[每日信息流] 2026-01-14

[chainreactorbot]

每日安全资讯（2026-01-14）

• SecWiki News
  • SecWiki News 2026-01-13 Review
• 奇安信攻防社区
  • java安全最严厉的父亲-fastjson 高版本利用
• Doonsec's feed
  • 揭秘 Windows 隐藏取证证据:AutoLogger-Diagtrack-Listener.etl 的奥秘
  • 恶意软件的生存之道：监视器与辅助器组件解析
  • 分享图片
  • 金刚狼1.8支持自定义程序内存加载执行
  • OSCP/OSEP一对一私教直通车：协议保障，直通高级渗透测试专家
  • 关系很好的2个同事被裁了，本以为是他们能力差爱摸鱼，没想到一个工资3w，一个工资2w，而且还马上找到涨薪30%的新工作，真是慕了。
  • 黑客如何反击美国移民及海关执法局（ICE）
  • 大华智能物联管理平台evo-apigw/evo-arsm/1.0.0/ars/list接口存在SQL注入漏洞 附POC
  • 【人工智能】GM/T 0007 密码行业标准到底去了哪里？
  • 【安全工具】从底层突破WAF：自动化发现协议级漏洞，绕过Web防火墙
  • 【AI安全】暴击！垂域大模型的致命死穴：特种攻击
  • 信息搜集之边缘资产和隐形资产的发掘
  • 世界经济论坛联合埃森哲发布《2026年全球网络安全展望》
  • 全国网安标委发布《人工智能应用安全指引 总则（征求意见稿）》等4项网络安全标准实践指南
  • 入侵论坛（BreachForums）遭黑客攻击：热门暗网论坛全部用户记录被曝光
  • 年终查收入了吗？考了网安证书，这样操作可以减税！
  • 使用burpMCP和kaliMCP自动化渗透
  • src专项挖掘知识库
  • 【大话工控安全】工业控制系统行业知识：电力行业火力发电场景
  • 数据不懂用=白忙活？这门线上课教你用大数据驱动精准决策
  • 有人@你！2025年度品牌问卷调查获奖名单公布！
  • 【接口漏洞第五章第二节】API批量赋值漏洞实战：以电商折扣参数篡改为例
  • 【邀请函】破阵阁・网安淬锋公开赛邀您参加！现金奖、京东卡、证书已就位！
  • 新的VoidLink云原生恶意软件攻击具有自删功能的Linux系统
• paper - Last paper
  • 模仿游戏：利用大型语言模型作为聊天机器人打击基于聊天的网络犯罪
• LevelBlue Blog
  • Secure What’s Next: How a World-Class MSSP Builds Trust and Scale for 2026
• 安全客-有思想的安全新媒体
  • 科技云报到：RPA+Agent，为什么可以1+1>2？
• Private Feed for M09Ic
  • strands-agents released v1.22.0 at strands-agents/sdk-python
  • bolucat released 202601131939 at bolucat/Archive
  • mgeeky starred nikitastupin/clairvoyance
  • FunnyWolf starred nextlevelbuilder/ui-ux-pro-max-skill
  • mgeeky starred EmilStenstrom/justhtml
  • ManassehZhou starred google/starlark-go
  • Mr-xn forked Mr-xn/PicList from Kuingsmile/PicList
  • FunnyWolf starred bytedance/UI-TARS-desktop
  • timwhitez starred vercel-labs/agent-browser
  • PrefectHQ released 3.6.11.dev3 at PrefectHQ/prefect
  • CHYbeta starred ihower/zh-tw-embedding-model-benchmark
  • ourren starred sansan0/TrendRadar
• 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
  • 嘶吼快讯|网安厂商动态汇（第3期）
  • 云文件共享平台成为企业数据盗窃攻击的目标
• Tenable Blog
  • Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)
• Recent Commits to cve:main
  • Update Tue Jan 13 11:39:37 UTC 2026
• Microsoft Security Blog
  • How Microsoft builds privacy and security to work hand-in-hand
• Sucuri Blog
  • Malware Intercepts Googlebot via IP-Verified Conditional Logic
• ElcomSoft blog
  • Browser Forensics in 2026: App-Bound Encryption and Live Triage
• 美团技术团队
  • KuiTest：基于大模型通识的 UI 交互遍历测试
• Horizon3.ai
  • CVE-2025-64155 | Fortinet FortiSIEM
  • CVE-2025-64155: Three Years of Remotely Rooting the Fortinet FortiSIEM
  • Horizon3.ai Secures Investment from Prosperity7 Ventures to Protect AI Datacenters and Critical Infrastructure
• CCC Event Blog
  • 39C3: Feedback and lost+found
• Malwarebytes
  • Data broker fined after selling Alzheimer’s patient info and millions of sensitive profiles
  • Why iPhone users should update and restart their devices now
• The Trail of Bits Blog
  • Lack of isolation in agentic browsers resurfaces old vulnerabilities
• LevelBlue SpiderLabs Blog
  • BEC Email Trends: Attacks up 15% in 2025
• Bug Bounty in InfoSec Write-ups on Medium
  • When a Checkout Page Leaks Your Session
  • Bypassing SSRF Protections: A $10,000 Lesson from Slack
• rtl-sdr.com
  • GhostHunter (Anti-LIF): Using Spiking Neural Networks to Rescue Satellite Signals Drowned in Noise
  • Echo – A Native iOS Client for KiwiSDR & OpenWebRX
  • Guglielmo FM and DAB Receiver Software Updated to Version 0.7
• 奇客Solidot–传递最新科技情报
  • 伊朗搜查和收缴 Starlink 设备
  • 中文用户的脑机接口
  • Google 对为何没有下架 Grok 应用拒绝置评
  • 挪威电动汽车销量占到了总销量的 97%
  • 苹果选择 Gemini 驱动 Siri
• bishopfox.com
  • The Total Cost of AI Ownership: The Costs Not on Your Budget Sheet
• HackerNews
  • 2500 美元，能买到多少国家秘密？ 800 万份政府记录疑似在黑客论坛售卖
  • Apache Struts 2 关键漏洞允许攻击者窃取敏感数据
  • 威胁行为者据称声称掌握包含 78,541,207 个文件的 Discord 数据集
  • Telegram 暴露用户真实IP地址，可一键绕过 Android 和 iOS 代理
  • GoBruteforcer 僵尸网络利用弱凭证攻击加密货币项目数据库
• Security Blog | Praetorian
  • Exploiting LLM Write Primitives: System Prompt Extraction When Chat Output Is Locked Down
• 安全分析与研究
  • 伪装成火绒安装包银狐最新攻击样本分析
• 腾讯玄武实验室
  • 每日安全动态推送(26/1/13)
• 绿盟科技技术博客
  • 彻底删除指定打印机
• 黑鸟
  • 黑客如何反击美国移民及海关执法局（ICE）
• 青衣十三楼飞花堂
  • 青衣十三楼技术文档离线包
• 雷神众测
  • 雷神众测漏洞周报2026.1.5-2026.1.11
• 安全客
  • 4 个月超9.1万次攻击，AI基础设施成自动化攻击新靶标
• 代码卫士
  • Apache Struts 2 严重 XXE 漏洞可用于窃取敏感数据
  • React Router严重漏洞可用于访问或修改服务器文件
• 虎符智库
  • AI 重构攻防，合规直达价值｜奇安信发布 2026 网络安全十大趋势
• 暗影安全
  • Telegram 一键暴露用户真实 IP 地址
• 威努特安全网络
  • 当数字孪生遇上智能制造：威努特的“智算防护”实践
  • 网络攻击重创罗马尼亚火电巨头，业务运营停摆
• 二道情报贩子
  • 我在一部碎屏安卓手机上自学了编程，现在却找不到工作。
• 绿盟科技研究通讯
  • 全球云上数据泄露风险分析简报 （第九期）
• 安全内参
  • 布局新一代安全！网安巨头Palo Alto推出氛围编程防护框架
  • 美国针对委内瑞拉行动表明网络干扰已成为“灰色地带”斗争手段
• 绿盟科技CERT
  • 【漏洞通告】Apache Struts外部实体(XXE)注入漏洞S2-069（CVE-2025-68493）
• 天御攻防实验室
  • 美国网络司令部在“绝对决心行动”中角色（三）
• 安全研究GoSSIP
  • G.O.S.S.I.P 阅读推荐 2026-01-13 十三年零漏洞的密码学算法库，翻车了？
• 看雪学苑
  • 《Linux Pwn 番外篇》重磅上线！6大架构全覆盖，异构漏洞利用5h学透
  • 庖丁解牛之——Windows DTrace实现原理
  • 黑客叫卖Target内部源码，零售商紧急下架并关闭Git服务器
• 安全圈
  • 【安全圈】河南省考报名系统高峰时段崩溃
  • 【安全圈】知名黑客论坛数据库泄露！逾32万名用户数据被公开
  • 【安全圈】Telegram 暴露用户真实IP地址，可一键绕过 Android 和 iOS 代理
  • 【安全圈】GoBruteforcer 僵尸网络利用弱凭证攻击加密货币项目数据库
• 中国信息安全
  • 论坛·算法治理 | 智能算法安全治理技术体系构建的探索与实践
  • 国家安全部提示：警惕国家基础性测绘信息外泄
  • 专家解读 | 强化数据科技创新赋能，构筑数字经济发展新引擎——《关于加强数据科技创新的实施意见》政策解读
  • 观点 | 准确把握人工智能健康有序发展的三维坐标
  • 评论 | AI魔改乱象需标本兼治
• 补天平台
  • 【GROW计划年度榜单】校园白帽黑客变身专业志愿者，补天GROW计划打造"公益+能力"双增长模式
• 微步在线
  • 被黑产拉群？微步免费帮忙！
  • 微步荣膺产业贡献与AI安全智能体领航者两项大奖
• 安全牛
  • 从智谱、MiniMax、Manus看国内AI市场的资本逻辑
  • 网安标委发布《网络安全标准实践指南——人工智能加速芯片安全功能技术规范》：网络钓鱼成头号威胁：企业如何防御新型AI驱动欺诈？| 牛览
• 火绒安全
  • U盘文件突然“消失”？这样解决超管用！
  • 诚邀渠道合作伙伴共启新征程
• 极客公园
  • 发布 ChatGPT 健康 6 天后，OpenAI 在自家医疗健康 Benchmark 上被反超
  • Alphabet 成第四家四万亿美元公司；德亚官网偷跑大疆 Pocket 4；国内首起 AI 服务涉黄案二审在即 | 极客早知道
• 字节跳动安全中心
  • 飞连2026，成为AI时代最好的办公安全平台
• 嘶吼专业版
  • 云文件共享平台逐渐成为企业数据盗窃攻击的目标
  • 嘶吼快讯|网安厂商动态汇（第3期）
• 黑伞安全
  • 【网安圈大事件】破阵阁・网安淬锋公开赛开打！全国高手速来！
• 360Quake空间测绘
  • 360独家分析：2026伊朗全国性断网事件背后的数字防御启示
• 斗象智能安全
  • 你的智能挖洞搭档，已上线！| 蛙池AI内测邀请码派送中
• 数世咨询
  • 防火墙成本将在2026年暴涨
• 情报分析师
  • 开源情报揭露深度伪装人物画像，间谍“玛丽亚”的双面人生
  • 近期热点研判
• 软件安全与逆向分析
  • redex中文技术手册
• Qualys Security Blog
  • Microsoft Patch Tuesday, January 2026 Security Update Review
• 360数字安全
  • 18家权威机构联合背书！360入选国家级数据安全产品目录
  • 360独家分析：2026伊朗全国性断网事件背后的数字防御启示
• 迪哥讲事
  • 越权和敏感信息泄露所导致的高危
• Over Security - Cybersecurity news aggregator
  • Ukraine's army targeted in new charity-themed malware campaign
  • New VoidLink malware framework targets Linux cloud servers
  • More than 40 countries impacted by North Korea IT worker scams, crypto thefts
  • Tennessee man to plead guilty to hacking Supreme Court’s electronic case filing system
  • Central Maine Healthcare breach exposed data of over 145,000 people
  • Belgian hospital AZ Monica shuts down servers after cyberattack
  • Ukraine parliament approves resignation of security service chief in major reshuffle
  • New Windows updates replace expiring Secure Boot certificates
  • Man to plead guilty to hacking US Supreme Court filing system
  • Target employees confirm leaked source code is authentic
  • Windows 11 KB5074109 & KB5073455 cumulative updates released
  • Microsoft releases Windows 10 KB5073724 extended security update
  • Microsoft January 2026 Patch Tuesday fixes 3 zero-days, 114 flaws
  • Microsoft Patch Tuesday for January 2026 — Snort rules and prominent vulnerabilities
  • Google confirms Android bug causing volume key issues
  • Tp-Link Router Deep Research
  • majd/ipatool: Command-line tool that allows searching and downloading app packages (known as ipa files) from the iOS App Store
  • Android recon for Bug Bounty hunters: A complete guide
  • Senior military cyber operator removed from Russia task force
  • Security Research in the Age of AI Tools
  • Betterment confirms data breach after wave of crypto scam emails
  • NIS2, AI Act, CRA: perché il 2026 segna una svolta per la sicurezza cyber
  • Privilegi di accesso e identità alimentate dall’AI: rischi e mitigazioni
  • Suspected ransomware attack threatens one of South Korea’s largest companies
  • Kremlin-linked hackers pose as charities to spy on Ukraine’s military
  • Allarme password aziendali deboli: più del 40% è violabile in meno di un’ora
  • Convincing LinkedIn comment-reply tactic used in new phishing
  • Asset management: perché l’IT non deve essere l’asset owner e come farlo bene
  • Target employees confirm leaked code after ‘accelerated’ Git lockdown
  • Wraps - AWS Email Pricing with Modern Developer Experience
  • Report annuale Polizia Postale 2025: la normalità dell’attacco, il dovere della resilienza
  • Quando un incidente cyber smette di essere un problema tecnico e diventa di interesse pubblico
  • CastleLoader: A Deep Dive into Stealthy Loader Targeting Government Sector
  • deVixor: An Evolving Android Banking RAT with Ransomware Capabilities Targeting Iran
• Securityinfo.it
  • Allarme password aziendali deboli: più del 40% è violabile in meno di un’ora
• IT Service Management News
  • Articolo 2086 del Codice Civile, sicurezza delle informazioni e continuità
• T00ls安全
  • EDUSRC × T00ls 达成战略合作，开启“精英白帽”进阶直通车
• Troy Hunt's Blog
  • Who Decides Who Doesn’t Deserve Privacy?
• Tor Project blog
  • New Release: Tor Browser 15.0.4
  • Arti 1.9.0 released: Proxy improvements, relay development, and more.
• SANS Internet Storm Center, InfoCON: green
  • January 2026 Microsoft Patch Tuesday Summary, (Tue, Jan 13th)
  • ISC Stormcast For Tuesday, January 13th, 2026 https://isc.sans.edu/podcastdetail/9764, (Tue, Jan 13th)
• bellingcat
  • Analysing Footage of Minneapolis ICE Shooting
• 云鼎实验室
  • Struts2 S2-069 XXE漏洞 (CVE-2025-68493) 来袭，腾讯云主机安全RASP可自动防护
• Trend Micro Research, News and Perspectives
  • Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™
• The Register - Security
  • Popular Python libraries used in Hugging Face models subject to poisoned metadata attack
  • AI and automation could erase 10.4 million US roles by 2030
  • Dutch cops cuff alleged AVCheck malware kingpin in Amsterdam
  • Federal agencies told to fix or ditch Gogs as exploited zero-day lands on CISA hit list
  • Mandiant open sources tool to prevent leaky Salesforce misconfigs
  • Court tosses appeal by hacker who opened port to coke smugglers with malware
  • Britain goes shopping for a rapid-fire missile to help Ukraine hit back
  • India demands crypto outfits geolocate customers, get a selfie to prove they’re real
• GRAHAM CLULEY
  • The AI Fix #83: ChatGPT Health, Victorian LLMs, and the biggest AI bluffers
  • Hackers get hacked, as BreachForums database is leaked
• Schneier on Security
  • 1980s Hacker Manifesto
• TorrentFreak
  • Court Orders Porkbun and Other Registrars to Hand Over PornXP Domains to Aylo
• Security Affairs
  • AZ Monica hospital in Belgium shuts down servers after cyberattack
  • Threat actor claims the theft of full customer data from Spanish energy firm Endesa
  • Dutch court convicts hacker who exploited port networks for drug trafficking
• ICT Security Magazine
  • Whistleblowing: nuove linee guida ANAC 2025 e Modello 231
  • Dalla Crittografia Militare a Google Workspace: la nuova frontiera digitale dell’Arma dei Carabinieri
• The Hacker News
  • Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages
  • Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool
  • [Webinar] Securing Agentic AI: From MCPs and Tool Access to Shadow API Key Sprawl
  • New Advanced Linux VoidLink Malware Targets Cloud and container Environments
  • What Should We Learn From How Attackers Leveraged AI in 2025?
  • ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation
  • New Malware Campaign Delivers Remcos RAT Through Multi-Stage Windows Attack
  • CISA Warns of Active Exploitation of Gogs Vulnerability Enabling Code Execution
• 矛和盾的故事
  • iOS DeviceCheck：苹果设备身份链与黑灰产对抗的攻防博弈
• Security Weekly Podcast Network (Audio)
  • Are you dead?, AI Hellscape, Copilot, Blue Delta, Quishing, Confer, Aaran Leyland... - SWN #546
  • Secure By Design Is Better Than Secure By Myth - Bob Lord - ASW #365
• 网安寻路人
  • 情感交互启动事件（SIE）判定指标体系设计：精准圈定“拟人化互动”