# 每日安全资讯(2026-06-26) - SecWiki News - [ ] [SecWiki News 2026-06-25 Review](http://www.sec-wiki.com/?2026-06-25) - 先知安全技术社区 - [ ] [大模型时代的SSRF:当 AI 开始替你"访问外网"](https://xz.aliyun.com/news/92369) - [ ] [CVE-2026-42740 漏洞复现:Tainacan REST API 子查询 SQL 注入](https://xz.aliyun.com/news/92368) - Recent Commits to cve:main - [ ] [Update Thu Jun 25 11:50:52 UTC 2026](https://github.com/trickest/cve/commit/c17bb9d794c519e0b60ebb72bc5b1e92c0fc49e6) - 安全客-有思想的安全新媒体 - [ ] [360纳米Work Box全国渠道伙伴招募正式启动](https://www.anquanke.com/post/id/315669) - Microsoft Security Blog - [ ] [Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access](https://www.microsoft.com/en-us/security/blog/2026/06/25/photo-zip-campaign-targeting-hospitality-industry-delivers-node-js-implant-persistent-access/) - [ ] [Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms](https://www.microsoft.com/en-us/security/blog/2026/06/25/microsoft-a-leader-in-the-forrester-wave-for-endpoint-management-platforms/) - Private Feed for M09Ic - [ ] [anthropics released v2.1.193 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.193) - [ ] [strands-agents released typescript/v1.7.0 at strands-agents/harness-sdk](https://github.com/strands-agents/harness-sdk/releases/tag/typescript/v1.7.0) - [ ] [niudaii starred chainreactors/aiscan](https://github.com/chainreactors/aiscan) - [ ] [bolucat released 202606252210 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202606252210) - [ ] [chainreactors released v0.0.0-nightly.20260625 at chainreactors/aiscan](https://github.com/chainreactors/aiscan/releases/tag/v0.0.0-nightly.20260625) - [ ] [Mel0day starred modelscope/easydistill](https://github.com/modelscope/easydistill) - [ ] [liamg contributed to infracost/config](https://github.com/infracost/config/pull/15) - [ ] [Ph0rse starred slidevjs/slidev](https://github.com/slidevjs/slidev) - [ ] [ManassehZhou starred cloudflare/security-audit-skill](https://github.com/cloudflare/security-audit-skill) - [ ] [liamg contributed to infracost/cli](https://github.com/infracost/cli/pull/172) - [ ] [Mr-xn starred cloudflare/security-audit-skill](https://github.com/cloudflare/security-audit-skill) - [ ] [esrrhs starred Seabreg/mozillacacheview](https://github.com/Seabreg/mozillacacheview) - [ ] [mgeeky starred JameZUK/ProcmonMCP](https://github.com/JameZUK/ProcmonMCP) - [ ] [gh0stkey starred FiloSottile/mkcert](https://github.com/FiloSottile/mkcert) - Doonsec's feed - [ ] [2026高考生还适合报计算机、人工智能专业吗?](https://mp.weixin.qq.com/s/gnvBEUI-El4ixhnxgwUAUw) - [ ] [apple涨价](https://mp.weixin.qq.com/s/_EBzs0oOwqz6XfK1iXL1Nw) - [ ] [入云龙远程控制系统 · 从零开发专栏](https://mp.weixin.qq.com/s/ZkK4QO-dSV-xPgNHuIVbAQ) - [ ] [Codex桌面版启动!!!](https://mp.weixin.qq.com/s/pA4agRElZrx8XT2fLRc7xw) - [ ] [为什么大型人工智能实验室会招聘哲学家](https://mp.weixin.qq.com/s/2biPeCnx8G4Op_snNrpcUw) - [ ] [今日,苹果宣布多款产品涨价!](https://mp.weixin.qq.com/s/zVIVXRdFtcPi5wCTQm4XfQ) - [ ] [DLP数据防泄漏](https://mp.weixin.qq.com/s/u-bA-7PaMMkaFaog57sy0w) - [ ] [别再盯着屏幕等 AI](https://mp.weixin.qq.com/s/yUd9dTXyIoPoZc6HISgVBw) - [ ] [社区实战成果速递|CyberStrikeAI 交流 5 群开放](https://mp.weixin.qq.com/s/HaZfF_THXmjjK53LDlxL9g) - [ ] [记一次狗运逻辑漏洞接管前台账号](https://mp.weixin.qq.com/s/G0gY7NxkyEydZmpWVQhlQA) - [ ] [阿里巴巴证实:已正式起诉美国防部](https://mp.weixin.qq.com/s/91Ylq8i44aO2pgjL-_m4mg) - [ ] [【高危漏洞预警】Gogs git rebase参数注入远程代码执行漏洞CVE-2026-52813](https://mp.weixin.qq.com/s/ucH44lrRnMRD_pikAFl8hQ) - [ ] [AICon 2026·上海站|快手 AI 技术实践亮点抢先看](https://mp.weixin.qq.com/s/QbtoE-Oyy1_zhVGD8-4AtA) - [ ] [手搓MBTI小程序](https://mp.weixin.qq.com/s/ot07uiJmPJGmaH8wuvO_ow) - [ ] [吃透这份网安手册,你就是下一个网安大佬!](https://mp.weixin.qq.com/s/OGw0GKBYtuGvyDA6k7Cl1w) - [ ] [智行千里,善治为舵—AI做好数据安全治理](https://mp.weixin.qq.com/s/Q7WkkD5UH3MNO4IFQs6o1g) - [ ] [CertiK成为XDC Network机构级主节点验证者,支持企业金融基础设施建设](https://mp.weixin.qq.com/s/OKSS84EKxLrIDI29W59TpA) - [ ] [免费 | Typora 团队重磅新作:Otty,专为 AI Agent 打造的智能终端!](https://mp.weixin.qq.com/s/2b8L25N5gW6FeqLx-a1rAQ) - [ ] [分享图片](https://mp.weixin.qq.com/s/DORCCc3x9zRMCjqNisiNeA) - [ ] [【已复现】Gogs 远程代码执行漏洞(CVE-2026-52813)安全风险通告](https://mp.weixin.qq.com/s/NZYzB9yYMUWKbkXkgzD9nA) - [ ] [行业资讯:某亿级政务外网升级改造项目,深信服、安恒、奇安信、远望、华为、H3C、山石等厂商均有参与](https://mp.weixin.qq.com/s/_1HoAKduR8lLV87iyCm0Zw) - [ ] [G.O.S.S.I.P 阅读推荐 2026-06-25 你的 API Key,正在被 AI 的\"技能包\"悄悄读出来](https://mp.weixin.qq.com/s/Gg3wt360nx9SEGcE9BXJhQ) - [ ] [我用AI批量解剖小程序:10分钟挖出30个AccessKey,全是高危](https://mp.weixin.qq.com/s/WKeowavsUhHhhQJwQpf5xw) - [ ] [【AI安全】Claude Code接管SOC!3人团队也能7×24](https://mp.weixin.qq.com/s/cM8-oQaSB7U4d0KfvoJMcg) - [ ] [客户端漏洞挖掘skills](https://mp.weixin.qq.com/s/swYPy3q5kBiRs4dNGdGiMw) - [ ] [美团 LongCat 开源 VitaBench 2.0:长期动态智能体基准新标杆](https://mp.weixin.qq.com/s/HoiUxYnyJuh2_xdxmg8s8Q) - [ ] [报名|美团 & ICML\'26 论文分享会:通用 Agent 专场 + 视频生成等综合专场](https://mp.weixin.qq.com/s/spO1IKlPYlqwK7IOo3_lSw) - [ ] [哈尔滨工业大学(深圳)与中国科学技术大学合作完成:首个完全在FPGA硬件内实现自举密钥展开的独立TFHE全同态加密加速方案](https://mp.weixin.qq.com/s/7WFjUrJDoLdvxIiuqc6Muw) - [ ] [鹅厂员工当年高考都考了多少分?](https://mp.weixin.qq.com/s/Tdxv-6MM1OIzWwxelwXPBw) - [ ] [OpenClaw技能市场使人工智能代理面临供应链恶意软件和金融欺诈的风险](https://mp.weixin.qq.com/s/oTLr6_s5kWBfoN16dVi6Dw) - [ ] [重磅!EP要人保护行业获得首个美国国家标准](https://mp.weixin.qq.com/s/3D2RniRyDIBxfooV4mZJKg) - [ ] [Vibe Coding 困了、累了, Claude 帮我点了杯瑞幸咖啡!](https://mp.weixin.qq.com/s/mznVbNSbbXI9e5c_Mmcquw) - [ ] [Chrome 149 安全更新——修复可导致代码执行攻击的严重漏洞](https://mp.weixin.qq.com/s/7v-1xbqVmA0-IlDCjkeb6A) - [ ] [江苏银行构建信贷审查智能体,最快2小时完成尽调报告](https://mp.weixin.qq.com/s/ZHw6ZKYvqDJ0Xk8BwAVN2g) - [ ] [AI快讯:OpenAI发布AI芯片,汇丰报告指出AI难替代人类财富顾问](https://mp.weixin.qq.com/s/MnPMALkjLzIUsCeyb_Ienw) - [ ] [ISC.AI 2026在京举办:AI正击穿三十年的攻防平衡 中国需要自己的智能攻防体系](https://mp.weixin.qq.com/s/8ySii4mCvFbzVt7MXK3ePg) - [ ] [ISC.AI 2026第四届全国信息安全产教融合共同体发展大会:政企校共探智能体时代人才培养新路径](https://mp.weixin.qq.com/s/GV5FEf3rtS-eHfwmuL8FDg) - [ ] [ISC.AI 2026创新独角兽沙盒大赛决赛:安全筑底、AI破局、高校新星崛起](https://mp.weixin.qq.com/s/bYcIxhOzCF84Rnqutic4qA) - [ ] [企业级智能体告别\"演示模式\":信通院联合360发布报告,首次定义落地标准](https://mp.weixin.qq.com/s/QyI_fAVEZouhh3mFOJWfCQ) - [ ] [360 ADE认证纳入工信部紧缺人才培养工程,今年计划颁发超万张证书](https://mp.weixin.qq.com/s/naapwpO3-yJEIt-XdOahMw) - [ ] [亚信安全入选权威AI安全报告 智能体安全体系获行业深度认可](https://mp.weixin.qq.com/s/4S7GL3nHVlR9vwxjmpBw2A) - [ ] [90%自学网安的人都在踩坑!避开这5个致命误区,少走半年弯路](https://mp.weixin.qq.com/s/ZONBLAZLAQj4Tx-tUbpzFA) - [ ] [锦行科技圆满支撑2026年广西教育系统网络安全攻防演习](https://mp.weixin.qq.com/s/Me_lgsUFvXUWYj5QqG_2lg) - [ ] [Jenkins综合漏洞利用工具](https://mp.weixin.qq.com/s/BrEi4W3plsnveOcQotGgIA) - [ ] [披着“官方文件”外衣的窃密陷阱:从“银狐”木马看身份伪装式攻击的致命威胁](https://mp.weixin.qq.com/s/m07eH29exCVvrf854ME1_w) - [ ] [培训报名 | “数智化转型内部评估师(DTIV)”培训班(上海)](https://mp.weixin.qq.com/s/kqiCT14YYUYhCAaCNVNLMw) - [ ] [AI智能体攻击面分析](https://mp.weixin.qq.com/s/h7Iqt67XlT0BKptC-iFA8A) - [ ] [多模态AI办公加速落地,安全防线更要“抢先一步”](https://mp.weixin.qq.com/s/0dR_H-dW43JfkWqQVi8pmg) - [ ] [直播预告丨AI赋能的漏洞挖掘与风险管控,公开课第八节开放预约](https://mp.weixin.qq.com/s/xPmomLLSLWiU0KFSk1YJ4A) - [ ] [校企协同共育网安英才 | 天融信与长江工程职业技术学院签约网络安全订单班](https://mp.weixin.qq.com/s/wAzH1Zang6SduQ-xRnTKdw) - [ ] [告别人工扒HAR!AI Web爬虫智能体,精准读懂Web数据写入与回显逻辑](https://mp.weixin.qq.com/s/uWkgK-r0kVR7sUYwfaCArQ) - [ ] [政策解读 | 《网络数据安全风险评估办法》正式发布,重要数据处理者迎来年度\"必答题\"](https://mp.weixin.qq.com/s/BwnBZCPwzOgm4LdcV8-gAA) - [ ] [冠军出炉 | 火山 AI 安全挑战赛收官・红队赛道全纪实](https://mp.weixin.qq.com/s/QuEE8RZXhqNMlZeGD4l5zg) - [ ] [机器人把钱主动送上门,1500 万没了](https://mp.weixin.qq.com/s/RZPXLCaRGXB42cZhA42gUg) - [ ] [连年登榜 | 珞安科技实力荣登《新质·中国数字安全百强(2026)》榜单](https://mp.weixin.qq.com/s/ypLCv2PyI9MSrtqeUa_3HA) - [ ] [创宇安全智脑通用安全能力升级通告(20260625)](https://mp.weixin.qq.com/s/SesOvlXdBGBtDq3eeKoJ0A) - [ ] [翻越围栏:智能体过度主动行为的安全分析](https://mp.weixin.qq.com/s/FiBoU-K5acoaAyI350-8XQ) - [ ] [国家金监总局发布《关于银行业保险业人工智能安全开发应用的指导意见》](https://mp.weixin.qq.com/s/DSK9HZGw97-XYDi8870xdA) - [ ] [乌克兰奇袭莫斯科:无人机重塑现代战场态势](https://mp.weixin.qq.com/s/hqogHeITchGSzmJhiD8qqg) - [ ] [【漏洞通告】FFmpeg MagicYUV PixelSmash 解码器堆越界写入漏洞(CVE-2026-8461)](https://mp.weixin.qq.com/s/ERSGCN3tPfRDBx0WZrvUrQ) - [ ] [【漏洞通告】Cisco Unified Communications Manager WebDialer 服务器端伪造请求漏洞(CVE-2026-20230)](https://mp.weixin.qq.com/s/xsym4OfXmJl3-VUooMVJ3A) - [ ] [网络安全信息与动态周报2026年第25期(6月15日-6月21日)](https://mp.weixin.qq.com/s/fdwihSdKPMipgzqEZ2XCLQ) - [ ] [xss利用冷门事件绕过阿里云waf](https://mp.weixin.qq.com/s/Rk5UNtjDruDVGV5q_3GiMA) - [ ] [【论文速读】| OpenAnt:通过代码分解、对抗性验证与动态测试的LLM漏洞发现](https://mp.weixin.qq.com/s/apu4-rIhU8ZqynmvXJIPvQ) - [ ] [【14CPE】在线参加2026年分会领导人峰会,获取14个CPE学分](https://mp.weixin.qq.com/s/2ZXjys69QrDL1OZVdOEW7Q) - [ ] [“世界杯内幕曝光”?小心,这个标题本身就是陷阱](https://mp.weixin.qq.com/s/oLiL85epV4nctlHAl43xOg) - [ ] [功能安全——软件架构设计](https://mp.weixin.qq.com/s/-Sf_Dfy8KSSnG1xT4UuWWQ) - [ ] [西门子工业软件(上海)的售前技术顾问确认出席AutoEEA 2026:模型驱动的整车电子电气架构开发](https://mp.weixin.qq.com/s/iYnobrMxnsmSEx2P6UAh5w) - [ ] [我国牵头制定!联合国自动驾驶全球技术法规正式发布](https://mp.weixin.qq.com/s/dhdIK1rcQh6t-Fl9ruToGA) - Securelist - [ ] [Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools](https://securelist.com/smb-threat-report-2026/120357/) - GuidePoint Security - [ ] [The Identity Risk Metric CISOs Have Been Missing](https://www.guidepointsecurity.com/blog/identity-security-posture-management/) - Malwarebytes - [ ] [Beware of “Parcel Expert” job offers: They’re parcel mule scams](https://www.malwarebytes.com/blog/scams/2026/06/beware-of-parcel-expert-job-offers-theyre-parcel-mule-scams) - [ ] [Update Chrome to patch critical browser security flaws](https://www.malwarebytes.com/blog/news/2026/06/update-chrome-to-patch-critical-browser-security-flaws) - [ ] [Fake domain renewal emails trick website owners into paying scammers](https://www.malwarebytes.com/blog/threat-intel/2026/06/fake-domain-renewal-emails-trick-website-owners-into-paying-scammers) - [ ] [Elite network says it was hacked after members’ personal data was left exposed](https://www.malwarebytes.com/blog/privacy/2026/06/elite-network-says-it-was-hacked-after-members-personal-data-was-left-exposed) - Reverse Engineering - [ ] [Luma: A new workspace for Frida](https://www.reddit.com/r/ReverseEngineering/comments/1ufnvd3/luma_a_new_workspace_for_frida/) - [ ] [VAXD now with support for ARM](https://www.reddit.com/r/ReverseEngineering/comments/1ufcbdq/vaxd_now_with_support_for_arm/) - daniel.haxx.se - [ ] [Trailing dots are the worst](https://daniel.haxx.se/blog/2026/06/25/trailing-dots-are-the-worst/) - 奇客Solidot–传递最新科技情报 - [ ] [LastPass 再次披露用户数据泄漏](https://www.solidot.org/story?sid=84681) - [ ] [苹果产品正式涨价](https://www.solidot.org/story?sid=84680) - [ ] [卵巢绝经后可能转变为具有免疫功能的器官](https://www.solidot.org/story?sid=84679) - [ ] [中国科学家研发出降低镉吸收能力的水稻](https://www.solidot.org/story?sid=84678) - [ ] [OpenAI 宣布了专用于推理的自研 AI 芯片 Jalapeño](https://www.solidot.org/story?sid=84677) - [ ] [英国维基百科员工寻求成立工会](https://www.solidot.org/story?sid=84676) - [ ] [微软称 8GB 内存对 Windows 11 足够用了](https://www.solidot.org/story?sid=84675) - [ ] [白宫应用自动下载到政府配发手机上且无法卸载](https://www.solidot.org/story?sid=84674) - [ ] [给拼写错误的单词引入波浪线的人](https://www.solidot.org/story?sid=84672) - [ ] [LG 和三星智能电视应用三分之一嵌入了住宅代理 SDK](https://www.solidot.org/story?sid=84671) - [ ] [Anthropic 指控阿里巴巴蒸馏其模型](https://www.solidot.org/story?sid=84670) - 黑海洋Wiki | AI机器人硬件开发 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台 - [ ] [新版“谷歌财经”正式上线并推出独立App](https://blog.upx8.com/%E6%96%B0%E7%89%88-%E8%B0%B7%E6%AD%8C%E8%B4%A2%E7%BB%8F-%E6%AD%A3%E5%BC%8F%E4%B8%8A%E7%BA%BF%E5%B9%B6%E6%8E%A8%E5%87%BA%E7%8B%AC%E7%AB%8BApp) - HackerNews - [ ] [Mandiant 揭示 Cisco SD-WAN 零日攻击如何获取 root 访问权限](http://0.0.0.0:8080/post/64387) - [ ] [Samsung KNOX 内核释放后使用(UAF)漏洞影响数百万台 Galaxy 设备](http://0.0.0.0:8080/post/64386) - [ ] [DifyTap:四个漏洞使超过 100 万个 AI 应用面临风险](http://0.0.0.0:8080/post/64385) - [ ] [macOS 弱点被串联利用,静默禁用端点安全代理](http://0.0.0.0:8080/post/64384) - [ ] [Amadey 和 StealC 恶意软件网络被瓦解,2700 万被盗凭证被追回](http://0.0.0.0:8080/post/64383) - [ ] [CISA 警告:Lantronix EDS5000 关键漏洞正被积极利用](http://0.0.0.0:8080/post/64382) - 绿盟科技技术博客 - [ ] [国际认可 | 绿盟科技获评Gartner®《中国特权访问管理(PAM)市场指南》代表性厂商](https://blog.nsfocus.net/%e5%9b%bd%e9%99%85%e8%ae%a4%e5%8f%af-%e7%bb%bf%e7%9b%9f%e7%a7%91%e6%8a%80%e8%8e%b7%e8%af%84gartner%e3%80%8a%e4%b8%ad%e5%9b%bd%e7%89%b9%e6%9d%83%e8%ae%bf%e9%97%ae%e7%ae%a1%e7%90%86%ef%bc%88pam/) - 全频带阻塞干扰 - [ ] [重磅!EP要人保护行业获得首个美国国家标准](https://mp.weixin.qq.com/s?__biz=MzIzMzE2OTQyNA==&mid=2648959369&idx=1&sn=b3ca843831ea334c8b08789ad2faa630) - 腾讯玄武实验室 - [ ] [每日安全动态推送(26/6/25)](https://mp.weixin.qq.com/s?__biz=MzA5NDYyNDI0MA==&mid=2651960499&idx=1&sn=119241df8ff8da5bc65c583a1145d0b6) - 威努特安全网络 - [ ] [如何用Spine-Leaf构建万卡集群算力高速](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651142505&idx=1&sn=409445bf0ba5230e08bb2347d2e7daa4) - [ ] [WinClaw限时全免!注册即享AI大模型免费额度](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651142505&idx=2&sn=82b492ca02d663b444f722363d1d37fd) - 黑鸟 - [ ] [为什么大型人工智能实验室会招聘哲学家](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451187425&idx=1&sn=b1327e05f75b5c2ad0e02a074073aba9) - 安全内参 - [ ] [和谈关键时期,伊朗主要银行遭网络入侵瘫痪,卡系统/ATM终端/App全部中断](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247516146&idx=1&sn=f0683dfffd0a0cd6bc33205b64792fe4) - [ ] [Gartner发布2026年网络安全八大趋势](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247516146&idx=2&sn=751668097a6b5b01df60e63daf77d3d3) - 代码卫士 - [ ] [三星 KNOX 漏洞已存在8年,可导致数百万 Galaxy 设备遭内核攻击](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526389&idx=1&sn=142e87f0bc58a8d8877a6e2f4b4127e2) - [ ] [Langflow 严重漏洞可导致未认证远程代码执行后果](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526389&idx=2&sn=a692a0a18f59def9c6fa164c8ac2ccec) - 安全客 - [ ] [360纳米Work Box全国渠道伙伴招募正式启动](https://mp.weixin.qq.com/s?__biz=MzA5ODA0NDE2MA==&mid=2649790124&idx=1&sn=e856b70dd849add1b371b803ae1f8885) - 长亭安全应急响应中心 - [ ] [【已复现】Gogs 组织名称路径遍历导致 Git hooks 远程代码执行漏洞(CVE-2026-52813)](https://mp.weixin.qq.com/s?__biz=MzIwMDk1MjMyMg==&mid=2247493232&idx=1&sn=af7a21ab113b9f220345289c75ef5b3c) - 奇安信 CERT - [ ] [【已复现】Microsoft Exchange Server 服务器端请求伪造漏洞(CVE-2026-45504)安全风险通告](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247506403&idx=1&sn=e72f2cbcf9ff253a62fd1185c69ab148) - 安全研究GoSSIP - [ ] [G.O.S.S.I.P 阅读推荐 2026-06-25 你的 API Key,正在被 AI 的"技能包"悄悄读出来](https://mp.weixin.qq.com/s?__biz=Mzg5ODUxMzg0Ng==&mid=2247501828&idx=1&sn=576926c638603dc78c7639f630af2ea0) - 数世咨询 - [ ] [“第六届数字安全大会”倒计时2天](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247543367&idx=1&sn=44179dac14307a4d000602a998f45282) - 中国信息安全 - [ ] [周鸿祎ISC宣布打造“中国版Mythos”:已具备同等漏洞自动挖掘能力](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264013&idx=1&sn=91f7ac7d6ed54e56493deb1962504059) - [ ] [前沿 | 人工智能供应链安全风险分析与防护体系构建](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264013&idx=2&sn=e1f99d50f9a9eab2fcd3ddf4a0fb73d7) - [ ] [关注 | 我国牵头制定的联合国自动驾驶系统全球技术法规获批发布](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264013&idx=3&sn=552366f47b85ba85c7909732bd20b8fd) - [ ] [专家观点 | 以网络安全标识促联网产品网络安全能力提升](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264013&idx=4&sn=378104cfbf51c579f38fabd8b0118d5e) - [ ] [评论 | 强化联合惩戒震慑电诈“工具人”](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264013&idx=5&sn=dd3c0966ef47b0ccaaa940e3a66962b3) - 天黑说嘿话 - [ ] [赶紧看!!海澜之家剪标清仓1折起!超低价秒杀!低至19.9元!赠运费险!](https://mp.weixin.qq.com/s?__biz=MzI5NTQ5MTAzMA==&mid=2247486128&idx=1&sn=d1c5570f288eaa50cfde5589638e5465) - 看雪学苑 - [ ] [AI 复杂 VM 算法还原](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458616977&idx=1&sn=9e1214ec18e64cbbbfe7df07de8a3842) - [ ] [冒充税务局投毒!下载一份 “税单”,电脑直接被黑客远程掌控](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458616977&idx=2&sn=4e397f4ff2b9e3878be41114d91678cb) - [ ] [频繁被封、环境不稳定、设备成本高?基于CVD的云手机定制与风控分析](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458616977&idx=3&sn=edfdac627878a7fd121d0834340ccd32) - 威胁棱镜 - [ ] [2026 年 AI+安全职业报告](https://mp.weixin.qq.com/s?__biz=MzkyMzE5ODExNQ==&mid=2247488710&idx=1&sn=a94c0de0fc1a3e5a11bb163a69afe804) - 黑哥虾撩 - [ ] [AI Harness:新生产力需要新生产关系](https://mp.weixin.qq.com/s?__biz=Mzg5OTU1NTEwMg==&mid=2247484575&idx=1&sn=c45d0443f5f1df518a221e95e6272e85) - 极客公园 - [ ] [马斯克向太空要电,GobiX 在戈壁给 AI 找到了答案](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653109446&idx=1&sn=0c835ceb82e8f012cd3d39afe2b1bbcf) - [ ] [当所有 AI 都在理解世界,这家公司在理解你](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653109446&idx=2&sn=6d0d504f2ae6a04eee49374878b3ef0c) - [ ] [从「为模型造硬件」到「为人重做终端」:AI 硬件的下一个十年](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653109436&idx=1&sn=8b170802e7becdad9738752b9cdc5626) - [ ] [马斯克太空算力计划官宣命名「Starmind」;传英伟达算力租赁价格较高点下跌 31%;九个月流片,OpenAI 首秀自研 AI 芯片 | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653109399&idx=1&sn=32e68cc68aa4766b0e75593361cf53d8) - 安全牛 - [ ] [一个“小白”黑客,1000次对话,14家企业沦陷——AI Agent正在颠覆网络攻防的底层逻辑](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141769&idx=1&sn=ac2c389b46b7ca5c4aea170ed90d1ff0) - [ ] [企业严控员工 AI 小额算力消耗,Token成本失控倒逼AI 预算收紧;OpenAI 联合Broadcom 推出推理专用芯片,加速攻防 AI 规模化落地 | 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141769&idx=2&sn=b35b439e4068e2291c85f6060c9d4199) - 腾讯安全威胁情报中心 - [ ] [翻越围栏:智能体过度主动行为的安全分析](https://mp.weixin.qq.com/s?__biz=MzI5ODk3OTM1Ng==&mid=2247512046&idx=1&sn=a1d09933ba73fb03bb3867a2be7fa57b) - 字节跳动技术团队 - [ ] [火山引擎发布《企业级 ArkClaw 安全白皮书》](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247520552&idx=1&sn=14ff3cc6f15428041ba8f77cc97a6b42) - 滴滴安全应急响应中心 - [ ] [DSRC|26年第二季度奖励发放公告](https://mp.weixin.qq.com/s?__biz=MzA3Mzk1MDk1NA==&mid=2651909236&idx=1&sn=9e2672398c1cde0e208b8ee6e3685112) - 复旦白泽战队 - [ ] [录用速递|我实验室8篇论文被USENIX Security'26接收!](https://mp.weixin.qq.com/s?__biz=MzU4NzUxOTI0OQ==&mid=2247499083&idx=1&sn=003e5a3aea94d3f9de92d691a6210dbe) - 火绒安全 - [ ] [极速扩散!TeamPcp组织利用高阶蠕虫大规模入侵开发者生态](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247534798&idx=1&sn=8b5af119baa1334d594677aff308fb11) - [ ] [诚邀渠道合作伙伴共启新征程](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247534798&idx=2&sn=2578622edcc7e6640e7c25a8c1ffda59) - 安全圈 - [ ] [【安全圈】AI当黑客?2026年网络安全六大趋势,第3个最吓人](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652077548&idx=1&sn=48edd793b02c9c9f874aec85cedaab1d) - [ ] [【安全圈】DifyTap:四个漏洞使超过 100 万个 AI 应用面临风险](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652077548&idx=2&sn=320021d6e2cddac1997f86034d3b1daa) - [ ] [【安全圈】macOS 弱点被串联利用,静默禁用端点安全代理](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652077548&idx=3&sn=cfd8c8ffbd41b9e916a1ff4589c500a2) - 字节跳动安全中心 - [ ] [冠军出炉 | 火山 AI 安全挑战赛收官・红队赛道全纪实](https://mp.weixin.qq.com/s?__biz=MzUzMzcyMDYzMw==&mid=2247496290&idx=1&sn=24aff9759ecbfd1b47542d3f84f5df29) - 深信服千里目安全技术中心 - [ ] [【漏洞通告】FFmpeg MagicYUV PixelSmash 解码器堆越界写入漏洞(CVE-2026-8461)](https://mp.weixin.qq.com/s?__biz=Mzg2NjgzNjA5NQ==&mid=2247525981&idx=1&sn=d4dd00ac4babcd8f28fa3470d74cdafa) - [ ] [【漏洞通告】Cisco Unified Communications Manager WebDialer 服务器端伪造请求漏洞(CVE-2026-20230)](https://mp.weixin.qq.com/s?__biz=Mzg2NjgzNjA5NQ==&mid=2247525981&idx=2&sn=2bc0ce71e97816891cf1068afa06d4e7) - [ ] [网络安全信息与动态周报2026年第25期(6月15日-6月21日)](https://mp.weixin.qq.com/s?__biz=Mzg2NjgzNjA5NQ==&mid=2247525981&idx=3&sn=a274416c705346ebec2aa57182730cac) - 美团技术团队 - [ ] [美团 LongCat 开源 VitaBench 2.0:长期动态智能体基准新标杆](https://mp.weixin.qq.com/s?__biz=MjM5NjQ5MTI5OA==&mid=2651782940&idx=1&sn=cdcc1d5ef4abbde9dcd8db011243127d) - [ ] [报名|美团 & ICML'26 论文分享会:通用 Agent 专场 + 视频生成等综合专场](https://mp.weixin.qq.com/s?__biz=MjM5NjQ5MTI5OA==&mid=2651782940&idx=2&sn=4456ee2f95bf8b1016981539d760253f) - 情报分析师 - [ ] [十大高价值社交媒体照片情报分析(2026年6月)](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650568331&idx=1&sn=54adf27c47929a10437c1e58a6ec4e65) - 表图 - [ ] [[译苑雅集vol. 11]程序员开始焦虑失业,哲学家却被 AI 公司抢人](https://mp.weixin.qq.com/s?__biz=MzUzOTI4NDQ3NA==&mid=2247485061&idx=1&sn=e3957fe687948d4d0d64501ee81a647a) - OnionSec - [ ] [如何成为一个长期可持续工作的安全从业者](https://mp.weixin.qq.com/s?__biz=MzUyMTUwMzI3Ng==&mid=2247485837&idx=1&sn=822324c568c16c577108a515510b3bd5) - 墨菲安全 - [ ] [年中汇报,除了“总体可控”,安全团队还能说什么?](https://mp.weixin.qq.com/s?__biz=MzkwOTM0MjI5NQ==&mid=2247488487&idx=1&sn=ba95daa55c88048bff8f1f45dd0bf402) - TrustedSec - [ ] [Large Workflows with Local LLMs](https://trustedsec.com/blog/large-workflows-with-local-llms) - 迪哥讲事 - [ ] [一个xss](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247499604&idx=1&sn=fca06ab4903f333dfd740c5800d19628) - 丁爸 情报分析师的工具箱 - [ ] [【情报】湾湾在泰国“秘密窃听站”续集](https://mp.weixin.qq.com/s?__biz=MzI2MTE0NTE3Mw==&mid=2651156379&idx=1&sn=bd545cf1bab1ceb2edf7ec3194ee319b) - 360数字安全 - [ ] [企业级智能体告别"演示模式":信通院联合360发布报告,首次定义落地标准](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247586347&idx=1&sn=13b33d996aa3073770fb49b5fb02f022) - [ ] [360 ADE认证纳入工信部紧缺人才培养工程,今年计划颁发超万张证书](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247586347&idx=2&sn=cd28de7dea3773927d484a03616564f7) - Over Security - [ ] [Anthropic is testing desktop-like Claude Cowork for mobile](https://www.bleepingcomputer.com/news/artificial-intelligence/anthropic-is-testing-desktop-like-claude-cowork-for-mobile/) - [ ] [Poland busts SIM-swapping gang tied to millions in crypto theft](https://www.bleepingcomputer.com/news/security/poland-busts-sim-swapping-gang-tied-to-millions-in-crypto-theft/) - [ ] [Polymarket says hackers stole users’ funds](https://techcrunch.com/2026/06/25/polymarket-says-hackers-stole-users-funds/) - [ ] [Order-tracking app Shop abused to push callback phishing attacks](https://www.bleepingcomputer.com/news/security/order-tracking-app-shop-abused-to-push-callback-phishing-attacks/) - [ ] [DHS chief says president has met with potential CISA nominee; agency plans to hire 600](https://therecord.media/cisa-director-nominee-workforce-hires-mullin-house-hearing) - [ ] [Microsoft quietly extends free Windows 10 ESU support to October 2027](https://www.bleepingcomputer.com/news/microsoft/microsoft-quietly-extends-free-windows-10-esu-support-to-october-2027/) - [ ] [Beyond IOCs: AI-enabled threat intelligence](https://blog.talosintelligence.com/beyond-iocs-ai-enabled-threat-intelligence/) - [ ] [PreCrime Credentials](https://bfore.ai/datasheet/precrime-credentials/) - [ ] [Hacked Klue says criminals are deleting stolen customer data, but now other hackers are making threats](https://techcrunch.com/2026/06/25/hacked-klue-says-criminals-are-deleting-stolen-customer-data-but-now-other-hackers-are-making-threats/) - [ ] [New macOS malware embeds fake errors to confuse AI analysis tools](https://www.bleepingcomputer.com/news/security/new-macos-malware-embeds-fake-errors-to-confuse-ai-analysis-tools/) - [ ] [PirloTV sports piracy network disrupted as 44 domains seized](https://www.bleepingcomputer.com/news/security/pirlotv-sports-piracy-network-disrupted-as-44-domains-seized/) - [ ] [Anatomy of a Phish: Engineering Panic](https://pixmsecurity.com/blog/blog/anatomy-of-a-phish-engineered-panic-one-phone-call-from-disaster/) - [ ] [Incident response: gestione degli incidenti e dei data breach informatici](https://www.cybersecurity360.it/nuove-minacce/incident-response-gestione-degli-incidenti-e-dei-data-breach-informatici/) - [ ] [Another Russian dairy company reportedly disrupted by cyberattack](https://therecord.media/russia-dairy-producter-cyberattack-ufa) - [ ] [Bluekit phishing kit adopts browser-in-the-middle for login theft](https://www.bleepingcomputer.com/news/security/bluekit-phishing-kit-adopts-browser-in-the-middle-for-login-theft/) - [ ] [OpenAI punta sull’automazione delle patch: Daybreak e la nuova frontiera della cyber security](https://www.cybersecurity360.it/soluzioni-aziendali/openai-punta-sullautomazione-delle-patch-daybreak-e-la-nuova-frontiera-della-cyber-security/) - [ ] [The Four Elevations of Effective Fraud Prevention](https://www.bleepingcomputer.com/news/security/the-four-elevations-of-effective-fraud-prevention/) - [ ] [Il tuo EDR ti conosce davvero?](https://www.certego.net/blog/detection-engineering-il-tuo-edr-ti-conosce-davvero/) - [ ] [Attacco ransomware a Tata Electronics: 630 GB di dati riservati di Apple e Tesla finiscono online](https://www.cybersecurity360.it/nuove-minacce/ransomware/attacco-ransomware-a-tata-electronics-630-gb-di-dati-riservati-di-apple-e-tesla-finiscono-online/) - [ ] [ANY.RUN & Torq Integration: Scale Triage & Respond with Confidence](https://any.run/cybersecurity-blog/torq-integration/) - [ ] [Categorizzazione NIS2 entro il 30 giugno: perché non è solo un Excel da caricare](https://www.cybersecurity360.it/legal/categorizzazione-nis2-entro-il-30-giugno-perche-non-e-solo-un-excel-da-caricare/) - [ ] [Russia used Cellebrite phone-hacking tool to crack down on dissident after firm cut off country](https://therecord.media/russia-used-cellebrite-tool-after-company-pulled-out-of-country) - [ ] [Ukraine's state postal operator reports app disruption after cyberattack](https://therecord.media/ukraine-state-postal-operator-reports-disruption) - [ ] [Webinar: Why account takeovers remain one of the hardest threats to stop](https://www.bleepingcomputer.com/news/security/webinar-why-account-takeovers-remain-one-of-the-hardest-threats-to-stop/) - [ ] [Cellebrite said it cut off Russia, but Russia used is tools anyway](https://techcrunch.com/2026/06/25/cellebrite-said-it-cut-off-russia-but-russia-used-is-tools-anyway/) - [ ] [Global cyber strike disrupts SocGholish, Amadey, and StealC malware networks – Coordinated actions take down criminal infrastructure; over EUR 41 million in criminal crypto assets seized | Europol](https://www.europol.europa.eu/media-press/newsroom/news/global-cyber-strike-disrupts-socgholish-amadey-and-stealc-malware-networks) - [ ] [Exploited Security Vendor Vulnerabilities in 2026](https://www.hackmageddon.com/2026/06/25/exploited-security-vendor-vulnerabilities-in-2026/) - [ ] [Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools](https://securelist.com/smb-threat-report-2026/120357/) - [ ] [Introduction to COM usage by Windows threats](https://blog.talosintelligence.com/introduction-to-com-usage-by-windows-threats/) - [ ] [Garfield AI Secures Landmark Court Victory for AI-Powered Law Firm](https://thecyberexpress.com/ai-powered-law-firm-wins-court-case/) - [ ] [Stryker Cyberattack Lawsuit Faces Challenge as Company Seeks Dismissal](https://thecyberexpress.com/stryker-cyberattack-lawsuit-dismissal/) - [ ] [Millenium: A RAT Rewritten, A Threat Multiplied](https://www.group-ib.com/blog/millenium-rat-maas/) - [ ] [AI offensiva e sovranità digitale: la doppia sfida della cyber security europea](https://www.cybersecurity360.it/cybersecurity-nazionale/progetto-europeo-vantage/) - [ ] [IPTV campaigns target Football Fans across Multiple Countries](https://www.threatfabric.com/blogs/iptv-campaigns-target-football-fans-across-multiple-countries) - [ ] [Gang criminali all’assalto dei corrieri: il boom del phishing contro GLS](https://www.d3lab.net/gang-criminali-allassalto-dei-corrieri-il-boom-del-phishing-contro-gls/) - [ ] [L’irrilevanza delle formule di stile: l’autorizzazione dell’interessato non solleva dall’accountability](https://www.cybersecurity360.it/news/lirrilevanza-delle-formule-di-stile-lautorizzazione-dellinteressato-non-solleva-dallaccountability/) - [ ] [LLM, vulnerabilità e responsabilità: la cyber security corre più veloce del diritto](https://www.cybersecurity360.it/nuove-minacce/llm-vulnerabilita-e-responsabilita-la-cyber-security-corre-piu-veloce-del-diritto/) - [ ] [Google releases new privacy controls for activity history, personalization](https://www.bleepingcomputer.com/news/google/google-releases-new-privacy-controls-for-activity-history-personalization/) - 青藤智库 - [ ] [AI智能体攻击面分析](https://mp.weixin.qq.com/s?__biz=MzUyOTkwNTQ5Mg==&mid=2247489478&idx=1&sn=40d3e51d3dec39d5ef35ae4ab6ab7fa3) - NETRESEC Network Security Blog - [ ] [Ping32 RMM and ValleyRAT](https://www.netresec.com/?page=Blog&month=2026-06&post=Ping32-RMM-and-ValleyRAT) - Krypt3ia - [ ] [Threat Intelligence Report: Russian Dairy and Food-Sector Cyber Disruptions; Nation States? Criminal Actors? Widening Cyber Warfare?](https://krypt3ia.wordpress.com/2026/06/25/threat-intelligence-report/) - ICT Security Magazine - [ ] [Si chiama “shadow AI” solo quando non viene gestita](https://www.ictsecuritymagazine.com/articoli/shadow-ai-non-gestita/) - [ ] [Forum ICT Security 2026 – Due giornate sul futuro della sicurezza digitale e del rischio cyber](https://www.ictsecuritymagazine.com/notizie/forum-ict-security-2026-sicurezza-digitale/) - [ ] [Le due facce dello stesso rischio CI/CD: Cordyceps e la falla agentica di Claude Code](https://www.ictsecuritymagazine.com/notizie/due-facce-rischio-cicd-cordyceps-claude-code/) - [ ] [Gestione delle credenziali: ruolo del gestore delle password](https://www.ictsecuritymagazine.com/notizie/gestore-delle-password/) - [ ] [IEC 62443: la sicurezza industriale non è l’informatica trapiantata in fabbrica](https://www.ictsecuritymagazine.com/industrial-cyber-security/iec-62443-sicurezza-ot/) - D3Lab - [ ] [Gang criminali all’assalto dei corrieri: il boom del phishing contro GLS](https://www.d3lab.net/gang-criminali-allassalto-dei-corrieri-il-boom-del-phishing-contro-gls/) - Schneier on Security - [ ] [AI and Liability](https://www.schneier.com/blog/archives/2026/06/ai-and-liability.html) - [ ] [Interesting Paper Exploring Prompt Injection](https://www.schneier.com/blog/archives/2026/06/interesting-paper-exploring-prompt-injection.html) - 国家互联网应急中心CNCERT - [ ] [网络安全信息与动态周报2026年第25期(6月15日-6月21日)](https://mp.weixin.qq.com/s?__biz=MzIwNDk0MDgxMw==&mid=2247501815&idx=1&sn=536dd906213d5c7eed7230fc3461f1e7) - HACKMAGEDDON - [ ] [Exploited Security Vendor Vulnerabilities in 2026](https://www.hackmageddon.com/2026/06/25/exploited-security-vendor-vulnerabilities-in-2026/) - 360威胁情报中心 - [ ] [APT-C-36近期针对哥伦比亚境内的活动分析](https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247508673&idx=1&sn=daeb4f0be09db6a3012e51ac7e7be079) - bellingcat - [ ] [How to Use AI to Help Find Civilian Harm](https://www.bellingcat.com/resources/2026/06/25/how-to-use-ai-to-help-find-civilian-harm-conflict-report-monitor-war-machine-learning-telegram/) - SANS Internet Storm Center, InfoCON: green - [ ] [What do Ports Hear When Nobody's Listening? An Assessment of Automated Cybercrime [Guest Diary], (Wed, Jun 24th)](https://isc.sans.edu/diary/rss/33104) - The Hacker News - [ ] [Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability](https://thehackernews.com/2026/06/chrome-ad-blocker-with-10m-installs.html) - [ ] [ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories](https://thehackernews.com/2026/06/threatsday-bulletin-smart-tv-proxyware.html) - [ ] [Surviving the Mythos Era: Richard Bejtlich on the Case for NDR](https://thehackernews.com/2026/06/surviving-mythos-era-richard-bejtlich.html) - [ ] [New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis](https://thehackernews.com/2026/06/new-gaslight-macos-malware-uses-prompt.html) - [ ] [New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns](https://thehackernews.com/2026/06/new-mistic-backdoor-linked-to-kongtuke.html) - [ ] [Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access](https://thehackernews.com/2026/06/cisco-catalyst-sd-wan-zero-day-cve-2026.html) - TorrentFreak - [ ] [ACE, UEFA, and Mexico Chase PirloTV’s 950-Million-Visit Piracy Network](https://torrentfreak.com/ace-uefa-and-mexico-chase-pirlotvs-950-million-visit-piracy-network/) - Security Affairs - [ ] [Tata Electronics Confirms Data Breach After 630GB Leak Claim Targets Apple and Tesla](https://securityaffairs.com/194237/data-breach/tata-electronics-confirms-data-breach-after-630gb-leak-claim-targets-apple-and-tesla.html) - [ ] [Curl Fixes a 25-Year-Old Bug in Its Largest CVE Release Yet](https://securityaffairs.com/194220/security/curl-fixes-a-25-year-old-bug-in-its-largest-cve-release-yet.html) - [ ] [Inside Mistic, the New Stealth Backdoor in Ransomware Intrusions](https://securityaffairs.com/194207/cyber-crime/inside-mistic-the-new-stealth-backdoor-in-ransomware-intrusions.html) - [ ] [Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited Months Before Disclosure](https://securityaffairs.com/194200/hacking/cisco-catalyst-sd-wan-zero-day-cve-2026-20245-exploited-months-before-disclosure.html) - [ ] [Nathan Austad Pleads Guilty in DraftKings Hacking Scheme, Gets 18 Months](https://securityaffairs.com/194184/cyber-crime/nathan-austad-pleads-guilty-in-draftkings-hacking-scheme-gets-18-months.html) - www.theregister.com - Articles - [ ] [Self-destructing Mistic backdoor linked to access broker selling corporate footholds to ransomware gangs](https://www.theregister.com/security/2026/06/25/self-destructing-mistic-backdoor-linked-to-access-broker-selling-corporate-footholds-to-ransomware-gangs/5262579) - [ ] [Ex-Huntress analyst claims company insider fed info to a ransomware crim. Social media drama ensues](https://www.theregister.com/cyber-crime/2026/06/25/ex-huntress-analyst-claims-company-insider-fed-info-to-a-ransomware-crim-social-media-drama-ensues/5262538) - [ ] [UK school’s network left wide open for invasion, student found](https://www.theregister.com/security/2026/06/25/uk-schools-network-left-wide-open-for-invasion-student-found/5261567) - [ ] [Nation-state actors cracked critical Australian infrastructure to ‘cripple it at a time of their choosing’](https://www.theregister.com/security/2026/06/25/nation-state-actors-cracked-critical-australian-infrastructure-to-cripple-it-at-a-time-of-their-choosing/5261877) - Deep Web - [ ] [Onion link sites that still work](https://www.reddit.com/r/deepweb/comments/1ufoe0b/onion_link_sites_that_still_work/) - Deeplinks - [ ] [Primed for Malware: Stop Selling Compromised Android Devices](https://www.eff.org/deeplinks/2026/06/primed-malware-stop-selling-compromised-android-devices) - [ ] [EFF, TEDIC and CEJIL Challenge Secrecy in the Use of Face Recognition in Paraguay](https://www.eff.org/deeplinks/2026/06/eff-tedic-and-cejil-challenge-secrecy-use-face-recognition-paraguay) - [ ] [Four Years After Dobbs, Anti-Abortion Lawmakers Keep Coming for Online Speech](https://www.eff.org/deeplinks/2026/06/four-years-after-dobbs-anti-abortion-lawmakers-keep-coming-online-speech) - [ ] [The FCC’s Spam Call Proposal Is Just a Data Collection Scheme](https://www.eff.org/deeplinks/2026/06/fccs-spam-call-proposal-just-data-collection-scheme) - [ ] [Are Your Local Police Using Flock Safety ALPRs to Scan for Immigrants?](https://www.eff.org/deeplinks/2026/06/are-your-local-police-using-flock-safety-alprs-scan-immigrants) - [ ] [The KIDS Act Would Require Age Checks To Get Online](https://www.eff.org/deeplinks/2026/06/kids-act-would-require-age-checks-get-online) - 悬镜安全 - [ ] [入选智能体安全报告 | 灵脉AI让代码安全检测“读懂”业务逻辑!](https://mp.weixin.qq.com/s?__biz=MzA3NzE2ODk1Mg==&mid=2647799861&idx=1&sn=4a9c887c85522d7044515698f97bf789) - Daniel Miessler - [ ] [The Coming Divide: AI-Native or Left Behind](https://danielmiessler.com/blog/ai-native-divide?utm_source=rss&utm_medium=feed&utm_campaign=website)
每日安全资讯(2026-06-26)