# 每日安全资讯(2026-04-21) - SecWiki News - [ ] [SecWiki News 2026-04-20 Review](http://www.sec-wiki.com/?2026-04-20) - Private Feed for M09Ic - [ ] [anthropics released v2.1.116 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.116) - [ ] [bolucat released 202604202115 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202604202115) - [ ] [ZeddYu starred superradcompany/microsandbox](https://github.com/superradcompany/microsandbox) - [ ] [NtDallas starred Atsika/MalGitApp](https://github.com/Atsika/MalGitApp) - [ ] [oiweiwei released v1.3.0 at oiweiwei/go-msrpc](https://github.com/oiweiwei/go-msrpc/releases/tag/v1.3.0) - [ ] [lz520520 starred ryfineZ/codex-session-patcher](https://github.com/ryfineZ/codex-session-patcher) - [ ] [agentscope-ai released v1.0.19 at agentscope-ai/agentscope](https://github.com/agentscope-ai/agentscope/releases/tag/v1.0.19) - [ ] [wuhan005 starred solod-dev/solod](https://github.com/solod-dev/solod) - [ ] [Ascotbe starred obra/superpowers](https://github.com/obra/superpowers) - [ ] [PrefectHQ released 3.6.28.dev1 at PrefectHQ/prefect](https://github.com/PrefectHQ/prefect/releases/tag/3.6.28.dev1) - [ ] [gh0stkey starred prasmussen/chrome-cli](https://github.com/prasmussen/chrome-cli) - [ ] [ourren starred mukul975/Anthropic-Cybersecurity-Skills](https://github.com/mukul975/Anthropic-Cybersecurity-Skills) - [ ] [timwhitez starred oritera/Cairn](https://github.com/oritera/Cairn) - obaby 𝐢𝐧⃝ void - [ ] [济南,济南](https://zhongxiaojie.cn/2026/04/1002/) - 安全客-有思想的安全新媒体 - [ ] [科技云报到:AI云,逻辑变了吗?](https://www.anquanke.com/post/id/315337) - Filippo Valsorda - [ ] [Quantum Computers Are Not a Threat to 128-bit Symmetric Keys](https://words.filippo.io/128-bits/) - 美团技术团队 - [ ] [突破零样本 TTS 音色克隆上限:LongCat-AudioDiT 的声音克隆艺术](https://tech.meituan.com/2026/04/20/longcat-audiodit.html) - Microsoft Security Blog - [ ] [Making opportunistic cyberattacks harder by design](https://www.microsoft.com/en-us/security/blog/2026/04/20/making-opportunistic-cyberattacks-harder-by-design/) - Recent Commits to cve:main - [ ] [Update Mon Apr 20 11:16:51 UTC 2026](https://github.com/trickest/cve/commit/53db6e956a7fb9cddc69014f419f43a91e27e6e8) - Planet Classpath - [ ] [Mark Wielaard: Anticipating Valgrind 3.27.0](https://gnu.wildebeest.org/blog/mjw/2026/04/20/anticipating-valgrind-3-27-0/) - Doonsec's feed - [ ] [我做了一个只给自己用的网页](https://mp.weixin.qq.com/s/wIZURamv6l5Ym3AdjZXD2Q) - [ ] [Attack_login:基于Golang开发的Web批量连接测试工具](https://mp.weixin.qq.com/s/_Wqrc5xtgY3onWwWnvmbwg) - [ ] [(13)5.3 岗位、职责和权限—企业信息安全负责人必读系列丛书书稿《ISO/IEC 42001: 2023人工智能管理体系标准的谬误辨析与实施详解》](https://mp.weixin.qq.com/s/BvZlpan74AZnttf00zFzgA) - [ ] [【福利赠送】ISO 22301业务连续性管理体系导入实施案例(15)业务连续性计划的编制](https://mp.weixin.qq.com/s/13__6Ua82nsPJID1rNOalA) - [ ] [Claude Desktop被曝秘密写入浏览器后门文件](https://mp.weixin.qq.com/s/gbKAUhz_v2IvZs8tIoJwKA) - [ ] [长期有价值的事往往是枯燥的。](https://mp.weixin.qq.com/s/SaickgqzpP44JP66f-N3YQ) - [ ] [突发!!!openai服务挂掉,大量用户无法使用](https://mp.weixin.qq.com/s/nTEeFekXxquvFy_728gMFA) - [ ] [【资料】特种作战、联合作战](https://mp.weixin.qq.com/s/qxiI7CrWjPClaMldLr6BwQ) - [ ] [在梗图群里你能学到任何知识](https://mp.weixin.qq.com/s/yQcUnVUidzeNDj6dZcD3xg) - [ ] [VulnClaw:一句话就能渗透的 AI 利用 Agent](https://mp.weixin.qq.com/s/s4dj_Eud3AwMn74S-hmbjA) - [ ] [【高危AI漏洞预警】FlowiseAI远程代码执行漏洞(CVE-2026-41138)](https://mp.weixin.qq.com/s/80J8fPhGYKcEjVpBSjdK0g) - [ ] [Claude Code进阶指南:装这9个Skill才算真正上手](https://mp.weixin.qq.com/s/3pYESr-ZDD-qM3uktiSIYQ) - [ ] [【圆满收官】PolarIoTS个人挑战赛第一季获奖名单已公布!快来看看吧!](https://mp.weixin.qq.com/s/vytMZkwYzZ6udlrAHkfs1w) - [ ] [已成功!GPT plus 0成本极速开通!](https://mp.weixin.qq.com/s/6LWSFPyQyOrxz5PbAmp-UA) - [ ] [NocoBase AI 驱动型无代码平台SSRF漏洞 | CVE-2026-40346原理分析&研究](https://mp.weixin.qq.com/s/mQZl-a6PTBajVF52bLVFCw) - [ ] [内推 | 西安某公司驻场安全运营岗火热招聘中](https://mp.weixin.qq.com/s/jZexglABeuFeAjodgDItdQ) - [ ] [TimelineSec助力2025年度货拉拉SRC白帽子安全沙龙暨年度颁奖典礼~](https://mp.weixin.qq.com/s/JS57yugDRIF1RIBt4DZkqA) - [ ] [当 AI 开始干活,安全如何破局](https://mp.weixin.qq.com/s/PQ_HZ20HY1dP6RaZy-IpCg) - [ ] [突发!字节跳动净利润被曝下滑超70%,抖音集团副总裁李亮紧急回应](https://mp.weixin.qq.com/s/od6heSCR0hmuBw4eGAu3_g) - [ ] [2025 “泉城杯” 济南市网络安全大赛 题目复现](https://mp.weixin.qq.com/s/ZtpiJ1Oea5vJDXKm1o1CEw) - [ ] [一次提问,6 个 AI 同时回答!这款免费插件,专治「一本正经胡说八道」](https://mp.weixin.qq.com/s/NnUxfaEa2F-SO-Ldrwz5EA) - [ ] [重温“4.19”重要讲话十周年系列特刊(6):坚守初心使命,开启智能化安全运营新征程](https://mp.weixin.qq.com/s/i3VdcMYMzmunHHrzoejTbA) - [ ] [基于AI快速浏览器内核与CEF源码分析定制](https://mp.weixin.qq.com/s/Gcqc38T-U5nWyuBPK5CJyg) - [ ] [安克创新寻找AI 安全⽅向专家(代发招聘)](https://mp.weixin.qq.com/s/6ziQq-aCLzIi5SL5CWJapw) - [ ] [这场“谷雨”,网警为你撑起一把安全伞](https://mp.weixin.qq.com/s/WQ99ktAGqENU3WDyU0Q-IA) - [ ] [谷雨润万物,网络安全“防潮”正当时](https://mp.weixin.qq.com/s/VlCxVvtgXmvPdXejTCwDiQ) - [ ] [安芯网盾参编|《2025网信自主创新调研报告》正式发布](https://mp.weixin.qq.com/s/KzbStPHglww2x7pgY5itBA) - [ ] [3个可以免费自学黑客技术的网站,不知道的哭晕在厕所了!](https://mp.weixin.qq.com/s/2njO2cjfAgQp9ccGmDMitw) - [ ] [U0001f92fAI 渗透杀疯了!一句话全自动挖洞,100 + 工具集成,新手也能封神](https://mp.weixin.qq.com/s/0HrlvA2XewYOdU89YMTIjQ) - [ ] [谷雨润万物,网安护万家(1)](https://mp.weixin.qq.com/s/3XhfIhaHv8m8B2BG6jAIEw) - [ ] [谷雨润万物,网安护万家(2)](https://mp.weixin.qq.com/s/x-1f7KrA2Ra5HswI3fuRLA) - [ ] [亲测有效 | 办公电脑卡到崩溃?我的7年旧电脑,使用这些技巧后真可以再战3年](https://mp.weixin.qq.com/s/8IP9S0ByG69GIKCCYsQvHA) - [ ] [XOA!仅执行智能体的安全架构设计](https://mp.weixin.qq.com/s/lsYWUF8Z_Nldxkx8I7gI7Q) - [ ] [CTF-WEB-TOOLS:一个本地化的 Web CTF 分析控制台](https://mp.weixin.qq.com/s/NJLobWLbLepeuJbKMHjIcw) - [ ] [JanaWare勒索软件通过定制的Adwind RAT攻击土耳其用户](https://mp.weixin.qq.com/s/uoD4h4ibnla1LfxfJjvuOw) - [ ] [虚假客服攻击利用 Teams 和快速协助功能入侵目标](https://mp.weixin.qq.com/s/xAgh35G6XUGBLBhP-tSoPg) - [ ] [ISC.AI 2026创新独角兽沙盒大赛启动:聚焦智能体发展,以赛促创打造创新生态](https://mp.weixin.qq.com/s/c8i_AeAdDn6Jzbn0GWtPXg) - [ ] [Flowise 中存在严重漏洞,可通过 MCP 适配器执行远程命令](https://mp.weixin.qq.com/s/OoRfZLH7Cp_wFOsPTqdT7w) - [ ] [湖南银行首个AI应用落地智能工单场景,作业效率已提升82%](https://mp.weixin.qq.com/s/aJhfpqQEUOZlBz9azWLAzQ) - [ ] [AI快讯:3大AI工具平台可用支付宝支付集成Skill,智元机器人发布AIMA开发平台](https://mp.weixin.qq.com/s/tLSJDV0op6b-fvTh9lgq1w) - [ ] [8万!甘肃省农资担保流水分析导出RPA项目](https://mp.weixin.qq.com/s/yz9bjzGarhzfQ-yPe8s8Ng) - [ ] [【安全圈】情报显示,一起价值 1374 万美元的黑客攻击导致受制裁的 Grinex 交易所关闭](https://mp.weixin.qq.com/s/V7BoHknkOuD1uJmrxsiGng) - [ ] [【安全圈】因漏洞数量激增,NIST 将停止评估非优先级漏洞评级](https://mp.weixin.qq.com/s/tK8otlHSvrMtURZB_05nsw) - [ ] [【安全圈】主流网页部署平台 Vercel 遭黑客入侵,第三方 AI 工具成攻击突破口](https://mp.weixin.qq.com/s/fc_uuz0oe-A3h9hMyqL2MQ) - [ ] [当助手沦为共谋者:AI投毒陷阱](https://mp.weixin.qq.com/s/CyceWs9A59nfvDv-mtDTUA) - [ ] [超万人参赛!全国数据安全顶流赛事在厦门启动](https://mp.weixin.qq.com/s/GNMGUo03npfszdKjSjDqqA) - [ ] [关于2025年奥数全国等级奖四川的娃](https://mp.weixin.qq.com/s/XohzjfywSrtcj_B4eP6sfQ) - [ ] [AI赋能CTF比赛-Reverse类-ctf-skills](https://mp.weixin.qq.com/s/Fgw3prhcbX5hLi-bHrza5Q) - [ ] [某次测试从前台登录页到渲染后台功能](https://mp.weixin.qq.com/s/u9UN2cBc3jZwbyxhPgOPmQ) - [ ] [DeepAudit+星悦AI模型站实战代码审计](https://mp.weixin.qq.com/s/YrASPZsy6o7SYVpB5LXuuQ) - [ ] [360深度参编《2025网信自主创新调研报告》 以AI实力彰显行业担当!](https://mp.weixin.qq.com/s/P082t3NJNYKtTKaj8zH7YQ) - [ ] [一款简洁透明的ThinkPad](https://mp.weixin.qq.com/s/fyaHTTswdHJiOf21ado9gA) - [ ] [别再用你的“象腿”来定义整个网络安全](https://mp.weixin.qq.com/s/xc1xyHkfKv9pxqHa7H7y8w) - [ ] [12306:3天拒绝出票105.6万张](https://mp.weixin.qq.com/s/RFAQtFsXByWgsZYU_0vOpg) - [ ] [Agent 配置 Jar Analyzer mcp](https://mp.weixin.qq.com/s/wC4l-ieBbBgkDdC_oxQ_Pg) - [ ] [政企培训 | 贵州大数据集团携手深信服科技:圆满举办网络与数据安全培训](https://mp.weixin.qq.com/s/QFpfymLBHOSoWP7Hjv6sWg) - [ ] [自主AI治理会失控吗?阿西莫夫机器人三定律的启示](https://mp.weixin.qq.com/s/tIYjOFHnFNMJpdsl3IbcEw) - [ ] [Windows Defender 0day漏洞遭利用,攻击者组合PoC工具发起提权攻击](https://mp.weixin.qq.com/s/D_9H3keQB-CQlGIwUsj7Lg) - [ ] [攻击者可利用的FortiSandbox漏洞PoC公开,可执行任意命令](https://mp.weixin.qq.com/s/khZpLjWwIB1FvM4jZ_YM8w) - [ ] [NIST放弃全面分析CVE,转向优先处理高危漏洞](https://mp.weixin.qq.com/s/-rhWYG9xG6N_6e7XbmyeCA) - [ ] [SecWiki周刊(第633期)](https://mp.weixin.qq.com/s/zRaFvunpNMaPhFiCXMaSGg) - [ ] [第二篇:高效扫描工具+平台|敏感目录探测,效率翻倍](https://mp.weixin.qq.com/s/r_eVHD2WxaqmOtcTyMs50w) - [ ] [论坛·认知域安全 | 人工智能时代国际传播转向与认知安全风险](https://mp.weixin.qq.com/s/mDRGfD5zxch-vp-6cE5bOQ) - [ ] [凝聚加快建设网络强国的广泛共识和强大合力——深入学习贯彻习近平总书记关于网络强国的重要思想理论研讨会发言摘编](https://mp.weixin.qq.com/s/qa_qCM56NE1Cm_t1oE3cVw) - [ ] [专家解读 | 促进电子单证应用 提升航运贸易全流程效能](https://mp.weixin.qq.com/s/nvlob0YAGwC0fzS4uXAJDQ) - [ ] [国际 | 脑机接口数据法律保护的域外模式](https://mp.weixin.qq.com/s/UAcU86Of2wtsPmfR14TxFQ) - [ ] [评论 | 依法防范和处置虚拟货币风险](https://mp.weixin.qq.com/s/M7iKnBIvgDaeTAUICiyUXg) - [ ] [ICP-CAT—工某部备案资产提取插件](https://mp.weixin.qq.com/s/DbwOIw2iuzi4TasR4M9b5Q) - [ ] [【攻防演习】某集团内部攻防演习技巧总结](https://mp.weixin.qq.com/s/FNZQixy1cejppcaVMcSsfA) - [ ] [CNVD漏洞周报2026年第15期](https://mp.weixin.qq.com/s/l_VPWxlBISmDU2pk0iv-Zg) - [ ] [上周关注度较高的产品安全漏洞(20260413-20260419)](https://mp.weixin.qq.com/s/4pIqUfkKTsQcA7-wPOBB-w) - [ ] [pocsuites安全工具源码分析](https://mp.weixin.qq.com/s/t8Pi1hhPaNReLwW7BzzTYQ) - [ ] [渗透测试必备工具:SQLMap实操指导教程](https://mp.weixin.qq.com/s/UeitQK0s9z0kMY7ttPQspQ) - [ ] [别再让企业 AI “卡在门口”!天唯科技两套方案,让 AI 落地又快又稳又省](https://mp.weixin.qq.com/s/8_VQYoFcQzyfKvDR5-pinw) - [ ] [习近平谈网络安全和信息化](https://mp.weixin.qq.com/s/CYa7S5x8sA7MLHrp4bdTew) - [ ] [Mayhem 10发射式效应器:一型系统,多重作战效能](https://mp.weixin.qq.com/s/gz1hio9q-tnzFgK9UApB1g) - [ ] [【天穹】暗度陈仓:银狐白利用技术升级](https://mp.weixin.qq.com/s/ulLnCu6xRVd9wbW9_Q2hxA) - [ ] [鼎信安全 | 网络安全一周资讯](https://mp.weixin.qq.com/s/dwkSFUQo31AwO-qrED6m0A) - [ ] [【工信动态】工业和信息化部党组理论学习中心组专题学习习近平总书记关于树立和践行正确政绩观的重要论述](https://mp.weixin.qq.com/s/dpH7U_wPGP0I4dJEooRYCg) - [ ] [【公示】第十一批通过信创数智技术服务能力 一级评估单位公示](https://mp.weixin.qq.com/s/zyW_DEqiH1WBareB_QRQtg) - [ ] [RSAC:AI驱动的五大攻击技术](https://mp.weixin.qq.com/s/LnYF_NYX4aLIbUHGmoHXyQ) - [ ] [什么是新兴支柱产业?](https://mp.weixin.qq.com/s/08mxk6BqMQqlXQSoSdPZug) - [ ] [海光信息 × 江南科友:发布新一代金融级密码运算架构方案](https://mp.weixin.qq.com/s/-1IU4o2Zr9MSdPQVDLJvYw) - [ ] [所有缺钱的人,2026年都去挖漏洞,抓住最后的机会!](https://mp.weixin.qq.com/s/1GL297s0YLlks8UhZF1reA) - [ ] [安全跟我学丨藏在日常细节里的网络安全](https://mp.weixin.qq.com/s/dWWfkAIlNbEF9i0gxpSaNg) - [ ] [第八届C3安全大会丨联动防御·数据驱动·AI原生——AI XDR 2026发布](https://mp.weixin.qq.com/s/Kn5rYluarIcSWAtY0VMTng) - [ ] [全民阅读活动周丨《网络安全和信息化》杂志喊你来订阅~](https://mp.weixin.qq.com/s/lXhFxVFfFiYOM6Acx8bTig) - [ ] [【网安资讯】关闭这两项微信权限,避免隐私与资金泄露](https://mp.weixin.qq.com/s/_vPyr-gT3QSdvA5F43YHdA) - [ ] [9.8分!OpenAM爆严重反序列化漏洞,攻击者无需认证即可RCE](https://mp.weixin.qq.com/s/9wp9Sj6kFtOHGLMxFGG8UQ) - [ ] [一个网络分析工具,能接管你所有的流量然后扔给AI](https://mp.weixin.qq.com/s/F24vhDOlh1j95D3MqQN2HQ) - [ ] [Dockerfile语法全解析:从构建原理到分层构建的实战指南](https://mp.weixin.qq.com/s/PVvVzbU-oQ9rOQu6kESIhw) - [ ] [OSRC助力 | 直播预告:2025年度货拉拉SRC白帽子安全沙龙暨年度颁奖典礼~](https://mp.weixin.qq.com/s/H9HPRmtQE-g6ZBRV6EBKqw) - [ ] [直播预告 | 2025年度货拉拉SRC白帽子安全沙龙暨年度颁奖典礼~](https://mp.weixin.qq.com/s/544GSvvdZdRdiFdvzdMqRA) - [ ] [全渠道端到端安全监测,助力国有银行筑牢营销反欺诈防线](https://mp.weixin.qq.com/s/JIp18_3uea9_RgTxSY2xFQ) - [ ] [谷雨 | 看百谷丛生 听春雨绵绵](https://mp.weixin.qq.com/s/_qlDrau7IQkvr6AI2hLflA) - [ ] [光明网:重大活动网络安保产品数字版本捐赠活动在京举行](https://mp.weixin.qq.com/s/QGEJ8cx8Eqhxh8QOUexbYA) - [ ] [献礼“4·19讲话”十周年|安恒:从率先布局态势感知,到发布AI原生新一代XSIAM](https://mp.weixin.qq.com/s/g7Zi5eAKzT_Zdu0e3JIQOg) - [ ] [MC+DeepSeek!部署自动化日志分析及代码审计系统](https://mp.weixin.qq.com/s/P_uUGLFIz4O1tASFE3KbJg) - [ ] [使用Everything也能检查木马了,计算机中所有恶意文件都将无所遁形](https://mp.weixin.qq.com/s/bjN9UG-puGpHrUsQF0rI7A) - [ ] [360SRC助力 | 直播预告!2025年度货拉拉SRC白帽子安全沙龙暨年度颁奖典礼~](https://mp.weixin.qq.com/s/LpArzVG7sBLy85_5EfhVSQ) - [ ] [讯飞SRC助力 | 直播预告:2025年度货拉拉SRC白帽子安全沙龙暨年度颁奖典礼~](https://mp.weixin.qq.com/s/vd-trACYY_c72kP9nwf0gQ) - Bug Bounty in InfoSec Write-ups on Medium - [ ] [AI Agents Think. They Just Don’t Know They’re Being Watched.](https://infosecwriteups.com/ai-agents-think-they-just-dont-know-they-re-being-watched-2f8eec1dc6a9?source=rss----7b722bfd1b8d--bug_bounty) - [ ] [From Nothing to Full Admin Access: Chaining Broken Access Controls](https://infosecwriteups.com/from-nothing-to-full-admin-access-chaining-broken-access-controls-f0d5aa76a4c1?source=rss----7b722bfd1b8d--bug_bounty) - Securelist - [ ] [FakeWallet crypto stealer spreading through iOS apps in the App Store](https://securelist.com/fakewallet-cryptostealer-ios-app-store/119474/) - SentinelOne - [ ] [Automation at Machine Speed: Rethinking Execution in Modern Cybersecurity](https://www.sentinelone.com/blog/automation-at-machine-speed-rethinking-execution-in-modern-cybersecurity/) - Reverse Engineering - [ ] [/r/ReverseEngineering's Weekly Questions Thread](https://www.reddit.com/r/ReverseEngineering/comments/1sqhuff/rreverseengineerings_weekly_questions_thread/) - [ ] [Wrote a Linux rootkit (DKOM, eBPF bypass) and a detector to find it — sharing both](https://www.reddit.com/r/ReverseEngineering/comments/1sr7ee8/wrote_a_linux_rootkit_dkom_ebpf_bypass_and_a/) - [ ] [Reconstructing a Dead USB protocol: From Unknown Chip to Working Implementation](https://www.reddit.com/r/ReverseEngineering/comments/1sqlv5u/reconstructing_a_dead_usb_protocol_from_unknown/) - [ ] [SASS King: reverse engineering NVIDIA SASS](https://www.reddit.com/r/ReverseEngineering/comments/1sqjtp5/sass_king_reverse_engineering_nvidia_sass/) - Malwarebytes - [ ] [Big Tech can stop scams. They just don’t (Lock and Code S07E08)](https://www.malwarebytes.com/blog/podcast/2026/04/big-tech-can-stop-scams-they-just-dont-lock-and-code-s07e08) - [ ] [Mythos: An AI tool too powerful for public release](https://www.malwarebytes.com/blog/news/2026/04/mythos-an-ai-tool-too-powerful-for-public-release) - [ ] [A week in security (April 13 – April 19)](https://www.malwarebytes.com/blog/news/2026/04/a-week-in-security-april-13-april-19) - rtl-sdr.com - [ ] [Setting up a MastChain AIS Tracking System](https://www.rtl-sdr.com/setting-up-a-mastchain-ais-tracking-system/) - [ ] [Tactical_FSK_Modem: An Open Source MFSK Image & Text Modem for PC and Android](https://www.rtl-sdr.com/tactical_fsk_modem-an-open-source-mfsk-image-text-modem-for-pc-and-android/) - 奇客Solidot–传递最新科技情报 - [ ] [从 2027 年起欧盟销售的智能手机和平板必须能更换电池](https://www.solidot.org/story?sid=84099) - [ ] [诺奖得主对人类再生存 50 年感到悲观](https://www.solidot.org/story?sid=84098) - [ ] [GitHub 上项目的伪造星数](https://www.solidot.org/story?sid=84097) - [ ] [WireGuard For Windows v1.0 释出](https://www.solidot.org/story?sid=84096) - [ ] [Brave 推出付费版 Brave Origin,Linux 版免费](https://www.solidot.org/story?sid=84095) - [ ] [Sruthi Chandran 当选为 DPL](https://www.solidot.org/story?sid=84094) - [ ] [亚马逊 Fire 电视棒不再支持侧载](https://www.solidot.org/story?sid=84093) - [ ] [偏头痛发作增加与空气污染相关](https://www.solidot.org/story?sid=84092) - [ ] [Blue Origin 第二次回收 New Glenn 火箭但上面级未能成功入轨](https://www.solidot.org/story?sid=84091) - [ ] [欧盟推动远程办公以缓解能源危机](https://www.solidot.org/story?sid=84090) - [ ] [蚂蚁也有清洁工](https://www.solidot.org/story?sid=84089) - HackerNews - [ ] [ĺ› ćźć´žć•°é‡ćż€ĺ˘žďźŒNIST ĺ°†ĺœć˘čŻ„äź°éžäź˜ĺ…ˆçş§ćźć´žčŻ„级](http://0.0.0.0:8080/post/64146) - [ ] [ćƒ…ćŠĽćŒ‡ćŽ§ĺŽďźŒ1374 ä¸‡çžŽĺ…ƒč˘Ťç›—ďźŒéĺˆśčŁçš„ć źćž—ĺ…‹ć–Żäş¤ć˜“ć‰€ĺ…łĺœ](http://0.0.0.0:8080/post/64145) - [ ] [Protobuf 库关锎ćźć´žĺŻč‡´ JavaScript 䝣ç ć‰§čĄŒ](http://0.0.0.0:8080/post/64143) - [ ] [Vercel 祎莤éĺ…ĽäžľďźŒéť‘ĺŽ˘ç§°ćŁĺ”Žĺ–çŞƒĺ–ć•°ćŽ](http://0.0.0.0:8080/post/64141) - [ ] [勒索软䝜攝凝ćŒçťć‰°äšąäźŚć•ŚĺŒťç–—çłťçťŸčż‘ 2 ĺš´](http://0.0.0.0:8080/post/64140) - [ ] [äšŒĺ…‹ĺ…°čŻĺŽžç–‘äźź APT28 çť„çť‡é’ˆĺŻšćŁ€ĺŻŸĺŽ˜ĺŠĺč…č´Ľćœşćž„çš„ć”ťĺ‡ťć´ťĺŠ¨](http://0.0.0.0:8080/post/64139) - 黑海洋Wiki | AI机器人硬件开发 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台 - [ ] [Mastodon平台主要服务器遭遇DDoS攻击](https://blog.upx8.com/Mastodon%E5%B9%B3%E5%8F%B0%E4%B8%BB%E8%A6%81%E6%9C%8D%E5%8A%A1%E5%99%A8%E9%81%AD%E9%81%87DDoS%E6%94%BB%E5%87%BB) - [ ] [美国FAA下令调查蓝色起源公司发射事故](https://blog.upx8.com/%E7%BE%8E%E5%9B%BDFAA%E4%B8%8B%E4%BB%A4%E8%B0%83%E6%9F%A5%E8%93%9D%E8%89%B2%E8%B5%B7%E6%BA%90%E5%85%AC%E5%8F%B8%E5%8F%91%E5%B0%84%E4%BA%8B%E6%95%85) - 绿盟科技技术博客 - [ ] [绿盟科技当选中国网络安全产业创新发展联盟副理事长单位, 共启 “十五五” 产业发展新篇](https://blog.nsfocus.net/%e7%bb%bf%e7%9b%9f%e7%a7%91%e6%8a%80%e5%bd%93%e9%80%89%e4%b8%ad%e5%9b%bd%e7%bd%91%e7%bb%9c%e5%ae%89%e5%85%a8%e4%ba%a7%e4%b8%9a%e5%88%9b%e6%96%b0%e5%8f%91%e5%b1%95%e8%81%94%e7%9b%9f%e5%89%af%e7%90%86/) - [ ] [能力升级!绿盟虚拟汽车靶场:清晰易懂,适配高校教学场景](https://blog.nsfocus.net/%e8%83%bd%e5%8a%9b%e5%8d%87%e7%ba%a7%ef%bc%81%e7%bb%bf%e7%9b%9f%e8%99%9a%e6%8b%9f%e6%b1%bd%e8%bd%a6%e9%9d%b6%e5%9c%ba%ef%bc%9a%e6%b8%85%e6%99%b0%e6%98%93%e6%87%82%ef%bc%8c%e9%80%82%e9%85%8d%e9%ab%98/) - 安全分析与研究 - [ ] [APT攻击之软件供应链攻击技术深度解析](https://mp.weixin.qq.com/s?__biz=MzA4ODEyODA3MQ==&mid=2247496659&idx=1&sn=619a8e0e848788f7b1cb53cd83597f6b) - 黑鸟 - [ ] [Claude Desktop被曝秘密写入浏览器后门文件](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451186455&idx=1&sn=68147b2d0bb27579a65b203e6fa3bf96) - 安全内参 - [ ] [损害金融主权?俄交易所疑遭敌对国黑客攻击,近亿元被盗后停止运营](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515842&idx=1&sn=2fdffabf1b38b1505d384d1762ac081f) - [ ] [从“无限制频谱战”到“网络韧性设计”:美国太空军2040愿景文件网络空间要点解读](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515842&idx=2&sn=b38334f35c21f3afec55b094dc176bd8) - 代码卫士 - [ ] [Protobuf 库中严重漏洞可导致 JavaScript 代码执行](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247525802&idx=1&sn=a61b75215e7f74c70a2d3ef040e72b52) - [ ] [因漏洞数量激增,NIST 已停止对低优先级漏洞的评分](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247525802&idx=2&sn=cc7315bbd06c22cde1e453867a1534fc) - 360漏洞云 - [ ] [安全筑基,AI引航|《2025网信自主创新调研报告》发布,360牵头AI技术应用章节成亮点](https://mp.weixin.qq.com/s?__biz=Mzg5MTc5Mzk2OA==&mid=2247505102&idx=1&sn=c5fa353783f16bb68f6b34876b1b654f) - 看雪学苑 - [ ] [前沿观察 赛事纪实:从腾讯云黑客松,洞见智能体时代的攻防新格局](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458613891&idx=1&sn=fc5294877d8a53d858a79d2dbb0b9432) - [ ] [浅谈梯度分析与权重编辑:以Qwen-3为例](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458613891&idx=2&sn=4ce949078304bc923d5f4419be902ab2) - [ ] [Vercel 确认遭第三方 OAuth 劫持入侵,内部访问令牌与部分环境变量暴露](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458613891&idx=3&sn=4f85df835c3f694eadf42864731ae502) - 奇安信 CERT - [ ] [今日(2026年4月20日)热点网络安全漏洞动态](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247505295&idx=1&sn=496cfccc26e4f49a8027901612b77394) - 威努特安全网络 - [ ] [算力进阶,企业如何迈过集群化这道坎?](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651141400&idx=1&sn=128acd1beeb39ab7ecf6c634aba57643) - 天御攻防实验室 - [ ] [英美间谍机构NSA和GCHQ正在使用Anthropic Mythos](https://mp.weixin.qq.com/s?__biz=MzU0MzgyMzM2Nw==&mid=2247486945&idx=1&sn=1a7d1893ce7373f7c602c452b753a69d) - 信息安全国家工程研究中心 - [ ] [新闻联播:【新思想引领新征程】筑牢网络强国基石 赋能高质量发展](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247503610&idx=1&sn=c67d2631ecfec2722560ec47bfad4825) - 情报小蜜蜂 - [ ] [越南苏林访华,背后是一个不容忽视的大趋势](https://mp.weixin.qq.com/s?__biz=MzU0NjY5ODQ3Mw==&mid=2247486009&idx=1&sn=7c3d71ef182eaa77b9410013ba65d4ec) - 唯品会安全应急响应中心 - [ ] [“穿上看看”专测活动](https://mp.weixin.qq.com/s?__biz=MzI5ODE0ODA5MQ==&mid=2652281754&idx=1&sn=f223b94c19d73f39cc01bebe63ba2f60) - 安全圈 - [ ] [【安全圈】情报显示,一起价值 1374 万美元的黑客攻击导致受制裁的 Grinex 交易所关闭](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652075867&idx=1&sn=fc57e336727bc90d79528616c1188571) - [ ] [【安全圈】因漏洞数量激增,NIST 将停止评估非优先级漏洞评级](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652075867&idx=2&sn=a7ff34572d07e4ee322da8b63417ed04) - [ ] [【安全圈】主流网页部署平台 Vercel 遭黑客入侵,第三方 AI 工具成攻击突破口](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652075867&idx=3&sn=c4e8c5140eefcc3084417bf23fb8614f) - 中国信息安全 - [ ] [学习语 | 习近平谈网络安全和信息化](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664261684&idx=1&sn=c58fcd998857b05bc43b67cd0469f64c) - [ ] [苗圩:牢牢掌握人工智能发展和治理主动权](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664261684&idx=2&sn=b95dd0f34a9ab620dc5c1bb165ca0e15) - 极客公园 - [ ] [Pocket 4 登上北影节红毯,它凭什么?](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653104339&idx=1&sn=35bff55ed033308afa434a3bdf44b7c0) - [ ] [「想到」就能「得到」:灵光圈,把 Coding Agent 交到普通人手里](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653104277&idx=1&sn=d8ed36976420fde0abd26267e8aff8d5) - [ ] [苹果 WWDC 26海报暗示新 Siri 界面;华为靳玉志:乾崑智驾累计突破 100 亿公里;华人女数学家斩获「数学奥斯卡」|极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653104254&idx=1&sn=7ebf854bd3cd85d6fefc599f641f4ddb) - 微步在线 - [ ] [唯一网络安全技术支撑单位!微步支撑香港警署四地反恐联合演习圆满落幕](https://mp.weixin.qq.com/s?__biz=MzI5NjA0NjI5MQ==&mid=2650186209&idx=1&sn=775eb19e25f8b1468cf3e1ea68340b79) - [ ] [排名第一!微步在香港又得奖啦!](https://mp.weixin.qq.com/s?__biz=MzI5NjA0NjI5MQ==&mid=2650186209&idx=2&sn=f66099a0b4cc9178d60fd2a774053091) - 安全牛 - [ ] [从“野蛮生长”到“主动防护”:Claude Opus 4.7 如何定义 AI 网络安全的新范式?](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141074&idx=1&sn=169ded607c467517f1f9dd4a4aa3944f) - [ ] [保险公司大规模排除AI输出保险覆盖,企业AI风险管理面临新挑战;共处罚没款35.97亿元,7家头部平台涉“幽灵外卖”系列案被处罚| 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141074&idx=2&sn=0003159bd82539d9a00856b2a8a16992) - 数世咨询 - [ ] [RSAC:AI驱动的五大攻击技术](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247542606&idx=1&sn=3a9f6feb247962cd4452a3aaa35a75ee) - [ ] [【全国首单】思而听联合PICC推出“网络安全防勒索专项服务综合保单”在济南高新区成功落地](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247542606&idx=2&sn=0a0a9ed4ea45b8b09c41d0d317e9bb46) - 嘶吼专业版 - [ ] [不只是 0day 盛宴!DEF CON 新加坡站议题公布,藏着 4 个攻防新趋势](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247587662&idx=1&sn=5414d8727dcb434d48c8c18597b78c72) - 火绒安全 - [ ] [谷雨 | 春归谷雨 安护万家](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247532201&idx=1&sn=22ca4870515762061adb5011487d0d63) - [ ] [诚邀渠道合作伙伴共启新征程](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247532201&idx=2&sn=c4cdee2446b9c8b72e9655bb0a79b5e5) - 情报分析师 - [ ] [十三个人,撬动一条战线,日本自卫队无人化转型,到底在算什么账](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650567628&idx=1&sn=e7bdd7f7dbfd0332334aa0484057fcc0) - [ ] [一位没碰过键盘的四星上将,接管了全世界最强的"监听+黑客"机器](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650567628&idx=2&sn=571401c57ad172801be3e78fef372d87) - [ ] [【人物调研】特朗普的棋子还是中亚的算盘?一个出生于塔什干的美国大使,和一场悄然改变棋局的矿产争夺战](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650567628&idx=3&sn=e9d7bc0c2161282712d5d32be5d74b3f) - 斗象智能安全 - [ ] [隐私安全开源项目ClawVault,万人亲测好用](https://mp.weixin.qq.com/s?__biz=MzIwMjcyNzA5Mw==&mid=2247495392&idx=1&sn=534fd0e943042740426add9ed0510f89) - 墨菲安全 - [ ] [墨菲安全发布《安全度量最佳实践2026版》](https://mp.weixin.qq.com/s?__biz=MzkwOTM0MjI5NQ==&mid=2247488385&idx=1&sn=58b69f24b81c4fb2ceceaf5247ff9920) - Desync InfoSec - [ ] [Prompt注入攻击:当AI的眼睛被蒙蔽](https://mp.weixin.qq.com/s?__biz=MzkzMDE3ODc1Mw==&mid=2247490123&idx=1&sn=2fa60e5676e2683729ec806797e253ea) - [ ] [自主AI智能体风险解剖:Qualys如何通过四层关联揪出未授权OpenClaw](https://mp.weixin.qq.com/s?__biz=MzkzMDE3ODc1Mw==&mid=2247490123&idx=2&sn=0ab5ce4a8ae455e97c6aec05e0d8b292) - Qualys Security Blog - [ ] [Enterprise Remediation Benchmark: How Does Your Organization Compare?](https://blog.qualys.com/category/qualys-insights) - 安全行者老霍 - [ ] [一种几乎无法检测的大语言模型攻击仅需少量投毒样本即可实现](https://mp.weixin.qq.com/s?__biz=Mzg3NjU4MDI4NQ==&mid=2247486502&idx=1&sn=44a93831194a8840e625644bcad344c9) - 迪哥讲事 - [ ] [「赏金」某SRC修改返回包获得赏金](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247499332&idx=1&sn=0350da852210da33832022cb56a0c26f) - bellingcat - [ ] [Mining China’s ‘Little Red Book’ for Open Source Gold](https://www.bellingcat.com/resources/2026/04/20/xiaohongshu-rednote-open-source-guide/) - 网安国际 - [ ] [首届CCF网络与系统安全大会征文通知](https://mp.weixin.qq.com/s?__biz=MzA4ODYzMjU0NQ==&mid=2652318196&idx=1&sn=414df65675657612a76ff538621159a9) - 吴鲁加 - [ ] [用 AI 重写了一个 App,用了一个月,我学到了这些](https://mp.weixin.qq.com/s?__biz=Mzg5NDY4ODM1MA==&mid=2247486033&idx=1&sn=4cd56214e06cf4ebcfad57ac8fe0b0fd) - CNVD漏洞平台 - [ ] [CNVD漏洞周报2026年第15期](https://mp.weixin.qq.com/s?__biz=MzU3ODM2NTg2Mg==&mid=2247496857&idx=1&sn=3d4b41dbe1073f02db12fcd9fda61a99) - [ ] [上周关注度较高的产品安全漏洞(20260413-20260419)](https://mp.weixin.qq.com/s?__biz=MzU3ODM2NTg2Mg==&mid=2247496857&idx=2&sn=6823408c6cbd6556270d427a018a31b2) - DARKNAVY - [ ] [DARKNAVY联合发布首篇具身智能机器人安全技术白皮书](https://mp.weixin.qq.com/s?__biz=MzkyMjM5MTk3NQ==&mid=2247497933&idx=1&sn=b9c47dfaa5c19e0ce8a049991cc22610) - Over Security - Cybersecurity news aggregator - [ ] [The Gentlemen ransomware now uses SystemBC for bot-powered attacks](https://www.bleepingcomputer.com/news/security/the-gentlemen-ransomware-now-uses-systembc-for-bot-powered-attacks/) - [ ] [Seiko USA website defaced as hacker claims customer data theft](https://www.bleepingcomputer.com/news/security/seiko-usa-website-defaced-as-hacker-claims-customer-data-theft/) - [ ] [North Korea hackers blamed for $290M crypto theft](https://techcrunch.com/2026/04/20/north-korea-hackers-blamed-for-290m-crypto-theft/) - [ ] [Crypto infrastructure company blames $290 million theft on North Korean hackers](https://therecord.media/crypto-north-korea-theft-kelp) - [ ] [Italian regulator fines national postal service orgs $15 million for data privacy violations](https://therecord.media/italian-regulator-fines-postal-service-orgs-15-million-privacy) - [ ] [Cyber Frontiers, di cosa ho parlato](https://roccosicilia.com/2026/04/20/cyber-frontiers-di-cosa-ho-parlato/) - [ ] [Mythos, Gpt 5.4 Cyber: come attrezzarci contro il diluvio di attacchi in arrivo](https://www.cybersecurity360.it/nuove-minacce/mythos-gpt-5-4-cyber-come-attrezzarci-contro-il-diluvio-di-attacchi-in-arrivo/) - [ ] [SOC e CERT: come l’integrazione dei servizi di sicurezza rafforza la difesa delle aziende](https://www.cybersecurity360.it/soluzioni-aziendali/soc-e-cert-come-lintegrazione-dei-servizi-di-sicurezza-rafforza-la-difesa-delle-aziende/) - [ ] [Elon Musk fails to appear for questioning by French police over sexualized AI images on X](https://therecord.media/elon-musk-avoids-questioning-french-police-x-images-scandal) - [ ] [Microsoft: Teams increasingly abused in helpdesk impersonation attacks](https://www.bleepingcomputer.com/news/security/microsoft-teams-increasingly-abused-in-helpdesk-impersonation-attacks/) - [ ] [Cyberattack at French identity document agency may have exposed personal data](https://therecord.media/france-cyberattack-agency-passports) - [ ] [The backup myth that is putting businesses at risk](https://www.bleepingcomputer.com/news/security/the-backup-myth-that-is-putting-businesses-at-risk/) - [ ] [Bluesky blames app outage on ‘sophisticated’ DDoS attack](https://therecord.media/bluesky-blames-app-outage-on-ddos) - [ ] [British Scattered Spider hacker pleads guilty to crypto theft charges](https://www.bleepingcomputer.com/news/security/british-scattered-spider-hacker-pleads-guilty-to-crypto-theft-charges/) - [ ] [Caso Nightmare-Eclipse: ci sono ancora due zero-day di Microsoft Defender in circolazione](https://www.cybersecurity360.it/news/caso-nightmare-eclipse-ci-sono-ancora-due-zero-day-di-microsoft-defender-in-circolazione/) - [ ] [Indian Agency Arrests Key SIM Card Supplier of a Broader Cyber Fraud Network](https://thecyberexpress.com/indian-agency-arrests-key-sim-card-supplier/) - [ ] [A nice approach to AWS security group management](https://blog.sicuranext.com/a-nice-approach-to-aws-security-group-organization/) - [ ] [Microsoft tests Windows Explorer speed, performance improvements](https://www.bleepingcomputer.com/news/microsoft/microsoft-tests-file-explorer-speed-performance-improvements/) - [ ] [Le cyberladies italiane tra talento e disparità](https://www.cybersecurity360.it/news/cyberladies-talento-disparita/) - [ ] [British hacker tied to Scattered Spider campaign pleads guilty in $8M scheme](https://therecord.media/hacker-scattered-spider-guilty-plea) - [ ] [FakeWallet crypto stealer spreading through iOS apps in the App Store](https://securelist.com/fakewallet-cryptostealer-ios-app-store-2/119482/) - [ ] [Threat Landscape March 2026: Ransomware Dominance, Access Brokers, Data Leaks, and Critical Exploitation Trends](https://cyble.com/blog/monthly-threat-landscape-march-2026/) - [ ] [Microsoft pulls service update causing Teams launch failures](https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-teams-client-launch-failures-caused-by-service-update/) - [ ] [UAE Cyber Security Council Warns 1 in 4 Public Files Contain Sensitive Personal Data](https://thecyberexpress.com/cyber-security-council-alerts-on-public/) - [ ] [Microsoft releases emergency updates to fix Windows Server issues](https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-emergency-updates-to-fix-windows-server-issues/) - [ ] [Il modello dell’EDPB sulla DPIA: pro o contro accountability?](https://www.cybersecurity360.it/news/il-modello-delledpb-sulla-dpia-pro-o-contro-accountability/) - [ ] [Vercel Incident Linked to AI Tool Hack, Internal Access Gained](https://thecyberexpress.com/vercel-security-incident-linked-to-ai-tool/) - [ ] [Cisco Patches Critical ISE Vulnerabilities Allowing Remote Code Execution Attacks](https://thecyberexpress.com/cisco-ise-vulnerabilities-enable-rce/) - Schneier on Security - [ ] [Is “Satoshi Nakamoto” Really Adam Back?](https://www.schneier.com/blog/archives/2026/04/is-satoshi-nakamoto-really-adam-back.html) - ICT Security Magazine - [ ] [Zero Trust Security: come superare le sfide più comuni](https://www.ictsecuritymagazine.com/notizie/zero-trust-security-threatlocker/) - [ ] [I cavi sottomarini: tra Mediterraneo e Baltico](https://www.ictsecuritymagazine.com/articoli/cavi-sottomarini-mediterraneo-baltico/) - Javvad Malik - [ ] [Why We Actually Need End-to-End Encryption](https://javvadmalik.com/2026/04/20/why-we-actually-need-end-to-end-encryption/) - 安全419 - [ ] [合规运营:视角转变带来的安全运营3.0时代 将重构行业价值](https://mp.weixin.qq.com/s?__biz=MzUyMDQ4OTkyMg==&mid=2247553019&idx=1&sn=06effa47b649b25b2aba84045c7195cd) - Coding Horror - [ ] [Thank You For Being a Friend](https://blog.codinghorror.com/thank-you-for-being-a-friend/) - Arturo Di Corinto - [ ] [Disinformazione e Deepfake: la democrazia in pericolo](https://dicorinto.it/formazione/disinformazione-e-deepfake-la-democrazia-in-pericolo/) - SEI Blog - [ ] [Using Data and Data Analytics to Improve Cyber Resilience](https://www.sei.cmu.edu/blog/using-data-and-data-analytics-to-improve-cyber-resilience/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updates) - The Hacker News - [ ] [SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files](https://thehackernews.com/2026/04/sglang-cve-2026-5760-cvss-98-enables.html) - [ ] [⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More](https://thehackernews.com/2026/04/weekly-recap-vercel-hack-push-fraud.html) - [ ] [Why Most AI Deployments Stall After the Demo](https://thehackernews.com/2026/04/why-most-ai-deployments-stall-after-demo.html) - [ ] [Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain](https://thehackernews.com/2026/04/anthropic-mcp-design-vulnerability.html) - [ ] [Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems](https://thehackernews.com/2026/04/researchers-detect-zionsiphon-malware.html) - [ ] [Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials](https://thehackernews.com/2026/04/vercel-breach-tied-to-context-ai-hack.html) - TorrentFreak - [ ] [India’s Expanding Site Blocking Orders Hit Legal Wall at Delhi High Court](https://torrentfreak.com/indias-expanding-site-blocking-orders-hit-legal-wall-at-delhi-high-court/) - Security Affairs - [ ] [France’s ANTS ID System website hit by cyberattack, possible data breach](https://securityaffairs.com/191069/data-breach/frances-ants-id-system-website-hit-by-cyberattack-possible-data-breach.html) - [ ] [Scattered Spider member Tyler Buchanan pleads guilty to major crypto theft](https://securityaffairs.com/191052/cyber-crime/scattered-spider-member-tyler-buchanan-pleads-guilty-to-major-crypto-theft.html) - [ ] [CVE-2023-33538 under attack for a year, but exploitation still unsuccessful](https://securityaffairs.com/191040/hacking/cve-2023-33538-under-attack-for-a-year-but-exploitation-still-unsuccessful.html) - [ ] [Third-party AI hack triggers Vercel breach, internal environments accessed](https://securityaffairs.com/191031/data-breach/third-party-ai-hack-triggers-vercel-breach-internal-environments-accessed.html) - [ ] [AI Model Claude Opus turns bugs into exploits for just $2,283](https://securityaffairs.com/191018/ai/ai-model-claude-opus-turns-bugs-into-exploits-for-just-2283.html) - LockBoxx - [ ] [Don't Run This Game: Inside the Myth Journey Malware Campaign](http://lockboxx.blogspot.com/2026/04/dont-run-this-game-inside-myth-journey.html) - Information Security - [ ] [676 Million Americans' SSNs Are on the Dark Web — Infutor Left 91.7 GB Exposed with No Password](https://www.reddit.com/r/Information_Security/comments/1sqq2b2/676_million_americans_ssns_are_on_the_dark_web/) - [ ] [AI tools just became your newest attack surface. OAuth is quietly turning into the biggest blind spot in SaaS security.](https://www.reddit.com/r/Information_Security/comments/1sqxvpr/ai_tools_just_became_your_newest_attack_surface/) - [ ] [Can on-chain tracking alone fully filter funds that passed through mixing services?](https://www.reddit.com/r/Information_Security/comments/1sqgjoy/can_onchain_tracking_alone_fully_filter_funds/) - Deeplinks - [ ] [The Internet Still Works: Reddit Empowers Community Moderation](https://www.eff.org/deeplinks/2026/04/internet-still-works-reddit-empowers-community-moderation) - 360数字安全 - [ ] [360深度参编《2025网信自主创新调研报告》 以AI实力彰显行业担当!](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247585760&idx=1&sn=9c3c7b2ff1069c82fd3c4c2b6f6c27d1) - 纽创信安 - [ ] [PANDA 2026 黑客松:RP2350 激光故障注入实战挑战,招募开启!](https://mp.weixin.qq.com/s?__biz=MzAwNTczMjAzMg==&mid=2650241079&idx=1&sn=30a4ad5df4b52c9b11f34d1ce2892526) - netsecstudents: Subreddit for students studying Network Security and its related subjects - [ ] [CREST CPSA - Preparation](https://www.reddit.com/r/netsecstudents/comments/1sr2c64/crest_cpsa_preparation/) - [ ] [SEC575 Worth It?](https://www.reddit.com/r/netsecstudents/comments/1sr1mhc/sec575_worth_it/) - [ ] [I looking out to build a really strong CTF Team](https://www.reddit.com/r/netsecstudents/comments/1sqvw4b/i_looking_out_to_build_a_really_strong_ctf_team/) - The Register - Security - [ ] [Vibe coding upstart Lovable denies data leak, cites 'intentional behavior,' then throws HackerOne under the bus](https://go.theregister.com/feed/www.theregister.com/2026/04/20/lovable_denies_data_leak/) - [ ] [Claude Desktop changes app access settings for browsers you don't even have installed yet](https://go.theregister.com/feed/www.theregister.com/2026/04/20/anthropic_claude_desktop_spyware_allegation/) - [ ] [Scot becomes second Scattered Spider-linked crook to plead guilty in US](https://go.theregister.com/feed/www.theregister.com/2026/04/20/scattered_spider_linked_scot_plead_guilty/) - [ ] [Microsoft releases Windows Server update fix to fix its April update fixes](https://go.theregister.com/feed/www.theregister.com/2026/04/20/microsoft_releases_a_windows_server_update_fix/) - [ ] [Next.js developer Vercel warns of customer credential compromise](https://go.theregister.com/feed/www.theregister.com/2026/04/20/vercel_context_ai_security_incident/) - Blackhat Library: Hacking techniques and research - [ ] [ICMP-Ghost-v3.6.2](https://www.reddit.com/r/blackhat/comments/1sqe243/icmpghostv362/) - [ ] [Vercel Breach Linked to Infostealer Infection at Context.ai](https://www.reddit.com/r/blackhat/comments/1sqbosy/vercel_breach_linked_to_infostealer_infection_at/) - Your Open Hacker Community - [ ] [Bypassing 2fa](https://www.reddit.com/r/HowToHack/comments/1sr2p0c/bypassing_2fa/) - [ ] [Is it easy to just find a wifi password (you never logged in) (in household routers)](https://www.reddit.com/r/HowToHack/comments/1sqrnt2/is_it_easy_to_just_find_a_wifi_password_you_never/) - [ ] [Is 1Browser actually reliable for privacy?](https://www.reddit.com/r/HowToHack/comments/1sqg414/is_1browser_actually_reliable_for_privacy/) - [ ] [Attempting to crack extracted Chrome passwords.](https://www.reddit.com/r/HowToHack/comments/1sqsv9k/attempting_to_crack_extracted_chrome_passwords/) - [ ] [Getting instagram accounts back after hacked](https://www.reddit.com/r/HowToHack/comments/1sqsxu7/getting_instagram_accounts_back_after_hacked/) - [ ] [Hii does anyone know hacking?? I want to learn it 😭](https://www.reddit.com/r/HowToHack/comments/1sqwdh9/hii_does_anyone_know_hacking_i_want_to_learn_it/) - [ ] [Guys , I need your serious help , I want to track someone's IP address or maybe their email or phone number , with the help of their instagram account , the instagram account is constantly posting ai morphed sexually explicit images of my sister and I must find who it is , this is a humble request](https://www.reddit.com/r/HowToHack/comments/1sqyx70/guys_i_need_your_serious_help_i_want_to_track/) - SANS Internet Storm Center, InfoCON: green - [ ] [Handling the CVE Flood With EPSS, (Mon, Apr 20th)](https://isc.sans.edu/diary/rss/32914) - [ ] [ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th)](https://isc.sans.edu/diary/rss/32912) - Computer Forensics - [ ] [Network forensics](https://www.reddit.com/r/computerforensics/comments/1sqzyvm/network_forensics/) - [ ] [Apple MacBook Air M2 Image](https://www.reddit.com/r/computerforensics/comments/1sqm26b/apple_macbook_air_m2_image/) - Technical Information Security Content & Discussion - [ ] [Building a LLM honeypot that monitors all 65535 ports](https://www.reddit.com/r/netsec/comments/1sqvg44/building_a_llm_honeypot_that_monitors_all_65535/) - [ ] [Nasa CFITSIO Fuzzing: Memory Corruptions and a Codex-Assisted Pipeline](https://www.reddit.com/r/netsec/comments/1sql8z2/nasa_cfitsio_fuzzing_memory_corruptions_and_a/)
每日安全资讯(2026-04-21)