Где Контекст, а где Проблема? Мотивация или Изменение? «Чтобы что?». Плюс нестандартное использование для UX-редакторов. Как составить с помощью ИИ? Читать далее
Apple recently released its new OS Bg Sur and immediately started fixing vulnerabilities. Also, undocumented features were found in new platform. Cisco is fixing vulnerabilities in its products strangely. Pair of funny tools and a couple of interesting stories in news section. Vulnerabilities: Cisco story, “bugs” in messagers and ICS; Tools: Bloodhound continues to be … Continue reading Cisco stories, ICS and Apple features → The post Cisco stories, ICS and Apple features first…
A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/AbstractDslScriptLoader.groovy, job-dsl-plugin/build.gradle, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/JobDslWhitelist.groovy, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/SandboxDslScriptLoader.groovy that allows attackers with control over Job DSL definitions to execute arbitrary code on the Jenkins master JVM.
Two zero-day vulnerabilities per week from Microsoft, update for popular tools, stories about ransomware and blue team like red to fight with evil. Vulnerabilities: Microsoft patched zero-day which detected in the wil! Tools: Upd for one of the most famous red team tools News: Have you ever hear about vulnerability in malware? Research: Elastic team … Continue reading Two zero-day vulnerabilities per week, update for popular tools and stories about ransomware →