and Scanning Toolkit
  • Reconnoitre – Open-Source Reconnaissance and Service Enumeration Tool
  • Initial Access Brokers (IAB) in 2025 – From Dark Web Listings to Supply Chain Ransomware Events
  • mcp-scan – Real-Time Guardrail Monitoring and Dynamic Proxy for MCP Servers
  • Dark Web Search Engines in 2025 – Enterprise Monitoring, APIs and IOC Hunting
  • Lawmakers reintroduce bill to bolster cybersecurity at Securities and Exchange Commission
  • Google's Gemini 3 is living up to the hype and creating games in one shot
  • Truffe online sfruttano la condivisione schermo di WhatsApp: come difendersi
  • Cloudflare down, il problema è la fragilità delle infrastrutture critiche: ecco le soluzioni da adottare
  • Attacco Almaviva, effetti su Gruppo Ferrovie: cosa sappiamo sul data leak
  • NIS2 e nomina del referente CSIRT, si apre la procedura sul portale ACN: che c’è da sapere
  • Ecco il Digital Omnibus, la grande semplificazione: cosa cambia per Gdpr, AI
  • Major Russian insurer facing widespread outages after cyberattack
  • European Commission ‘simplification’ proposal would weaken GDPR, AI regulations
  • Canadian privacy regulators say schools share blame for PowerSchool hack
  • US, allies sanction Russian bulletproof hosting services for ransomware support
  • International operation traces $55 million crypto trail of digital piracy sites
  • Australia Releases 2025 Implementation Plan to Advance National Data and Digital Transformation
  • DragonForce evolve in un “cartello” ransomware e diventa più aggressivo
  • Nuova frode ai danni di Poste Italiane: email senza link, solo un numero da contattare!
  • California man admits to laundering crypto stolen in $230M heist
  • Meet ShinySp1d3r: New Ransomware-as-a-Service created by ShinyHunters
  • CISA gives govt agencies 7 days to patch new Fortinet flaw
  • The hidden risks in your DevOps stack data—and how to address them
  • New WrtHug campaign hijacks thousands of end-of-life ASUS routers
  • Russian bulletproof hosting provider sanctioned over ransomware ties
  • W3 Total Cache WordPress plugin vulnerable to PHP command injection
  • Google Search is now using AI to create interactive UI to answer your questions
  • The Cloudflare Outage May Be a Security Roadmap
  • Bill Largent: On epic reads, lifelong learning, and empathy
  • Apple, i dark pattern e la difficile battaglia contro il tracciamento
  • Cloudflare blames this week's massive outage on database issues
  • China-aligned threat actor is conducting widespread cyberespionage campaigns
  • ‘PlushDaemon’ hackers hijack software updates in supply-chain attacks
  • IT threat evolution in Q3 2025. Non-mobile statistics
  • IT threat evolution in Q3 2025. Mobile statistics
  • Doctor Alliance: Two Breaches, Zero Answers. The Silence That Betrays Trust
  • Allenarsi alla crisi
  • LOLBin Attacks Explained with Examples: Everything SOC Teams Need to Know
  • Come e perché creare un Enterprise App Store
• Qualys Security Blog
  • What is Patch Management Automation and Why It Matters
• IT Service Management News
  • Patacca scout per IA e cybersecurity
• ICT Security Magazine
  • IoT forensics: l’analisi forense nell’era dei dispositivi connessi
  • Role-Based Access Control (RBAC) – l controllo degli accessi basato sui ruoli trasforma la sicurezza aziendale
• 补天平台
  • 上线通知 | 每月按时上线的京东卡来啦~
• 纽创信安
  • 【成都高校专属】纽创信安校招宣讲 + 芯片安全技术分享，11.20-21 日等你解锁！
• 迪哥讲事
  • 云安全-s3对象存储攻防
• SANS Internet Storm Center, InfoCON: green
  • Unicode: It is more than funny domain names., (Wed, Nov 12th)
  • ISC Stormcast For Wednesday, November 19th, 2025 https://isc.sans.edu/podcastdetail/9706, (Wed, Nov 19th)
• Rasta Mouse
  • PICing AOP
• Securityinfo.it
  • DragonForce evolve in un “cartello” ransomware e diventa più aggressivo
• D3Lab
  • Nuova frode ai danni di Poste Italiane: email senza link, solo un numero da contattare!
• Tor Project blog
  • New Release: Tor Browser 15.0.2
• Full Disclosure
  • [REVIVE-SA-2025-004] Revive Adserver Vulnerabilities
  • [REVIVE-SA-2025-003] Revive Adserver Vulnerabilities
  • [SYSS-2025-059]: Dell computer UEFI boot protection bypass
• Krebs on Security
  • The Cloudflare Outage May Be a Security Roadmap
• NetSPI
  • Navigating the PTaaS Market with the GigaOm Radar Report
• The Hacker News
  • Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)
  • Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices
  • WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
  • Application Containment: How to Use Ringfencing to Prevent the Weaponization of Trusted Software
  • EdgeStepper Implant Reroutes DNS Queries to Deploy Malware via Hijacked Software Updates
  • ServiceNow AI Agents Can Be Tricked Into Acting Against Each Other via Second-Order Prompts
  • Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild
• The Register - Security
  • Fortinet 'fesses up to second 0-day within a week
  • Amazon security boss: Hostile countries use cyber targeting for physical military strikes
  • Researchers claim 'largest leak ever' after uncovering WhatsApp enumeration flaw
  • Tens of thousands more ASUS routers pwned by suspected, evolving China operation
  • Selling technology investments to the board: a strategic guide for CISOs and CIOs
  • China recruiting spies in the UK with fake headhunters and ‘sites like LinkedIn’
• Security Affairs
  • U.S. CISA adds a Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog
  • 7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild
  • Operation WrtHug hijacks 50,000+ ASUS routers to build a global botnet
  • U.S. CISA adds a new Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog
  • Eurofiber confirms November 13 hack, data theft, and extortion attempt
  • New FortiWeb zero-day CVE-2025-58034 under attack patched by Fortinet
• Schneier on Security
  • Legal Restrictions on Vulnerability Disclosure
• TorrentFreak
  • Tokyo Court Finds Cloudflare Liable For Manga Piracy in Long-Running Lawsuit
  • Torrent Giant YTS Returns to .LT Domain After .MX ‘Vanishes’
  • Operation Endpoint: Pirate IPTV Services Down After Raids & Several Arrests
• Deeplinks
  • The Patent Office Is About To Make Bad Patents Untouchable
  • Strengthen Colorado’s AI Act
• Security Weekly Podcast Network (Audio)
  • Health and Wellness of the CISO as They Crack Under Pressure and Need a BISO to Scale - Dr. Yonesy Núñez - BSW #422
• Blaze's Security Blog
  • Autumn Dragon: China-nexus APT Group Targets South East Asia