# 每日安全资讯(2026-05-15) - Doonsec's feed - [ ] [终可见](https://mp.weixin.qq.com/s/ja5KpqaXXo7xIGel05_Fhw) - [ ] [Shai-Hulud 源码泄露、有偿入侵建筑,以及用 AI 逆向 EDR #328](https://mp.weixin.qq.com/s/bJtQNXCA7eG6Jxe5NAAWnA) - [ ] [贫瘠的土壤也能长出鲜花(在笔记本上训练大模型)](https://mp.weixin.qq.com/s/gWiCW7A3T0k-x4D9X-KPcg) - [ ] [AI Agent渗透测试必备:结构化知识库和方法论(200+技能、600+漏洞)](https://mp.weixin.qq.com/s/NE3xOJYmcR1zwadeR62FnA) - [ ] [特朗普访华为何选天坛?一场藏在600年古柏里的外交深意](https://mp.weixin.qq.com/s/yzTcpp8oqpIoIsehEACF4w) - [ ] [数学题库知识库项目阶段性说明:先放出一版已经整理好的数据](https://mp.weixin.qq.com/s/1nV_YUoPF0VQqN82AX33GQ) - [ ] [当异常绕过handleException:最新VM2沙箱绕过 CVE-2026-45411 原理分析](https://mp.weixin.qq.com/s/mCYZZlLjzmGg57_B2MgU0g) - [ ] [特朗普携豪华商团访华释放了哪些重磅消息?](https://mp.weixin.qq.com/s/OJFMizAHuZba3aY2kEDILQ) - [ ] [CVE-2026-8181-Burst Statistics-身份验证绕过漏洞分析报告](https://mp.weixin.qq.com/s/vgdZuggfifXPjY3XQNdHYQ) - [ ] [CVE-2026-42945-NGINX-ngx_http_rewrite_module-堆缓冲区溢出分析报告](https://mp.weixin.qq.com/s/jO2KhtHCL8JRE4WIBYaI_Q) - [ ] [漏洞预警 | Copy Failh和Dirty Frag的好兄弟fragnesia来了](https://mp.weixin.qq.com/s/3eRqRxiI9zVAc-irKZEThQ) - [ ] [安全检测agent开发笔记(3)-安全检测示例](https://mp.weixin.qq.com/s/kck8IYytv4LZXvc3AgxW6w) - [ ] [在回收垃圾箱里发现了几台ThinkPad笔记本电脑](https://mp.weixin.qq.com/s/V5KcnWXt6nbx8bTSPj24hA) - [ ] [mlx-lm是在mac上运行量化大模型的最短路径](https://mp.weixin.qq.com/s/wKYXh8LOCKSwif2pWxSg5g) - [ ] [AI能替孩子做题了,我们到底还该教孩子什么?](https://mp.weixin.qq.com/s/L8SWEs9LVDoWDqTxscxMFw) - [ ] [AI正在改写行业规则,网络安全公司产品体系必须重构!](https://mp.weixin.qq.com/s/Z-5Y4ubCTvEmk5cMkoeOPQ) - [ ] [被黑分析 | ShapeShift FOX Colony 授权信任链缺陷](https://mp.weixin.qq.com/s/7bimneyMUhZhzEysLINb7A) - [ ] [揭露偷资料的小偷学员](https://mp.weixin.qq.com/s/zOMxAEtOLXT3zwUf_jx2gw) - [ ] [ai强对抗实战内网案例](https://mp.weixin.qq.com/s/RyFKPVGTEoQLUrIyfEhFDw) - [ ] [【汽车取证篇】《道路交通事故处理程序规定》(征求意见稿),明确汽车电子数据调取权限](https://mp.weixin.qq.com/s/eDfVs4IOO3UO5iq_s86SWg) - [ ] [雄安新区“十五五”规划(2026—2030)核心总结](https://mp.weixin.qq.com/s/2g4vMgvcpubHoa8Y3h-tnQ) - [ ] [追星成功,雷军晚宴合影马斯克! 特朗普欢迎晚宴,哪些中国企业家参加了](https://mp.weixin.qq.com/s/asabgVLoecKL1VBryLoBHg) - [ ] [中国联通江西省分公司携手华为发布安全托管服务,助力中小微企业建设一站式网络安全能力](https://mp.weixin.qq.com/s/BiP-71gZT0j0oLTYB2APcA) - [ ] [【免杀】使用ollvm混淆程序](https://mp.weixin.qq.com/s/Pz_Y14DRzZc_MCUpi_eT4g) - [ ] [路由策略和策略路由有啥区别?](https://mp.weixin.qq.com/s/c_4-6607MGqJChQYsybJ1g) - [ ] [【银行逆向百例】17Android逆向之libDexHelper梆梆加固frida检测绕过](https://mp.weixin.qq.com/s/LxbfK28ZoSZg5hbJ5qGfHA) - [ ] [美团 LongCat 开源 General 365:树立推理评测新标尺](https://mp.weixin.qq.com/s/9YV6SyX4FtVYgxHF7h-FGA) - [ ] [美团无人机低空物流解决方案亮相世界无人机大会](https://mp.weixin.qq.com/s/v-OWXXKHjwiM68EBPXdoBw) - [ ] [MARS TALK 香港大学站|共话具身智能的技术演进与商业化进程](https://mp.weixin.qq.com/s/bgh4UyMdqEvCbgRucGMuaw) - [ ] [多轮 Agent 场景下,滴滴的 EAGLE-3 训推加速实践](https://mp.weixin.qq.com/s/PZMX-55W_gqJKtHIYXJVyA) - [ ] [DeepSeek 输入了六个字符,看到了不该看到的东西,是隐私泄露,还是 AI 的记忆闪回?](https://mp.weixin.qq.com/s/ka0S7pniL7mrM_Fno0MwMQ) - [ ] [NGINX 漏洞预警:18 年老洞可 RCE,PoC 已公开](https://mp.weixin.qq.com/s/s4fizQHJgSEMm2p-g0UEwg) - [ ] [国资国企在线监管安全运营(重庆)分中心成立暨第一次工作会议在渝成功召开](https://mp.weixin.qq.com/s/zr9IEApLCQ2dCSkBjyNLhw) - [ ] [关注!2026年第19周工信领域大事要闻](https://mp.weixin.qq.com/s/YIzumrUobnN4MgPfccgROw) - [ ] [BypassPro 自动化bypass Auth和Waf](https://mp.weixin.qq.com/s/V5NJMWePGlf31dTUFrdr8A) - [ ] [NGINX 模块堆缓冲区溢出漏洞,特定条件下可 RCE](https://mp.weixin.qq.com/s/GugzE78-TsFkLO7_YbO_ig) - [ ] [江苏银行落地62个AI应用场景,OpenClaw智能体已集成至大模型平台](https://mp.weixin.qq.com/s/aKlL38AG7Ewd01i_m-6Z7Q) - [ ] [AI快讯:868款生成式AI完成备案,xAI加速推进Grok落地金融机构](https://mp.weixin.qq.com/s/r6by-TTNwehHTF6EnDqIFg) - [ ] [【安全圈】安卓新增入侵日志功能,助力深度分析复杂间谍软件攻击](https://mp.weixin.qq.com/s/yXIJyDjEMxqggNx1t5vt2w) - [ ] [【安全圈】研究人员公布概念验证,利用 Windows BitLocker 零日漏洞可访问受保护驱动器](https://mp.weixin.qq.com/s/OnXI-rDV3sgZPW2qgLvLIw) - [ ] [【安全圈】微软警告“ Dirty Frag ” Linux 内核漏洞已遭黑客利用](https://mp.weixin.qq.com/s/vO4Doq0VioQlbVQ0xRjHuA) - [ ] [87天的“数字叛国”:一个弱口令如何让港口摄像头沦为境外间谍之眼](https://mp.weixin.qq.com/s/ixmuPxY1UZmVc7UnCsUL4A) - [ ] [美国银行曝AI数据泄露事件:员工违规使用未授权AI工具致客户敏感信息外泄](https://mp.weixin.qq.com/s/85Xfq-4tw3shnmecUGiAWQ) - [ ] [专题·个人信息保护 | 生成式人工智能大规模个人信息泄露的协同治理路径](https://mp.weixin.qq.com/s/4p6MDaqcFmmk1w86SGI-zA) - [ ] [国家安全部:闲置硬盘处理不当也会变“隐形炸弹”](https://mp.weixin.qq.com/s/6v7NKGRW28Ay9zTzfQiHVA) - [ ] [CNNVD | 关于微软多个安全漏洞的通报](https://mp.weixin.qq.com/s/xIAxOnoHt1ZUk5xM_y8ZdA) - [ ] [专家解读|推动我国网络法治建设迈向更高水平](https://mp.weixin.qq.com/s/WmZLj8tHpt1apzQ_X4hG-w) - [ ] [关注 | 这41款违法违规收集使用个人信息的移动应用被通报!](https://mp.weixin.qq.com/s/oBiIrKPwFcXI9DZq1TyD0w) - [ ] [国际 | 共同呵护未成年人在数字世界健康成长](https://mp.weixin.qq.com/s/n7EKXM-tIu-kyd3U-USm6A) - [ ] [别只防 npm 了!AI 技能供应链正在被大规模投毒](https://mp.weixin.qq.com/s/htcPgXyQ5wm-ZvpN8v621g) - [ ] [分享的图片、视频、链接](https://mp.weixin.qq.com/s/7tVjy8LJg0qbJrzZzDB-1A) - [ ] [【已复现】Linux内核Fragnesia权限提升漏洞(CVE-2026-46300)](https://mp.weixin.qq.com/s/Z5bL9bRj-C1ltheUCPtLwQ) - [ ] [从0到进阶网安必通关的10个靶场,附项目地址!](https://mp.weixin.qq.com/s/HWfqhsQK0-wHmnwltRp8tg) - [ ] [18年积弊:NGINX脚本引擎堆缓冲区溢出可致远程代码执行](https://mp.weixin.qq.com/s/Z-hV8A4XQ0G5OoN1ptEsNw) - [ ] [\"清朗\"专项行动全面落地:两阶段、14项重点,企业如何系统应对](https://mp.weixin.qq.com/s/UfEqHKsbAoYc89TV96uIgg) - [ ] [F-35作战试验鉴定问题分析研究](https://mp.weixin.qq.com/s/JSi4Ou311jaklRSR93HH9A) - [ ] [美国国防部启动低成本导弹扩产计划,加速新兴军工企业参与武器研发](https://mp.weixin.qq.com/s/z0Mk6OWwXMJBJvup1KwXtQ) - [ ] [在上一篇文章 《罗福莉访谈之后:Vibe Coding → Vibe Working → Vibe Forking》https://mp.weixin.qq.com/s/D4bAcI3TN4b_cEhk-aftNQ 提](https://mp.weixin.qq.com/s/lQlDSSJM_qplBlgcxXCAJA) - [ ] [微软补丁日安全通告|5月份](https://mp.weixin.qq.com/s/IILy9NBObnU0p5Hk55vjiA) - [ ] [网络安全信息与动态周报2026年第19期(5月4日-5月10日)](https://mp.weixin.qq.com/s/45OOiPGD9Cxq_80yY5NFZQ) - [ ] [实力认证 | 捷普入围2026网络安全产业图谱多项细分领域!](https://mp.weixin.qq.com/s/Iewcwj-CErxFbxVa7gETmg) - [ ] [【大众评审招募开启】2026 智能养老服务机器人应用大赛邀您现场共评](https://mp.weixin.qq.com/s/L0zOFzgz5u-QfPn6ro9XOw) - [ ] [【培训活动】赛迪认证“数智化转型使能(DT+)”第三期培训报名通道开放!](https://mp.weixin.qq.com/s/qGvAVr0a3EkOqmuXpJz8CA) - [ ] [谷歌首次发现基于AI的0Day漏洞利用](https://mp.weixin.qq.com/s/HzDqxxqI24YxLVY-JiQ7Pw) - [ ] [Windows 11遭新型BitUnlocker降级攻击,5分钟内可解密加密磁盘](https://mp.weixin.qq.com/s/IdPUuR5PyeqluHd0EfaOAw) - [ ] [Android零点击漏洞PoC公开,攻击者可远程获取Shell权限](https://mp.weixin.qq.com/s/rF7Ho-CHeRmBcBygTCIilA) - [ ] [跨厂商SIEM规则泛滥难题:AI生成规则的方案真能破局?](https://mp.weixin.qq.com/s/JpgUPeU3uElIY_Q_fwLhTw) - [ ] [VSCode Copilot聊天中的远程代码执行](https://mp.weixin.qq.com/s/J3MO2FSBKxD--JkK4EG5wA) - [ ] [富士康确认遭勒索攻击](https://mp.weixin.qq.com/s/VdhUg0aN2dNbGxHQbaGAmg) - [ ] [报---deepseek疑似出现信息泄露](https://mp.weixin.qq.com/s/VmmfPGpZyIj_2_uBo55lCQ) - [ ] [绿盟科技安全数字人平台正式发布:以风云卫为核心,构建自主运营、持续进化的安全数字人团队](https://mp.weixin.qq.com/s/biIrassMiB_Mz5saf1s3CQ) - [ ] [从网安尖兵到志愿先锋:绿盟科技在党委书记胡忠华带领下公益实践纪实](https://mp.weixin.qq.com/s/YrazVMvOKZovFRRlTpeEbw) - [ ] [对称加密与非对称加密算法原理详解](https://mp.weixin.qq.com/s/eubdY7pqCe0_KysexvCRZA) - [ ] [重磅嘉宾 | 上海外高桥造船有限公司船舶设计与建造专家确认出席Green Ship APAC 2026](https://mp.weixin.qq.com/s/Zfc21lGWkOZ5QH9Z5fgKrQ) - [ ] [如何逼自己30天学会网络安全技术?](https://mp.weixin.qq.com/s/Bwifx4UjTPioRVn9fEfAMg) - [ ] [生成式人工智能大模型发展趋势、挑战与应对策略研究](https://mp.weixin.qq.com/s/btveiaPoC3v-7UHCE3oQaA) - [ ] [2026杂志征文 | “数智时代下认知安全的发展、治理与挑战”专题](https://mp.weixin.qq.com/s/YWEGMz1CCHcPQ7fe_fNdVw) - [ ] [等保标准再扩新篇,数据安全系列公安行标解析](https://mp.weixin.qq.com/s/-YGLG_kUzQ_rU3eYFjBPvg) - [ ] [【高危漏洞预警】NGINX ngx_http_rewrite_module堆缓冲区溢出漏洞(CVE-2026-42945)](https://mp.weixin.qq.com/s/aa3dru8viVfzXNaTzVlZyA) - [ ] [勒索月报|360攻克4月两大勒索威胁:Wmansvcs全系变种可解密,Sorry完整攻击链曝光](https://mp.weixin.qq.com/s/A6pONqpunxvP_qkBXaj2AQ) - [ ] [网页端 DeepSeek 上下文泄露实测](https://mp.weixin.qq.com/s/FSm67bnTrp9M8FS7dAykAg) - [ ] [富士康多家工厂遭勒索攻击,8TB超千万份客户敏感文件疑被窃取](https://mp.weixin.qq.com/s/hbd9saOIuHNtV205VgGOag) - [ ] [拆解公共高级威胁情报的衰落](https://mp.weixin.qq.com/s/LWZs9O8MflsmmzVB0MAuCQ) - [ ] [安全419|一周国际网安资讯:AI工具滥用 供应链攻击激增](https://mp.weixin.qq.com/s/Xai71raHpc9YhO-6joenvg) - [ ] [我偶然发现了一套全新未拆封的Windows Vista Business系统,真的很怀念这种包装盒的设计!](https://mp.weixin.qq.com/s/8It-Q211ME9F536X-YcHCw) - Private Feed for M09Ic - [ ] [anthropics released v2.1.142 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.142) - [ ] [bolucat released 202605142153 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202605142153) - [ ] [kpcyrd contributed to razvandimescu/numa](https://github.com/razvandimescu/numa/pull/210) - [ ] [github released v0.8.10 at github/spec-kit](https://github.com/github/spec-kit/releases/tag/v0.8.10) - [ ] [WAY29 starred sleepinginsummer/agent-browser-cli](https://github.com/sleepinginsummer/agent-browser-cli) - [ ] [kpcyrd forked kpcyrd/numa from razvandimescu/numa](https://github.com/kpcyrd/numa) - [ ] [kpcyrd starred razvandimescu/numa](https://github.com/razvandimescu/numa) - [ ] [Chuyu-Team released v1.2.2-Beta.2 at Chuyu-Team/YY-Thunks](https://github.com/Chuyu-Team/YY-Thunks/releases/tag/v1.2.2-Beta.2) - [ ] [gh0stkey starred Termix-SSH/Termix](https://github.com/Termix-SSH/Termix) - [ ] [PrefectHQ released 3.7.1.dev8 at PrefectHQ/prefect](https://github.com/PrefectHQ/prefect/releases/tag/3.7.1.dev8) - [ ] [Mel0day starred Equality-Machine/claude-p](https://github.com/Equality-Machine/claude-p) - [ ] [gh0stkey starred ekzhang/bore](https://github.com/ekzhang/bore) - [ ] [CHYbeta starred DepthFirstDisclosures/Nginx-Rift](https://github.com/DepthFirstDisclosures/Nginx-Rift) - [ ] [PeiQi0 starred harish-garg/Awesome-Polymarket-Tools](https://github.com/harish-garg/Awesome-Polymarket-Tools) - [ ] [pydantic released v1.96.0 at pydantic/pydantic-ai](https://github.com/pydantic/pydantic-ai/releases/tag/v1.96.0) - Microsoft Security Blog - [ ] [Defense in depth for autonomous AI agents](https://www.microsoft.com/en-us/security/blog/2026/05/14/defense-in-depth-autonomous-ai-agents/) - [ ] [Kazuar: Anatomy of a nation-state botnet](https://www.microsoft.com/en-us/security/blog/2026/05/14/kazuar-anatomy-of-a-nation-state-botnet/) - [ ] [When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps](https://www.microsoft.com/en-us/security/blog/2026/05/14/configuration-becomes-vulnerability-exploitable-misconfigurations-ai-apps/) - Recent Commits to cve:main - [ ] [Update Thu May 14 11:37:02 UTC 2026](https://github.com/trickest/cve/commit/2d9809d787e0e98d0e12d860faa27a24fccf302e) - SecWiki News - [ ] [SecWiki News 2026-05-14 Review](http://www.sec-wiki.com/?2026-05-14) - obaby 𝐢𝐧⃝ void - [ ] [人工服务](https://zhongxiaojie.cn/2026/05/1258/) - Corelan | Exploit Development & Vulnerability Research - [ ] [Mona, tellme - AI-assisted crash triage 🧠](https://www.corelan.be/index.php/2026/05/14/mona-tellme/) - 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com - [ ] [「以图鉴势」嘶吼2026网络安全产业图谱重磅发布](https://www.4hou.com/posts/BpoQ) - Tenable Blog - [ ] [Bring out your dead: How agentic AI for cybersecurity helps you rid your cloud of forgotten, risky assets](https://www.tenable.com/blog/agentic-ai-cloud-security-zombie-assets) - [ ] [Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation](https://www.tenable.com/blog/fragnesia-cve-2026-46300-faq-about-new-linux-kernel-xfrm-esp-in-tcp-priv-esc) - Bug Bounty in InfoSec Write-ups on Medium - [ ] [How Hackers Actually Earn Passive Income With Recon](https://infosecwriteups.com/how-hackers-actually-earn-passive-income-with-recon-c77c2a74975f?source=rss----7b722bfd1b8d--bug_bounty) - [ ] [I Predicted a Vulnerability Before I Even Touched the Target](https://infosecwriteups.com/i-predicted-a-vulnerability-before-i-even-touched-the-target-2a72b5b693d2?source=rss----7b722bfd1b8d--bug_bounty) - [ ] [The Oldest LLM Trick Still Works in 2026 — I Found It on Two Production AI Apps](https://infosecwriteups.com/the-oldest-llm-trick-still-works-in-2026-i-found-it-on-two-production-ai-apps-855768ac83b6?source=rss----7b722bfd1b8d--bug_bounty) - GuidePoint Security - [ ] [The Evolution of PAM: From Password Vaults to JIT Access](https://www.guidepointsecurity.com/blog/pam-evolution-just-in-time-access/) - Securelist - [ ] [Kimsuky targets organizations with PebbleDash-based tools](https://securelist.com/kimsuky-appleseed-pebbledash-campaigns/119785/) - Horizon3.ai - [ ] [Horizon3.ai NodeZero® Achieves “Awardable” Status in the Tradewinds Solutions Marketplace](https://horizon3.ai/news/awards/nodezero-tradewinds-awardable/) - [ ] [Horizon3.ai NodeZero® Assessed “Awardable” for Department of War Work in the Tradewinds Solutions Marketplace](https://horizon3.ai/news/press-release/nodezero-tradewinds-awardable-status/) - Malwarebytes - [ ] [Why Malwarebytes blocks some Yahoo Mail redirects](https://www.malwarebytes.com/blog/threat-intel/2026/05/why-malwarebytes-blocks-some-yahoo-mail-redirects) - [ ] [Deepfake sextortion forces schools to remove student photos from websites](https://www.malwarebytes.com/blog/family-and-parenting/2026/05/deepfake-sextortion-forces-schools-to-remove-student-photos-from-websites) - CCC Event Blog - [ ] [MRMCD 2026: Grenzen überwinden](https://events.ccc.de/2026/05/14/mrmcd2026/) - Payatu - [ ] [Top 10 CERT-In Empanelled VAPT Companies in India (2026)](https://payatu.com/blog/top-10-cert-in-empanelled-vapt-companies-in-india-2026/) - VMRay - [ ] [What Is Data Residency? Why Data Location Is a Security Decision](https://www.vmray.com/data-residency/) - Exploit-DB.com RSS Feed - [ ] [[webapps] WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI](https://www.exploit-db.com/exploits/52564) - [ ] [[webapps] Apache HertzBeat 1.8.0 - Remote Code Execution](https://www.exploit-db.com/exploits/52563) - [ ] [[webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass](https://www.exploit-db.com/exploits/52562) - [ ] [[webapps] PJPROJECT 2.16 - Heap Bufferoverflow](https://www.exploit-db.com/exploits/52561) - bishopfox.com - [ ] [Otto Support - Logging and Visibility in MCP Servers](https://bishopfox.com/blog/otto-support-logging-visibility-in-mcp-servers) - Security Uncorked - [ ] [Chrome is Silently Installing 4GB AI Model on Your Device without Consent. Here’s how to find it and remove it.](https://securityuncorked.com/2026/05/how-to-stop-chrome-from-silently-installing-ai-model-on-your-device/) - Checkmarx - [ ] [The Vibe Coding Hangover](https://checkmarx.com/blog/the-vibe-coding-hangover/) - [ ] [Something’s Wrong With Your Code. And Attackers Know It.](https://checkmarx.com/blog/somethings-wrong-with-your-code-and-attackers-know-it/) - rtl-sdr.com - [ ] [RTL-SDR Blog V4 End Of Line](https://www.rtl-sdr.com/rtl-sdr-blog-v4-end-of-line/) - [ ] [Saveitforparts: Seeing Satellites with the Discovery Drive and Discovery Dish](https://www.rtl-sdr.com/saveitforparts-seeing-satellites-with-the-discovery-drive-and-discovery-dish/) - HackerNews - [ ] [研究人员公布概念验证,利用 Windows BitLocker 零日漏洞可访问受保护驱动器](http://0.0.0.0:8080/post/64248) - [ ] [伊朗黑客瞄准韩国大型电子制造商](http://0.0.0.0:8080/post/64247) - [ ] [安卓新增入侵日志功能,助力深度分析复杂间谍软件攻击](http://0.0.0.0:8080/post/64246) - [ ] [微软修复 138 个漏洞,涵盖 DNS 和 Netlogon 远程代码执行缺陷](http://0.0.0.0:8080/post/64245) - [ ] [西氏医药服务公司称遭黑客攻击,数据被盗、系统被加密](http://0.0.0.0:8080/post/64244) - 绿盟科技技术博客 - [ ] [绿盟科技安全数字人平台正式发布:以风云卫为核心,构建自主运营、持续进化的安全数字人团队](https://blog.nsfocus.net/%e7%bb%bf%e7%9b%9f%e7%a7%91%e6%8a%80%e5%ae%89%e5%85%a8%e6%95%b0%e5%ad%97%e4%ba%ba%e5%b9%b3%e5%8f%b0%e6%ad%a3%e5%bc%8f%e5%8f%91%e5%b8%83%ef%bc%9a%e4%bb%a5%e9%a3%8e%e4%ba%91%e5%8d%ab%e4%b8%ba%e6%a0%b8/) - [ ] [从网安尖兵到志愿先锋:绿盟科技在党委书记胡忠华带领下公益实践纪实](https://blog.nsfocus.net/%e4%bb%8e%e7%bd%91%e5%ae%89%e5%b0%96%e5%85%b5%e5%88%b0%e5%bf%97%e6%84%bf%e5%85%88%e9%94%8b%ef%bc%9a%e7%bb%bf%e7%9b%9f%e7%a7%91%e6%8a%80%e5%9c%a8%e5%85%9a%e5%a7%94%e4%b9%a6%e8%ae%b0%e8%83%a1%e5%bf%a0/) - K8哥哥’s Blog - [ ] [AI渗透工具 Kali & HexStrike 大量RCE 0day漏洞](http://k8gege.org/p/hexstrike_0day.html) - Shostack & Friends Blog - [ ] [Claude Opus 4.7 and Threat Modeling](https://shostack.org/blog/claude-opus-47-thinking/) - 奇安信 CERT - [ ] [【已复现】Linux Kernel Fragnesia 本地权限提升漏洞(CVE-2026-46300)安全风险通告](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247505770&idx=1&sn=7dd912798e894e61bea35d7783fe5f65) - 奇客Solidot–传递最新科技情报 - [ ] [科学家首次从直立人化石中提取出遗传信息](https://www.solidot.org/story?sid=84302) - [ ] [第一位牙医是尼安德特人](https://www.solidot.org/story?sid=84301) - [ ] [AI 工具作弊的流行迫使普林斯顿推翻无人监考制度](https://www.solidot.org/story?sid=84300) - [ ] [为什么部分人特别招蚊子?](https://www.solidot.org/story?sid=84299) - [ ] [美国批准向 10 家中国公司出售 H200 芯片](https://www.solidot.org/story?sid=84298) - [ ] [研究发现在出生前接触蔬菜气味帮助婴儿爱上吃蔬菜](https://www.solidot.org/story?sid=84297) - [ ] [天文学家观测 120 亿年前极小星系 LAP1-B](https://www.solidot.org/story?sid=84296) - [ ] [肥胖率在发展中国家加速](https://www.solidot.org/story?sid=84295) - [ ] [哈佛教师就是否限制学生获得 A 进行投票](https://www.solidot.org/story?sid=84294) - [ ] [Meta 员工抗议公司对其鼠标移动和按键的跟踪](https://www.solidot.org/story?sid=84293) - [ ] [Windows Update 将自动回滚问题驱动](https://www.solidot.org/story?sid=84292) - 绿盟科技CERT - [ ] [【漏洞通告】Nginx远程代码执行漏洞(CVE-2026-42945)](https://mp.weixin.qq.com/s?__biz=Mzk0MjE3ODkxNg==&mid=2247492593&idx=1&sn=98331857503f56a95034d59968079fa2) - [ ] [【已复现】Linux内核Fragnesia权限提升漏洞(CVE-2026-46300)](https://mp.weixin.qq.com/s?__biz=Mzk0MjE3ODkxNg==&mid=2247492593&idx=2&sn=564647c61e416fc272f49b45dec287ab) - 代码卫士 - [ ] [Ivanti 紧急修复暴露敏感数据的严重 Xtraction 漏洞](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526003&idx=1&sn=5e04c332e1da0696e277729a63c4007b) - [ ] [Exim BDAT 严重漏洞可导致内存损坏和代码执行攻击](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526003&idx=2&sn=c20e54e5adb2f700ddd645f3b36b2e09) - [ ] [速修复!Composer 漏洞可暴露 GitHub 密钥](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526003&idx=3&sn=280e2920486fd297c8b0912e1bf5eb48) - 微步在线研究响应中心 - [ ] [NGINX爆新漏洞,特定配置下可实现远程代码执行](https://mp.weixin.qq.com/s?__biz=Mzg5MTc3ODY4Mw==&mid=2247508711&idx=1&sn=689a40df2241578556ccbf3e178f2c0b) - 安全内参 - [ ] [富士康多家工厂遭勒索攻击,8TB超千万份客户敏感文件疑被窃取](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515938&idx=1&sn=ce2864099f925c9d404dac019c9a7be3) - [ ] [拆解公共高级威胁情报的衰落](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515938&idx=2&sn=9516b379c93cf9ffcec6e82fa37edf39) - 看雪学苑 - [ ] [潜伏18年,CVSS 9.2分!NGINX核心模块曝“无认证RCE”漏洞,PoC已公开](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458615049&idx=1&sn=929dce8d5bf8cad73eb7978697900a4d) - [ ] [如何让AI不分析你的混淆后的代码:一种思路(含PoC)](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458615049&idx=2&sn=afd37e6cc49b0050d5882fd4d1626eb2) - [ ] [活动改期|先知安全沙龙 - 北京站 5月30日开启!](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458615049&idx=3&sn=69d940515e77ba744a92cca1c19b909c) - 威努特安全网络 - [ ] [智慧矿山井下网络传输难?井下工业环网轻松解决](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651141612&idx=1&sn=4d001a1971647ee66515dc051b50cf2f) - DataCon大数据安全分析竞赛 - [ ] [报名倒计时|CCF-INFORSEC网络空间安全前沿创新论坛即将在京召开](https://mp.weixin.qq.com/s?__biz=MzU5Njg1NzMyNw==&mid=2247489512&idx=1&sn=9955d7e7adeba83d5a76d1744644e532) - 丁爸 情报分析师的工具箱 - [ ] [【资料】伊朗、乌克兰、石油、粮食、关岛:地缘政治](https://mp.weixin.qq.com/s?__biz=MzI2MTE0NTE3Mw==&mid=2651155573&idx=1&sn=7cf0124f749c16c8a43079cd1e6f726a) - 安全学术圈 - [ ] [浙江大学 | 注意力即防御:基于注意力特征的大语言模型间接提示注入攻击防御方法](https://mp.weixin.qq.com/s?__biz=MzU5MTM5MTQ2MA==&mid=2247495343&idx=1&sn=8abfda1357d350b74a5ed94b0aff2703) - 中国信息安全 - [ ] [黄殿中院士:立足数字中国全局 深耕八闽数智沃土 开创智能时代新未来](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664262570&idx=1&sn=9cdf83a23a88cb02308620001b396763) - 安全圈 - [ ] [【安全圈】安卓新增入侵日志功能,助力深度分析复杂间谍软件攻击](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652076449&idx=1&sn=ab1d27663ed85f0d58b0aaaa9df2e199) - [ ] [【安全圈】研究人员公布概念验证,利用 Windows BitLocker 零日漏洞可访问受保护驱动器](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652076449&idx=2&sn=d5cd359cfaa12b85e67dd5ecd70ae36c) - [ ] [【安全圈】微软警告“ Dirty Frag ” Linux 内核漏洞已遭黑客利用](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652076449&idx=3&sn=a4f35a4e89fcd8cd11fe4ce831687029) - 安全牛 - [ ] [Google紧急预警:AI首次亲手锻造零日武器,2FA防线宣告失守](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141332&idx=1&sn=a216300ca10cd54172cdce26d3497d49) - [ ] [后量子密码 + 无加密勒索,2026 勒索攻击战术全面升级 ;CNNVD 19 期周报:新增漏洞 1657 个,PAN-OS 曝超危代码执行漏洞| 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141332&idx=2&sn=4c06f32aa30d02ca0a24519e4cdefa7f) - 软件安全与逆向分析 - [ ] [解决一个安卓15/16调试APK运行adb jdwp无输出的问题](https://mp.weixin.qq.com/s?__biz=MzU3MTY5MzQxMA==&mid=2247485221&idx=1&sn=896b232e993d35f05c40f2d4f54cdb3b) - 情报分析师 - [ ] [人力+信号+开源加起来,为什么连1都不到?情报机构最大的困境,不是缺少信息,而是彼此不相信](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650567844&idx=1&sn=6f4bb809ea9e821d49572a834905ceb7) - [ ] [伊朗的"数字间谍工厂",当聊天App变成招募特工的武器](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650567844&idx=2&sn=1b1878fb2303c8e9edb8e5ace5caffb6) - 数世咨询 - [ ] [联合发布:数字安全实战型人才评价白皮书](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247542863&idx=1&sn=2fab19d4dd70a50d630a7af41b34efee) - [ ] [AI编程已是必然 安全团队如何适应?](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247542863&idx=2&sn=003aa40ec48376a1eb889cf413a6ada7) - 黑哥虾撩 - [ ] [在上一篇文章 《罗福莉访谈之后:Vibe Coding → Vibe Working → Vibe Forking》https://mp.weixin.qq.com/s/D4bAcI3TN4b_cEhk-aftNQ 提](https://mp.weixin.qq.com/s?__biz=Mzg5OTU1NTEwMg==&mid=2247484545&idx=1&sn=04d83781230991a0a34b0734a4550952) - 嘶吼专业版 - [ ] [「以图鉴势」嘶吼2026网络安全产业图谱重磅发布](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247587721&idx=1&sn=09bc8325075ae758ac1d7d47d6459001) - 极客公园 - [ ] [营收1965亿,市值创近一年新低,马化腾:一年前上了AI的船,结果发现船漏水了](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653106535&idx=1&sn=cf18344349ad40b27b8cb17a6a338202) - [ ] [投中了理想、MiniMax 后,他说,AI 时代仍然要找「让人汗毛直竖」的创业者](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653106520&idx=1&sn=6bbbb490269b5981f963219c3b32a1c7) - [ ] [脉脉:具身智能岗位暴增 15 倍,平均月薪超 6 万元;马斯克点赞宇树「人形机甲」;阿里吴泳铭:没有一张卡是「空」的 | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653106506&idx=1&sn=23be96c4e203e1beb7f95a1e3c877a9b) - 美团技术团队 - [ ] [美团 LongCat 开源 General 365:树立推理评测新标尺](https://mp.weixin.qq.com/s?__biz=MjM5NjQ5MTI5OA==&mid=2651782607&idx=1&sn=4ddacd5f735d67913062b793ce7db6e1) - [ ] [美团无人机低空物流解决方案亮相世界无人机大会](https://mp.weixin.qq.com/s?__biz=MjM5NjQ5MTI5OA==&mid=2651782607&idx=2&sn=556ce4fb751183e404cea0218f8f7867) - [ ] [MARS TALK 香港大学站|共话具身智能的技术演进与商业化进程](https://mp.weixin.qq.com/s?__biz=MjM5NjQ5MTI5OA==&mid=2651782607&idx=3&sn=a7270bae51bb2df89e5e587e601ba5a0) - 火绒安全 - [ ] [火绒个人版6.0功能升级 | 网站内容管控与自定义防护升级](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247532708&idx=1&sn=6f2373265a2dd0e27645d0e84f637b35) - [ ] [诚邀渠道合作伙伴共启新征程](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247532708&idx=2&sn=3e439c44c0b56399aea065e894ea87da) - 字节跳动技术团队 - [ ] [重构大模型通信架构:火山引擎 RocketMQ For AI 解决方案](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247519789&idx=1&sn=8d19584eda2d9d6dddfdd0d55dc70da7) - 360数字安全 - [ ] [勒索月报|360攻克4月两大勒索威胁:Wmansvcs全系变种可解密,Sorry完整攻击链曝光](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247585958&idx=1&sn=cd0a8e2f3450f08faadd5baa3dfdaa28) - TrustedSec - [ ] [Finding Your Way on the Passkey Path](https://trustedsec.com/blog/finding-your-way-on-the-passkey-path) - 深信服千里目安全技术中心 - [ ] [微软补丁日安全通告|5月份](https://mp.weixin.qq.com/s?__biz=Mzg2NjgzNjA5NQ==&mid=2247525604&idx=1&sn=4b178540cb7d9488b0e84b5fdfb8b2a8) - [ ] [网络安全信息与动态周报2026年第19期(5月4日-5月10日)](https://mp.weixin.qq.com/s?__biz=Mzg2NjgzNjA5NQ==&mid=2247525604&idx=2&sn=f599fa74f39255bca946a31c941946b3) - 迪哥讲事 - [ ] [【项目实战】另一种Swagger测试思路](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247499439&idx=1&sn=4c8e9ff14aa181e4bea685213ff5031a) - Krypt3ia - [ ] [Threat Intelligence Report: APT Operations Against AI Systems](https://krypt3ia.wordpress.com/2026/05/14/18837/) - 安全419 - [ ] [安全419|一周国际网安资讯:AI工具滥用 供应链攻击激增](https://mp.weixin.qq.com/s?__biz=MzUyMDQ4OTkyMg==&mid=2247553333&idx=1&sn=e168904fb300ddef2563c30ecbdae7ba) - 纽创信安 - [ ] [国内首家!四类抗量子密码 IP 通过 NIST CAVP 验证,芯片客户量产落地](https://mp.weixin.qq.com/s?__biz=MzAwNTczMjAzMg==&mid=2650241280&idx=1&sn=8c67da4e91b9c9863d62edf473168fbe) - Forensic Focus - [ ] [How Distressing Material Shapes Investigator Well-Being](https://www.forensicfocus.com/podcast/how-distressing-material-shapes-investigator-well-being/) - [ ] [Speed Up Your Video Redaction With Amped Replay](https://www.forensicfocus.com/webinars/speed-up-your-video-redaction-with-amped-replay/) - Qualys Security Blog - [ ] [Achieve Federal-Grade M365 Security: Governing with Qualys SSPM and SCuBA](https://blog.qualys.com/category/product-tech) - [ ] [Stop Chasing Threats: Top 3 Insights from the SANS Attack Surface Management Survey](https://blog.qualys.com/category/product-tech) - [ ] [FedRAMP High Authorized: Qualys TotalCloud CNAPP – From Compliance to Defense](https://blog.qualys.com/category/product-tech) - Securityinfo.it - [ ] [NGINX Rift, rischio RCE per una falla rimasta nascosta 18 anni](https://www.securityinfo.it/2026/05/14/nginx-rift-rischio-rce-per-una-falla-rimasta-nascosta-18-anni/?utm_source=rss&utm_medium=rss&utm_campaign=nginx-rift-rischio-rce-per-una-falla-rimasta-nascosta-18-anni) - IT Service Management News - [ ] [Gli uomini possono fare tutto (Maggio 2026)](http://blog.cesaregallotti.it/2026/05/gli-uomini-possono-fare-tutto-maggio.html) - Have I Been Pwned latest breaches - [ ] [Abrigo - 711,099 breached accounts](https://haveibeenpwned.com/Breach/Abrigo) - HACKMAGEDDON - [ ] [April 2026 Cyber Attacks Statistics](https://www.hackmageddon.com/2026/05/14/april-2026-cyber-attacks-statistics/) - Lenny Zeltser - [ ] [Plant Decoy Personas to Detect Impersonation Attacks](https://zeltser.com/the-notion-of-a-honeypot-persona) - 0x727开源安全团队 - [ ] [CrowdStrike战略方向分析](https://mp.weixin.qq.com/s?__biz=MzkwNTI3MjIyOQ==&mid=2247484302&idx=1&sn=c3c5675b32360a563b7afeebf6977116) - 白帽子章华鹏 - [ ] [头部互联网/智能制造/出海科技等热门赛道和优质企业岗位直推负责人](https://mp.weixin.qq.com/s?__biz=MzIyOTAxOTYwMw==&mid=2650239038&idx=1&sn=525a43c7876f6c2d5ed8c6b166cac937) - Troy Hunt's Blog - [ ] [Welcoming the Bahamian Government to Have I Been Pwned](https://www.troyhunt.com/welcoming-the-bahamian-government-to-have-i-been-pwned/) - Security Affairs - [ ] [U.S. CISA adds a flaw in Cisco Catalyst SD-WAN to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/192157/hacking/u-s-cisa-adds-a-flaw-in-cisco-catalyst-sd-wan-to-its-known-exploited-vulnerabilities-catalog.html) - [ ] [Linux Kernel bug Fragnesia allows local root access attacks](https://securityaffairs.com/192145/uncategorized/linux-kernel-bug-fragnesia-allows-local-root-access-attacks.html) - [ ] [Broadcom releases VMware Fusion security update for root access bug](https://securityaffairs.com/192136/security/broadcom-releases-vmware-fusion-security-update-for-root-access-bug.html) - [ ] [NGINX Rift: an 18-year-old flaw in the world’s most deployed web server just came to light](https://securityaffairs.com/192132/hacking/nginx-rift-an-18-year-old-flaw-in-the-worlds-most-deployed-web-server-just-came-to-light.html) - [ ] [FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign](https://securityaffairs.com/192113/apt/famoussparrow-targets-azerbaijani-energy-sector-in-multi-wave-espionage-campaign.html) - [ ] [Nitrogen Ransomware claims massive data theft from Foxconn](https://securityaffairs.com/192099/uncategorized/nitrogen-ransomware-claims-massive-data-theft-from-foxconn.html) - Schneier on Security - [ ] [Upcoming Speaking Engagements](https://www.schneier.com/blog/archives/2026/05/upcoming-speaking-engagements-56.html) - [ ] [How Dangerous Is Anthropic’s Mythos AI?](https://www.schneier.com/blog/archives/2026/05/how-dangerous-is-anthropics-mythos-ai.html) - The Hacker News - [ ] [Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access](https://thehackernews.com/2026/05/cisco-catalyst-sd-wan-controller-auth.html) - [ ] [Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets](https://thehackernews.com/2026/05/stealer-backdoor-found-in-3-node-ipc.html) - [ ] [ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories](https://thehackernews.com/2026/05/threatsday-bulletin-pan-os-rce-mythos.html) - [ ] [Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike](https://thehackernews.com/2026/05/ghostwriter-targets-ukrainian.html) - [ ] [PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure](https://thehackernews.com/2026/05/praisonai-cve-2026-44338-auth-bypass.html) - [ ] [How AI Hallucinations Are Creating Real Security Risks](https://thehackernews.com/2026/05/how-ai-hallucinations-are-creating-real.html) - [ ] [Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation](https://thehackernews.com/2026/05/windows-zero-days-expose-bitlocker.html) - [ ] [New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption](https://thehackernews.com/2026/05/new-fragnesia-linux-kernel-lpe-grants.html) - [ ] [18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE](https://thehackernews.com/2026/05/18-year-old-nginx-rewrite-module-flaw.html) - GRAHAM CLULEY - [ ] [Suspected Dream Market kingpin arrested after gold bars sent to his home address](https://www.bitdefender.com/en-us/blog/hotforsecurity/dream-market-kingpin-arrested-gold-bars) - [ ] [When ransomware gets physical: cybercriminals turn to threats of violence](https://www.bitdefender.com/en-us/blog/hotforsecurity/ransomware-physical-threats-violence) - TorrentFreak - [ ] [Real-Debrid’s Renewed Piracy Crackdown Follows Corporate Restructuring (Updated)](https://torrentfreak.com/real-debrids-renewed-piracy-crackdown-follows-corporate-restructuring/) - www.theregister.com - Articles - [ ] [Nobody believes the 'criminals and scumbags' who hacked Canvas really deleted stolen student data](https://www.theregister.com/cyber-crime/2026/05/14/security-pros-doubt-canvas-attackers-really-deleted-stolen-student-data/5240799) - [ ] [Cops arrest man suspected of being Dream Market kingpin](https://www.theregister.com/security/2026/05/14/alleged-dream-market-kingpin-faces-us-german-charges/5240315) - [ ] [Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access](https://www.theregister.com/security/2026/05/14/dirty-frag-gets-a-sequel-as-fragnesia-hands-linux-attackers-root-level-access/5240270) - [ ] [To gain root access at this company, all an intruder had to do was ask nicely](https://www.theregister.com/security/2026/05/14/to-gain-root-access-intruder-just-had-to-ask/5239853) - [ ] [AI models are getting better at replacing cybersecurity pros on certain tasks](https://www.theregister.com/ai-ml/2026/05/14/ai-models-are-getting-better-at-replacing-cybersecurity-pros-on-certain-tasks/5240065) - [ ] [Cisco to fire 4,000 staff and generously give them free training – on Cisco](https://www.theregister.com/networks/2026/05/14/cisco-to-fire-4000-staff-and-generously-give-them-free-training-on-cisco/5240125) - Instapaper: Unread - [ ] [Reading the CURRENT — LevelDB Forensics with crush](https://bebinary4n6.blogspot.com/2026/05/reading-current-leveldb-forensics-with.html) - [ ] [Why APFS Snapshots Change Everything in Mac Forensics](https://sumuri.com/why-apfs-snapshots-change-everything-in-mac-forensics/) - [ ] [Microsoft fixes BitLocker recovery issue only for Windows 11 users](https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-bitlocker-recovery-issue-only-for-windows-11-users/) - [ ] [Windows BitLocker zero-day gives access to protected drives, PoC released](https://www.bleepingcomputer.com/news/security/windows-bitlocker-zero-day-gives-access-to-protected-drives-poc-released/) - Microsoft Browser Vulnerability Research - [ ] [Saved passwords in Edge memory: what we're changing and why](https://microsoftedge.github.io/edgevr/posts/Saved-passwords-in-Edge-memory-what-were-changing-and-why/) - SANS Internet Storm Center, InfoCON: green - [ ] [Simple bypass of the link preview function in Outlook Junk folder, (Thu, May 14th)](https://isc.sans.edu/diary/rss/32990) - [ ] [ISC Stormcast For Thursday, May 14th, 2026 https://isc.sans.edu/podcastdetail/9932, (Thu, May 14th)](https://isc.sans.edu/diary/rss/32988) - ICT Security Magazine - [ ] [Passkey: la morte annunciata delle password è finalmente arrivata?](https://www.ictsecuritymagazine.com/articoli/passkey-password/) - [ ] [Fine della copia integrale e del sequestro a “strascico”: barriere crittografiche, garanzie costituzionali e giurisprudenza](https://www.ictsecuritymagazine.com/articoli/copia-integrale-copia-mezzo/) - [ ] [Sanzioni cyber e diplomazia coercitiva: il framework UE alla prova dei fatti](https://www.ictsecuritymagazine.com/articoli/sanzioni-cyber-ue/) - Security Weekly Podcast Network (Audio) - [ ] [You're not going to patch your way out of this - PSW #926](http://sites.libsyn.com/18678/youre-not-going-to-patch-your-way-out-of-this-psw-926)
每日安全资讯(2026-05-15)