# 每日安全资讯(2026-07-09) - Private Feed for M09Ic - [ ] [kpcyrd contributed to RustCrypto/crypto-bigint](https://github.com/RustCrypto/crypto-bigint/pull/1323) - [ ] [kpcyrd forked kpcyrd/crypto-bigint from RustCrypto/crypto-bigint](https://github.com/kpcyrd/crypto-bigint) - [ ] [mgeeky starred Orange-Cyberdefense/p3-loader](https://github.com/Orange-Cyberdefense/p3-loader) - [ ] [anthropics released v2.1.205 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.205) - [ ] [bolucat released 202607082142 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202607082142) - [ ] [liamg starred markusmobius/go-trafilatura](https://github.com/markusmobius/go-trafilatura) - [ ] [liamg contributed to liamg/readline](https://github.com/liamg/readline/pull/1) - [ ] [spf13 starred deanpeters/Product-Manager-Skills](https://github.com/deanpeters/Product-Manager-Skills) - [ ] [Fplyth0ner-Combie starred Empyreal96/W10M_unedited-decomp](https://github.com/Empyreal96/W10M_unedited-decomp) - [ ] [strands-agents released typescript/v1.8.0 at strands-agents/harness-sdk](https://github.com/strands-agents/harness-sdk/releases/tag/typescript/v1.8.0) - [ ] [Ascotbe starred Goochbeater/Spiritual-Spell-Red-Teaming](https://github.com/Goochbeater/Spiritual-Spell-Red-Teaming) - [ ] [liamg contributed to infracost/proto](https://github.com/infracost/proto/pull/80) - [ ] [Mel0day starred anthropics/skills](https://github.com/anthropics/skills) - [ ] [pydantic released 0.0.19-beta.1 at pydantic/monty](https://github.com/pydantic/monty/releases/tag/0.0.19-beta.1) - [ ] [OpenAEV-Platform released 2.260708.1 at OpenAEV-Platform/openaev](https://github.com/OpenAEV-Platform/openaev/releases/tag/2.260708.1) - [ ] [OpenAEV-Platform released 2.260708.0 at OpenAEV-Platform/openaev](https://github.com/OpenAEV-Platform/openaev/releases/tag/2.260708.0) - [ ] [Ridter starred ssrsec/webstrike](https://github.com/ssrsec/webstrike) - [ ] [timwhitez starred nccgroup/async-pico-hub](https://github.com/nccgroup/async-pico-hub) - [ ] [Ascotbe starred transilienceai/communitytools](https://github.com/transilienceai/communitytools) - [ ] [su18 starred addyosmani/agent-skills](https://github.com/addyosmani/agent-skills) - Hacking Articles - [ ] [Windows Privilege Escalation: SeDebugPrivilege](https://www.hackingarticles.in/windows-privilege-escalation-sedebugprivilege/) - [ ] [Wireless Pentesting with Claude Using the Aircrack MCP Server](https://www.hackingarticles.in/wireless-pentesting-with-claude-using-the-aircrack-mcp-server/) - obaby 𝐢𝐧⃝ void - [ ] [七月七日](https://zhongxiaojie.cn/2026/07/1611/) - Microsoft Security Blog - [ ] [Protecting Microsoft at AI speed: How SFI proactively hardens our cloud](https://www.microsoft.com/en-us/security/blog/2026/07/08/protecting-microsoft-at-ai-speed-how-sfi-proactively-hardens-our-cloud/) - Doonsec's feed - [ ] [蓝军战术态势数据系统-美国陆军第一军第25步兵师编制实力](https://mp.weixin.qq.com/s/x_SyiePL45m_j7XXqsJcQQ) - [ ] [【推荐】知远蓝军战术态势数据系统系列产品](https://mp.weixin.qq.com/s/PycmvVvIMhBJhu7K75gSrg) - [ ] [知远防务论坛 | 美军作战评估(OA)研修班通知](https://mp.weixin.qq.com/s/yiMXN2vPZ0poJa2DMDrP7A) - [ ] [【上新】美军战斗搜救典型战例述评(1991-2026)](https://mp.weixin.qq.com/s/tpHzgO2fYFLJIDlQd4oSug) - [ ] [【上新】同心戮力:美国陆军人机协同作战](https://mp.weixin.qq.com/s/PObc2sLa-Lz7Qxe9teV2SQ) - [ ] [2026 年第一季度工业自动化系统威胁态势报告](https://mp.weixin.qq.com/s/CvvQk1ZDuejyy6emXSglNw) - [ ] [打补丁永远追不上AI:网络安全界正在用\"石器时代\"的方法打现代战争](https://mp.weixin.qq.com/s/dE_y40xs1zSKpT7Xo75Qcw) - [ ] [CNVD 本周漏洞态势研判:零日漏洞占比超八成,政企漏洞事件环比大幅上涨;Microsoft加速采用自研MAI模型,降低对OpenAI依赖| 牛览](https://mp.weixin.qq.com/s/yudRSd2hjmEd9TxIoLHKmg) - [ ] [【第三部分】写出军规级代码:JSF AV C++编码标准](https://mp.weixin.qq.com/s/YEod3SegtJfF3FLc-zWELQ) - [ ] [BeyondTrust 远程接入平台四枚高危漏洞全拆解:从认证绕过到\"零信任\"信任崩塌的完整攻击链](https://mp.weixin.qq.com/s/oSNqXiN9cS8V_2xTAPVX-g) - [ ] [AI 渗透初探:从零开始的实战赋能记录](https://mp.weixin.qq.com/s/YuTWMWHyJr_GlL_Y52iffQ) - [ ] [EDUSRC--记一次信息泄露进入某学院学工系统的渗透测试](https://mp.weixin.qq.com/s/hRXsVJyIsjIlFL902kyJ2w) - [ ] [7月社区投稿活动 | 漏洞挖掘/AI渗透](https://mp.weixin.qq.com/s/bAnlw-h1kFtNhYcB3xVohg) - [ ] [预警丨防范AI编程工具Claude Code安全后门隐患](https://mp.weixin.qq.com/s/b6wyDKWwl6OnK1GSu7BUDw) - [ ] [各位网络工程师,大家知道这个是什么吗?](https://mp.weixin.qq.com/s/53_y-5dv_Z2NKq62uuLAMQ) - [ ] [厦门大学沈耀斌副教授课题组成果被Journal of Cryptology录用](https://mp.weixin.qq.com/s/lW4crrCuyGn3y5-QPFaoLg) - [ ] [重磅预警|AI批量生成恶意代码!Armored Likho双路线APT来袭,电力、政务系统沦为重点猎物](https://mp.weixin.qq.com/s/viA04EI6pOSSixSOSGXoDQ) - [ ] [祝贺!中山大学学子论文获得顶级学术会议录用!](https://mp.weixin.qq.com/s/6HQjjWk8q3pYVeK8y9LkGQ) - [ ] [2025年国家最高科学技术奖揭晓](https://mp.weixin.qq.com/s/f3U9siEEmFbkWYeU_2szmw) - [ ] [安全从业者开始放弃自动化渗透测试?](https://mp.weixin.qq.com/s/hfkiqyPtEofndldvk3PH5w) - [ ] [速看 | 全国安全合规测评机构一站式查询平台正式上线](https://mp.weixin.qq.com/s/SowUTvsKhEz8PlM4LoIIAA) - [ ] [政务网站常见网络安全隐患及整改落地指南](https://mp.weixin.qq.com/s/EEo0ekBpgHuN6J_A0015_A) - [ ] [大模型 2025–2026 新CVE 漏洞全景/技术详情](https://mp.weixin.qq.com/s/rxFYZyc7tNO2TYz4jQsYPg) - [ ] [运用大模型,上海银行资产托管运营助手助力效率提升超80%](https://mp.weixin.qq.com/s/25sGskt6FVcwprUrDRFBfQ) - [ ] [AI生成内容安全及风控管理技术应用指南](https://mp.weixin.qq.com/s/uxpv9F5SH29ErmxQbYiDog) - [ ] [2026年度河南省科学技术奖受理项目公示(网络空间安全领域)](https://mp.weixin.qq.com/s/ckcckAh9PDsQgZ_dqE8Eug) - [ ] [哪吒网络安全MCP](https://mp.weixin.qq.com/s/Uf-2zKfY_EZHKGbRUQGtFg) - [ ] [BeyondTrust 修复高危认证绕过:远程支持平台,必须按关键资产管理](https://mp.weixin.qq.com/s/tUytHq_2maqP1VlBOkQ_jQ) - [ ] [Tenda 路由器曝隐藏后门:家用设备,也可能成为网络入口](https://mp.weixin.qq.com/s/yTbQPIUhiivKhsskBQXntQ) - [ ] [DEBULL 滥用设备代码登录:MFA 不是“点一下就安全”的护身符](https://mp.weixin.qq.com/s/CgsH27DS6RK5XNiAmkuc4A) - [ ] [招人啦~高级岗位薪资特别美丽](https://mp.weixin.qq.com/s/3VR0qJ2E-d4TbeRy2w5wog) - [ ] [helen](https://mp.weixin.qq.com/s/RGdYUes-EGnoBtoGI-oNTg) - [ ] [NT算搞完了](https://mp.weixin.qq.com/s/OViFvomMl8AS7e78PqefTw) - [ ] [震惊!这款渗透测试神器让万级资产验证效率提升100倍](https://mp.weixin.qq.com/s/DNPkBE95oh8LVFqD25zyBQ) - [ ] [36项指标通过!百度智能云荣获“可信云-云计算安全责任共担”资质](https://mp.weixin.qq.com/s/xvuB2WJpour0oBBuUbZyYA) - [ ] [网安“世界杯”8强登场!](https://mp.weixin.qq.com/s/KAOttRga0_vghtHg1THGaw) - [ ] [Codex破解了一台三星电视](https://mp.weixin.qq.com/s/QFiih85_llnkDPdRa8cdMA) - [ ] [一条命令看穿所有 TCP 连接!后端网络排查终于不玄学了](https://mp.weixin.qq.com/s/fnco2rckJM_aukYq3M04Ew) - [ ] [2026HVV实战|90%失分源于影子资产!AI+云原生攻击面收敛指南](https://mp.weixin.qq.com/s/WKA7fC28fwV65MmiRT4tEw) - [ ] [关于防范AI编程工具Claude Code安全后门隐患的风险提示](https://mp.weixin.qq.com/s/IzFd60OzYm7QxfN2hxluHw) - [ ] [现场必勘!让沉默的“证人”开口说话](https://mp.weixin.qq.com/s/tCEGtO_phPFOUT2FEf8IaQ) - [ ] [大象要一口一口吃:PHP PDO扩展中的NUL字节SQL注入与空指针解引用漏洞](https://mp.weixin.qq.com/s/foMleOiYvmBA-d3hq8ks_g) - [ ] [生日快乐|一年为期,步履不停,写在23岁,关于成长的一些真话](https://mp.weixin.qq.com/s/ldmuH5v-OJ0mv5-wHKpgjw) - [ ] [MapTilerTileserver 反射xss漏洞(CVE-2025-44136)](https://mp.weixin.qq.com/s/OFokLPFwqsWcVfUZHYH_RQ) - [ ] [宁盾数字身份域管方案入选上海信创典型案例,树立微软AD信创改造新范式](https://mp.weixin.qq.com/s/_-naGiaNskx2wLZlGUIsoA) - [ ] [《上海信创典型案例(2025)》:宁盾基于数字身份域管解决党政行业Windows AD 国产化方案](https://mp.weixin.qq.com/s/3lUKcB1upookffc0tU2y7Q) - [ ] [解读|安恒信息深度参编的6项网络安全国家标准正式发布](https://mp.weixin.qq.com/s/5XNON3ls2uAo9iXPQk0MCA) - [ ] [2026赛迪顾问IT市场年会|AI能力跃迁,防御如何破局?袁明坤分享三阶段路径](https://mp.weixin.qq.com/s/s-a4GaJVjtW3Sg5Pi67Hrw) - [ ] [7月8日高危CVE漏洞速报](https://mp.weixin.qq.com/s/bAfsWIuRhVac2SmgUvxOlA) - [ ] [基于智能体的车载智能场景重构](https://mp.weixin.qq.com/s/U9hbjVLiPTXl_8rEmshslA) - [ ] [用友时空KSOA popedom SQL 注入漏洞](https://mp.weixin.qq.com/s/w20ssr3O7Uvo9QOw4P1m3Q) - [ ] [卡巴斯基披露Armored Likho组织利用AI生成恶意软件开展攻击活动](https://mp.weixin.qq.com/s/XRVJkoec6INk8llGpEUFiw) - [ ] [中央网信办深入开展“清朗·整治AI应用乱象”专项行动第一阶段工作](https://mp.weixin.qq.com/s/nhULtH7BRNcfP3YQifEkAQ) - [ ] [迪普科技深度参编 | 国标《网络安全技术 事件调查原则和过程》正式发布](https://mp.weixin.qq.com/s/b7WxgD2IYMq_1wd4rR-RQA) - [ ] [最高罚全球营收 2.5%!做欧盟 CRA 上报,漏洞线索去哪找?全渠道整理好了](https://mp.weixin.qq.com/s/3DZjdpJhCPZ_6Pt9NvhXnw) - [ ] [北京国测数科网络科技有限公司2026年校园招聘网络信息安全工程师(实习生)](https://mp.weixin.qq.com/s/zBuAEpFOJ_J4cY9rHj9mrA) - [ ] [网安证书别乱考NISP/CISP/PTE 一次分清](https://mp.weixin.qq.com/s/Ozj1kEyw9wl-p540xs2c5A) - [ ] [Z3r0:全流程自动化渗透/挖洞智能体协作平台](https://mp.weixin.qq.com/s/u9tLt_Zn1xz1MbOgvrQzTA) - [ ] [魔改二开哥斯拉webshell工具--助力红蓝对抗](https://mp.weixin.qq.com/s/EEl7w-jobWmx_qhhFmqS8Q) - [ ] [网安AI速报 | 2026.07.08](https://mp.weixin.qq.com/s/se970QIZLLjqVoHz32mogA) - [ ] [2天掌握AI安全运营实战技能 | 7月16日长沙开班,火热报名中~](https://mp.weixin.qq.com/s/1acJYy4LelwPEBighhapQA) - [ ] [DDR4 和 DDR5 的价格太离谱了,准备继续用DDR3了](https://mp.weixin.qq.com/s/xNMlGN13-YaYjiqASDZWSA) - [ ] [iPad 版 Word 正式支持 Copilot 编辑模式:移动端文档编辑体验再升级](https://mp.weixin.qq.com/s/LIoNXWlEzxSdjloAR_Xpwg) - [ ] [Copilot研究助手:让AI像投研团队一样分析财报和行业](https://mp.weixin.qq.com/s/aN2cNH9kfERpY3K7YNLeXQ) - [ ] [Copilot一个页面多个办公功能,步骤超简单](https://mp.weixin.qq.com/s/F-XUsKvBAmfJmQHPgG1rlg) - [ ] [88vip网购返利助手使用攻略丨支持淘宝、京东、拼多多、唯品会、抖音、快手全平台通用【88vip高返助手领券入口】~](https://mp.weixin.qq.com/s/NU7wMoI8dfSZXifZ0yzV8A) - [ ] [招人啦~持续为巨佬提供安全岗位。快泥煤的来找我撒](https://mp.weixin.qq.com/s/I54LlrAD2IrMDXeUasiQcg) - [ ] [A、B、C类IP地址怎么划分?一文学会判断是否属于同一个子网](https://mp.weixin.qq.com/s/kW0BYGKWdR58XcBVPIisEA) - [ ] [信息安全小提示(2026年第6期)](https://mp.weixin.qq.com/s/Dnu1-IMm1xUOhpr5X2ienQ) - [ ] [01工作随笔 新变量加入:AI推动工作范式重构](https://mp.weixin.qq.com/s/u-OM-WG45LGD3I5rpUqwjw) - [ ] [正在被恶意利用的 Gitea 容器高危漏洞,可泄露代码仓库与密钥](https://mp.weixin.qq.com/s/RxBW807IwVO2BUviAPQsWQ) - [ ] [腾达路由器疑似出行暗藏后门,可直接获取管理员权限,暂无官方修复补丁](https://mp.weixin.qq.com/s/mqRa7CDWv28vwao4FrbsAQ) - [ ] [加入熠序科技,定义AI智能体的“安全基因” | 内推通道开启](https://mp.weixin.qq.com/s/EP9krougTKG2dGgryuBjwA) - [ ] [Frida学习笔记(二十六):DEX 脱壳实战](https://mp.weixin.qq.com/s/8DRlBCUFGHL6Toxp5YufgA) - [ ] [appletv玩机指南:NAS + Infuse 进阶——私有云媒体中心搭建、刮削器与海报墙](https://mp.weixin.qq.com/s/hampDsh07nsMkybMCEjYWA) - [ ] [appletv玩机指南:国内内容方案——Apple TV 上看国内综艺、剧集、直播](https://mp.weixin.qq.com/s/zAI0HL-trT7Ba9nKhabHmA) - [ ] [一张图片让顶级黑客落网](https://mp.weixin.qq.com/s/r21jVxC2HJNis3DJelBeow) - [ ] [黑客利用AI工具HexStrike+Claude渗透酒店预订平台](https://mp.weixin.qq.com/s/-FFsoRHAA1hwDdKWDMEOIQ) - [ ] [得到$23000赏金的挖漏洞过程](https://mp.weixin.qq.com/s/bmxXGrXQYGO0Y6Z8Ff8GuQ) - [ ] [热门密码破解软件John the Ripper(带界面)](https://mp.weixin.qq.com/s/z0fKzFeeeAnL5UlV4uBumw) - [ ] [2026年,离职潮彻底消失了。。。](https://mp.weixin.qq.com/s/L4IdzFFVSSLHHFkq9nOIDQ) - [ ] [俄乌冲突中无人机攻防战术与电子战运用44条实战经验](https://mp.weixin.qq.com/s/Q2cNW9-UkzaGq_N5SRz3sg) - [ ] [从2026年美伊战争的角度看无人机战争技术的演变及其军事影响](https://mp.weixin.qq.com/s/Y6QWKcmaY1o0-jOuJkH_3Q) - [ ] [先下手为强:认知战为何可能是21世纪最强大的武器](https://mp.weixin.qq.com/s/LhLiGWNvIGB-BQLby7kl6g) - [ ] [【研究报告】台军“军用商规”无人机发展态势、能力短板与应对研究](https://mp.weixin.qq.com/s/WUvvH4tC-6fu00Vq4oVCvQ) - [ ] [认知战:争夺认知优势的战斗](https://mp.weixin.qq.com/s/yoJCl1fqK8DPBPwVw3Qxvw) - [ ] [密集现代战争FPV无人机的兵种演进与军队武装训练搭建(万字干货)](https://mp.weixin.qq.com/s/LplAsnvwhMXfh5273lTPww) - [ ] [构建人工智能一体化反无人机防空系统](https://mp.weixin.qq.com/s/IBEB-A2QtP7UbofRWO_SFw) - [ ] [【理论专著】中国地缘战略理论著作研究:知识谱系、战略空间与作战案例验证](https://mp.weixin.qq.com/s/pSkdzT_t4elrnynYj8eK9Q) - [ ] [漏洞通告|Huawei HarmonyOS IPC模块竞争条件漏洞(CVE-2026-41982)](https://mp.weixin.qq.com/s/usom_x30ugOFM9LbiUwBAg) - [ ] [网安薪资分布:北京篇](https://mp.weixin.qq.com/s/ZyVqg_6uK-mWbjgiLqpPRg) - [ ] [HVV面试!红蓝对抗10连问](https://mp.weixin.qq.com/s/k3cAWQ2tZgoGpMG6KmOwkQ) - [ ] [全国首部“智能终端AI交互”标准,现公开征集起草单位和专家!](https://mp.weixin.qq.com/s/iPHDI4tuewzsRADNvy3wMw) - [ ] [Harness 工程实战第4篇:Agent 平台的五类定义](https://mp.weixin.qq.com/s/dlqgTtBspKTOSBIjUc8awQ) - [ ] [无影(TscanPlus)网络安全和渗透运维神器VIP-Key直接免费送](https://mp.weixin.qq.com/s/nvgDklvSZAJWyh3bTdg_Ag) - [ ] [标准解读|GA/T 2395-2026《网络安全等级保护数据安全测评过程指南》全文解读](https://mp.weixin.qq.com/s/MG2ZP5fBCelb5abLjyQYPw) - [ ] [从 CVSS 到真实攻击路径:为什么高危不一定最先被打?](https://mp.weixin.qq.com/s/GBqg4hNfU7lUULJXZO0b4Q) - [ ] [百度安全:2025年危险游戏, 智能驾驶一线攻防实战](https://mp.weixin.qq.com/s/EQn06GIcUZ_ckfwv6HJmAg) - [ ] [智能汽车网络安全与信息安全基础培训课程 2026](https://mp.weixin.qq.com/s/xIkwfqczpLVGTr4Lfmc0Rg) - [ ] [中汽信息安全研究中心:汽车网络安全实践性探索与研究](https://mp.weixin.qq.com/s/Cc_CXGL61rGRS4PxR7_Czg) - [ ] [兄弟们,这个CSRF令牌绕过手法,我靠它拿了不少赏金](https://mp.weixin.qq.com/s/d3BshNOv91ti17G80jWb2g) - [ ] [为什么有了防火墙,还要发明网闸?](https://mp.weixin.qq.com/s/Mxdyoy0---B7Nt6g6FXNlQ) - [ ] [IGP灵活算法反向亲和力约束](https://mp.weixin.qq.com/s/5L40RYktozTqXEoD-8Xtsg) - [ ] [林勃成,初心如磐担使命,忠诚履职展风采](https://mp.weixin.qq.com/s/p5iptF9SUCXw6-lBWGbQAg) - [ ] [【热点安全风险】7月8日 |BeyondTrust RS/PRA修复多项漏洞、Gitea Docker镜像CVE-2026-20896出现探测](https://mp.weixin.qq.com/s/hlDVe8sqZANVkhyBrV-g5g) - [ ] [关于举办“综合PNT技术理论与应用” 高级培训班的通知](https://mp.weixin.qq.com/s/2WFvUCAOiD2tO-4ZGZ37vQ) - [ ] [网安早报【20260708】162期](https://mp.weixin.qq.com/s/lFonndr_xe3KgQeWV9Xc0Q) - [ ] [暗网快讯【20260708】162期](https://mp.weixin.qq.com/s/_TjqrgQ1RKykw2_i6KjLNQ) - [ ] [CISA被曝部署Mythos扫描联邦代码库,已发现大量漏洞](https://mp.weixin.qq.com/s/8MJTJS-aCetEZEfJIZ5KIA) - [ ] [高危预警:Linux内核“Bad Epoll”漏洞(CVE-2026-46242)允许本地用户一键提权至Root(影响Linux 6.4+与Android的本地提权漏洞)](https://mp.weixin.qq.com/s/R4fpQzyEgO7e_IU7RdtUcQ) - [ ] [中国背景嫌疑的拼图与缺角:质疑Proofpoint对UNK_MassTraction事件的溯源证据链](https://mp.weixin.qq.com/s/QXrXhNyc8Mo4RiRj9aDNuQ) - [ ] [Coding Plan 如何刷 CD](https://mp.weixin.qq.com/s/AZIHU3xPW9wwvZU1j3sV5A) - [ ] [“一单一库”对第三方软件测试有什么影响?](https://mp.weixin.qq.com/s/OCoDpwpZNe1vfB1-n-BHqQ) - [ ] [武胜公安成功斩断境外诈赌资金通道](https://mp.weixin.qq.com/s/GjNqiGQG1cRkohDCeBbz1w) - [ ] [青岛警方打掉 “黑吃黑” 电诈团伙,“薅羊毛” 行为法理不容](https://mp.weixin.qq.com/s/2iRzZ2VLgMe5u_kqT12Fgg) - [ ] [远程操控骗局现,图们民警火速挽损近 3 万](https://mp.weixin.qq.com/s/Ji8S5EAQN9f4lJTspfopPA) - [ ] [新型“Bad Epoll”零日漏洞允许攻击者获取Linux服务器和安卓设备的root权限](https://mp.weixin.qq.com/s/4w4jlmqlF-4f4JIdOR1yMQ) - [ ] [国家安全部供应链投毒警示](https://mp.weixin.qq.com/s/16GU5GorSskFU06RTgtsaQ) - [ ] [慢雾出品 | 2026 上半年区块链安全与反洗钱报告](https://mp.weixin.qq.com/s/dQmO0h0sWOiFQE1DXmn-Bw) - [ ] [AI 与后量子夹击,硬件安全如何接招?PANDA 2026议程来了](https://mp.weixin.qq.com/s/1S8t5Pjw99APIwXvrm6oMg) - [ ] [暗网泄露:商业住宅代理网络 / FullDump / 47k / 2026](https://mp.weixin.qq.com/s/7sf82lNScxzCabkxi1TJdQ) - [ ] [17条新增 + 14处修订, GB/T 33560到底改了什么?](https://mp.weixin.qq.com/s/ace2T4UWBt6I2nS6BSelLA) - [ ] [工具推荐 | AutoCVE - 一键挖掘 CVE,筛项目、审源码、验漏洞、出报告,全流程自动化](https://mp.weixin.qq.com/s/hB1ujYgFqht99IutS_u3jQ) - [ ] [安全通信网络、区域边界、计算环境三者辨析](https://mp.weixin.qq.com/s/4QkQV8ghAP9tZQVBhQquIg) - [ ] [Telnet与SSH全面对比及等级保护最佳实践](https://mp.weixin.qq.com/s/bpzqyZv1zIaYh46lxoE_Mg) - SecWiki News - [ ] [SecWiki News 2026-07-08 Review](http://www.sec-wiki.com/?2026-07-08) - Smartphone Security - [ ] [Parser-Schwachstellen in Mobilfunk-Protokollen](https://smartphone-attack-vector.de/parser-schwachstellen-mobilfunk-protokolle/) - Recent Commits to cve:main - [ ] [Update Wed Jul 8 12:04:20 UTC 2026](https://github.com/trickest/cve/commit/580603b3fabe64f6e21575702a2a1df07ff1a3c7) - Horizon3.ai - [ ] [Operationalizing CTEM: A Practical Playbook for Continuous Threat Exposure Management](https://horizon3.ai/downloads/whitepapers/operationalizing-ctem-practical-playbook/) - [ ] [CVE-2026-9181 | Esri ArcGIS Server Pre-Authentication Path Traversal Vulnerability](https://horizon3.ai/attack-research/vulnerabilities/cve-2026-9181/) - Malwarebytes - [ ] [Your next car could be watching your face](https://www.malwarebytes.com/blog/news/2026/07/your-next-car-could-be-watching-your-face) - The Trail of Bits Blog - [ ] [Mutation testing comes to DAML](https://blog.trailofbits.com/2026/07/08/mutation-testing-comes-to-daml/) - SentinelOne - [ ] [HPC AI Workloads Need Runtime Security. The Architecture Already Exists.](https://www.sentinelone.com/blog/hpc-ai-workloads-need-runtime-security-the-architecture-already-exists/) - HackerNews - [ ] [西班牙逮捕一名疑似亲俄黑客组织成员](http://0.0.0.0:8080/post/64441) - [ ] [新的 Januscape Linux 漏洞允许在 Intel 和 AMD 设备上实现虚拟机逃逸](http://0.0.0.0:8080/post/64440) - [ ] [Accenture 确认遭入侵,黑客兜售窃取的数据](http://0.0.0.0:8080/post/64439) - [ ] [美国地方政府向网络勒索组织支付 100 万美元](http://0.0.0.0:8080/post/64438) - [ ] [CISA 正在使用 Anthropic 的 Mythos 扫描政府软件中的漏洞](http://0.0.0.0:8080/post/64437) - [ ] [研究人员警告:严重 Gitea 漏洞正被积极利用](http://0.0.0.0:8080/post/64436) - Black Hills Information Security, Inc. - [ ] [Finding the “Goldilocks” Zone: A Practical Approach to Alert Triage](https://www.blackhillsinfosec.com/the-goldilocks-zone/) - 奇客Solidot–传递最新科技情报 - [ ] [美国成年人肥胖率突破四成](https://www.solidot.org/story?sid=84787) - [ ] [德国华人性侵案成员被判 5 年监禁](https://www.solidot.org/story?sid=84786) - [ ] [Waymo 员工看到青少年乘客玩玩具枪后报警](https://www.solidot.org/story?sid=84785) - [ ] [大多数 AI slop 应用会很快停止维护和抛弃](https://www.solidot.org/story?sid=84784) - [ ] [长鑫和长江存储正在扩大产能](https://www.solidot.org/story?sid=84783) - [ ] [Microsoft 365 Copilot 普及率不到 4.5%](https://www.solidot.org/story?sid=84782) - [ ] [LG 显示器静默安装 Windows 广告程序](https://www.solidot.org/story?sid=84781) - [ ] [研究员用海贼王主角名字命名新属甲虫](https://www.solidot.org/story?sid=84780) - [ ] [Windows 11 26H2 将对企业默认启用云备份,欧盟地区除外](https://www.solidot.org/story?sid=84779) - 绿盟科技技术博客 - [ ] [新品发布 | 绿盟安全智算一体机,构建”算力、调度、安全”深度融合的AI基础设施](https://blog.nsfocus.net/%e6%96%b0%e5%93%81%e5%8f%91%e5%b8%83-%e7%bb%bf%e7%9b%9f%e5%ae%89%e5%85%a8%e6%99%ba%e7%ae%97%e4%b8%80%e4%bd%93%e6%9c%ba%ef%bc%8c%e6%9e%84%e5%bb%ba%e7%ae%97%e5%8a%9b%e3%80%81%e8%b0%83%e5%ba%a6/) - Security Uncorked - [ ] [eBook: Wi-Fi Security Sample Architectures](https://securityuncorked.com/2026/07/ebook-wi-fi-security-sample-architectures/) - 黑鸟 - [ ] [拆解FBI完整溯源黑客组织核心成员的技术链与时间线](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451187594&idx=1&sn=008c3cb03b7aabc2d8b4054c96811b5d) - 威努特安全网络 - [ ] [【下载】2026年上半年数字化及网络安全、AI安全领域政策法规合集](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651142906&idx=1&sn=deaf7427e9693414a2b444ade34499f9) - [ ] [WinClaw新版本即将发布 10000个超级VIP限时开抢!](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651142906&idx=2&sn=4c6832798f002460841efbb2d6449499) - 安全内参 - [ ] [中学生利用ChatGPT恶意攻击会员系统,致知名动漫网站关停超6周](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247516236&idx=1&sn=d311be2c282f45241900bc5b61d9ff2b) - [ ] [美国陆军网站遭篡改,出现“辱骂特朗普”等涉政内容](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247516236&idx=2&sn=efc5627681f9896da6771cf43b293675) - DEVCORE 戴夫寇爾 - [ ] [DEVCORE 2026 第十屆實習生計畫](https://devco.re/blog/2026/07/08/10th-internship-program-recruit/) - 二道情报贩子 - [ ] [LG、外星人显示器后台装软件强推迈克菲广告](https://mp.weixin.qq.com/s?__biz=MzU5NTA3MTk5Ng==&mid=2247490070&idx=1&sn=cc6f6dee9eaca476b65c0ba137adf133) - 代码卫士 - [ ] [Linux 内核0day已修复:隐藏19+年、利用稳定性极高、影响极广](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526554&idx=1&sn=62d794dc43dc49ccb43d31be669f3712) - [ ] [GitLost:诱骗 GitHub AI 代理泄露私有仓库](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247526554&idx=2&sn=a27aaa71c65d41624951f15559b6ae94) - 奇安信威胁情报中心 - [ ] [BeyondTrust 远程接入平台四枚高危漏洞全拆解:从认证绕过到"零信任"信任崩塌的完整攻击链](https://mp.weixin.qq.com/s?__biz=MzI2MDc2MDA4OA==&mid=2247519414&idx=1&sn=06331b7197bacc2ff353c3934da04352) - 天黑说嘿话 - [ ] [88vip网购返利助手使用攻略丨支持淘宝、京东、拼多多、唯品会、抖音、快手全平台通用【88vip高返助手领券入口】~](https://mp.weixin.qq.com/s?__biz=MzI5NTQ5MTAzMA==&mid=2247486211&idx=1&sn=e5ddc852346112ebf65a342b47913209) - 安全研究GoSSIP - [ ] [G.O.S.S.I.P 阅读推荐 2026-07-08 当 LLM 把诈骗网站写进代码里](https://mp.weixin.qq.com/s?__biz=Mzg5ODUxMzg0Ng==&mid=2247501854&idx=1&sn=8053ab8b23dc73ea37bca690299df853) - 安全学术圈 - [ ] [2026年度河南省科学技术奖受理项目公示(网络空间安全领域)](https://mp.weixin.qq.com/s?__biz=MzU5MTM5MTQ2MA==&mid=2247495547&idx=1&sn=f3b928ea4fd319a00a0bcbf67e886ddb) - 微步在线 - [ ] [民航成都电子马勇:民航行业人工智能技术的安全应用与挑战](https://mp.weixin.qq.com/s?__biz=MzI5NjA0NjI5MQ==&mid=2650187029&idx=1&sn=dee5d4e7aa253ceb5de5d04ebdb2fb96) - 安全圈 - [ ] [【安全圈】百万余条数据遭泄露!上海“黑客”非法牟利超50万元](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652077749&idx=1&sn=f255abdc4d954e95c6cf1b7ba20c27d3) - [ ] [【安全圈】Accenture 确认遭入侵,黑客兜售窃取的数据](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652077749&idx=2&sn=bcb24062154adf4bd7e753e87ef6b436) - [ ] [【安全圈】新的 Januscape Linux 漏洞允许在 Intel 和 AMD 设备上实现虚拟机逃逸](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652077749&idx=3&sn=b6213ef302076e810b733f47e915bdb1) - 丁爸 情报分析师的工具箱 - [ ] [【情报】为啥湾湾要炒作美军特种部队进驻蛙岛,美军如何训练蛙军?](https://mp.weixin.qq.com/s?__biz=MzI2MTE0NTE3Mw==&mid=2651156483&idx=1&sn=97f3e54e065674191b1dbf766897867c) - [ ] [【竞赛通知】第四届全国大学生开源情报数据采集与分析挑战专项](https://mp.weixin.qq.com/s?__biz=MzI2MTE0NTE3Mw==&mid=2651156483&idx=2&sn=d2e1293d223a47cb67b98401bc94b54e) - 信息安全国家工程研究中心 - [ ] [《网络安全技术 电子邮件系统安全技术规范》等7项网络安全国家标准获批发布](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247504413&idx=1&sn=d829bb4c4f6b8e230f8ed3b59d42e0c5) - 中国信息安全 - [ ] [CNNVD | 重要安全漏洞通报(2026年第四期)](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264398&idx=1&sn=9eb8018925fde12a00e3d79c9410dc4a) - 极客公园 - [ ] [从体脂秤到薄荷健康,蚂蚁阿福的稳扎稳打](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653110031&idx=1&sn=0c8710693b487b64caa5075ef7070a56) - [ ] [蔚来,均价 44.3 万元](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653110024&idx=1&sn=c7cb132d8d57e69e260160aa781c4f06) - [ ] [曝 DeepSeek 自研 AI 芯片;小米首款增程 SUV 或改名为澎程;中国人形机器人今年有望破 10 万台 | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653110014&idx=1&sn=a59366471a3ec62e29082f7cb72c3abf) - 京东安全应急响应中心 - [ ] [京东SRC“FLAG夺旗”验证模块上线](https://mp.weixin.qq.com/s?__biz=MjM5OTk2MTMxOQ==&mid=2727850981&idx=1&sn=25797175d5b06f9cfd1216a5aa16356a) - 情报分析师 - [ ] [枪手在屋顶,无人机在头顶,特勤局在哪里?一份64页报告拆解了美国最精锐护卫部队的失能逻辑](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650568538&idx=1&sn=d980232eda32549872dac4eaba0ffdbf) - [ ] [印度商人如何用一句"我在CIA工作"打开印尼国防大门](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650568538&idx=2&sn=cf2c45bf5c8489688758889f5f025cff) - 安全牛 - [ ] [打补丁永远追不上AI:网络安全界正在用"石器时代"的方法打现代战争](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141887&idx=1&sn=1d22ae3c878b440d1486c0a214d774b3) - [ ] [CNVD 本周漏洞态势研判:零日漏洞占比超八成,政企漏洞事件环比大幅上涨;Microsoft加速采用自研MAI模型,降低对OpenAI依赖| 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651141887&idx=2&sn=6c24394700ccab0157676de8a3636185) - 云鼎实验室 - [ ] [从传统蠕虫到 AI Agent 驱动攻击链:自动化攻击的下一次演进](https://mp.weixin.qq.com/s?__biz=MzU3ODAyMjg4OQ==&mid=2247497802&idx=1&sn=8aac08f6fc6e24e8380cc7169f0e6a71) - 字节跳动技术团队 - [ ] [3 倍于 VectorDBBench 榜首,火山 Milvus 如何把向量检索拉到新高度](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247520682&idx=2&sn=4cbdb81828435ba827ee4c34532f5de3) - 数世咨询 - [ ] [安全从业者开始放弃自动化渗透测试?](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247543466&idx=1&sn=602633a89efb2f8270ac09496e228888) - [ ] [速看 | 全国安全合规测评机构一站式查询平台正式上线](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247543466&idx=2&sn=f2560b167e0876bb47dadd966d074d3c) - 安全行者老霍 - [ ] [黑客利用AI开发漏洞利用、攻击自动化](https://mp.weixin.qq.com/s?__biz=Mzg3NjU4MDI4NQ==&mid=2247486826&idx=1&sn=6ef65917299f0993768630dff5d5b3df) - 墨菲安全 - [ ] [欧盟 CRA 进入适用倒计时,出海智能制造企业需要重点关注和准备什么?](https://mp.weixin.qq.com/s?__biz=MzkwOTM0MjI5NQ==&mid=2247488558&idx=1&sn=334ecd4a6f3bf1f39520ceae935e2f66) - 国家互联网应急中心CNCERT - [ ] [网络安全信息与动态周报2026年第27期(6月29日-7月5日)](https://mp.weixin.qq.com/s?__biz=MzIwNDk0MDgxMw==&mid=2247501864&idx=1&sn=8b78243eff38872a5d496a7c539fd668) - 看雪学苑 - [ ] [libmsaoaidsec.so 检测监测——绕过 Hook 脚本](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617391&idx=1&sn=099fa5e378a9ae12ec380610788d2f83) - [ ] [工信部预警!Claude Code 暗藏安全后门,以下版本立即卸载或升级](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617391&idx=2&sn=7aa95e88a6b6a254b07514f18b78dc38) - [ ] [【本周课时更新】冰与火的战歌:Windows内核攻防实战](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617391&idx=3&sn=23bd9d2c0f2a355444067880350c05e0) - Qualys Security Blog - [ ] [When AI-Accelerated Discovery Outruns Patching, Exploitability Proof Decides What Gets Fixed First](https://blog.qualys.com/category/qualys-insights) - [ ] [FortiBleed: Credential Reuse, Legacy Hashes, and the Risk of Internet-Exposed FortiGate Devices](https://blog.qualys.com/category/vulnerabilities-threat-research) - [ ] [Operationalizing Day Minus Seven: The Cloud-Native ROC](https://blog.qualys.com/category/qualys-insights) - SANS Internet Storm Center, InfoCON: green - [ ] [My Stack Simulator, (Wed, Jul 8th)](https://isc.sans.edu/diary/rss/33138) - [ ] [ISC Stormcast For Wednesday, July 8th, 2026 https://isc.sans.edu/podcastdetail/9998, (Wed, Jul 8th)](https://isc.sans.edu/diary/rss/33136) - 360威胁情报中心 - [ ] [APT-C-36使用新加载器开展攻击活动](https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247508740&idx=1&sn=7462e1127fcbe10281f7af3e1ea494d6) - ICT Security Magazine - [ ] [L’anatomia di un attacco Ransomware moderno: perché il backup non è più l’unica contromisura](https://www.ictsecuritymagazine.com/notizie/backup-ransomware-attacco/) - 360数字安全 - [ ] [近四成Skill"带病上岗" 360发布报告敲响AI智能体安全警钟](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247586553&idx=1&sn=f6e5f0419dd00a2b051d9122cb7413e4) - [ ] [树立产教融合标杆!360 ADE人工智能工程师认证入选北京数字人才培育典型案例](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247586553&idx=2&sn=3e331d65162b5e0d0932b40b2f4a1345) - Troy Hunt's Blog - [ ] [Weekly Update 511: Live from my Riad in Marrakech](https://www.troyhunt.com/weekly-update-511/) - Schneier on Security - [ ] [Cybersecurity and the Gap Between Skill and Ability](https://www.schneier.com/blog/archives/2026/07/cybersecurity-and-the-gap-between-skill-and-ability.html) - Krebs on Security - [ ] [Felons, Fraudsters Flog Offensive Cybersecurity Startup](https://krebsonsecurity.com/2026/07/felons-fraudsters-flog-offensive-cybersecurity-startup/) - NetSPI - [ ] [Confidence Over Noise: Introducing Continuous AI Findings Validation](https://www.netspi.com/blog/executive-blog/netspi-updates/confidence-over-noise-introducing-continuous-ai-findings-validation/) - The Hacker News - [ ] [AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers](https://thehackernews.com/2026/07/ai-coding-agents-found-triggering.html) - [ ] [New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet Malware](https://thehackernews.com/2026/07/new-hallusquatting-attack-could-trick.html) - [ ] [Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS](https://thehackernews.com/2026/07/ubiquiti-patches-critical-unifi-flaws.html) - [ ] [New Ghost Phishing Wave Is Breaking Traditional Email Security](https://thehackernews.com/2026/07/new-ghost-phishing-wave-is-breaking.html) - [ ] [SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users](https://thehackernews.com/2026/07/scmbanker-malware-uses-clickfix-lures.html) - [ ] [GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures](https://thehackernews.com/2026/07/github-verified-commits-can-be.html) - [ ] [The Verification Step Is the New ATO Battleground in 2026](https://thehackernews.com/2026/07/the-verification-step-is-new-ato.html) - [ ] [GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code](https://thehackernews.com/2026/07/github-copilot-refuses-harmful-requests.html) - [ ] [China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware](https://thehackernews.com/2026/07/china-linked-uat-7810-expands-orb.html) - [ ] [15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros](https://thehackernews.com/2026/07/15-year-old-ghostlock-flaw-enables-root.html) - [ ] [CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV](https://thehackernews.com/2026/07/cisa-adds-4-actively-exploited-adobe.html) - GRAHAM CLULEY - [ ] [Smashing Security podcast #475: JadePuffer – the AI that ran a ransomware attack all by itself](https://grahamcluley.com/smashing-security-podcast-475/) - Security Affairs - [ ] [Ubiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege Escalation](https://securityaffairs.com/194978/security/ubiquiti-patches-critical-unifi-os-flaws-allowing-command-injection-and-privilege-escalation.html) - [ ] [A Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breach](https://securityaffairs.com/194962/data-breach/a-hacker-claims-35-gb-of-accenture-source-code-the-company-discloses-the-data-breach.html) - [ ] [Telegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware Tools](https://securityaffairs.com/194942/malware/telegram-hosted-redwing-malware-lets-anyone-rent-android-spyware-tools.html) - [ ] [U.S. CISA adds Adobe ColdFusion, Joomlack Page Builder, Langflow, and JoomShaper SP Page Builder flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/194927/hacking/u-s-cisa-adds-adobe-coldfusion-joomlack-page-builder-langflow-and-joomshaper-sp-page-builder-flaws-to-its-known-exploited-vulnerabilities-catalog.html) - [ ] [CISA Deploys Anthropic’s Mythos AI to Hunt Vulnerabilities in U.S. Government Code](https://securityaffairs.com/194913/ai/cisa-deploys-anthropics-mythos-ai-to-hunt-vulnerabilities-in-u-s-government-code.html) - www.theregister.com - Articles - [ ] [Suspected Chinese snoops caught breaking into universities' Roundcube mailservers](https://www.theregister.com/security/2026/07/08/suspected-chinese-snoops-caught-breaking-into-universities-roundcube-mailservers/5268778) - [ ] [GitHub Copilot: Sorry Dave, I can't do that harmful thing - unless you ask me in code](https://www.theregister.com/security/2026/07/08/github-copilot-sorry-dave-i-cant-do-that-harmful-thing-unless-you-ask-me-in-code/5268654) - [ ] [Bug in top AI coding agents shows that Unix-era security headaches never really die](https://www.theregister.com/security/2026/07/08/bug-in-top-ai-coding-agents-shows-that-unix-era-security-headaches-never-really-die/5268025) - [ ] [China tells devs to ditch Claude Code over 'backdoor code' fears](https://www.theregister.com/security/2026/07/08/china-ditch-older-claude-versions-with-backdoor-code/5268371) - Security Weekly Podcast Network (Audio) - [ ] [Why AI Just Broke Traditional IT Security as Leaders Clash Over AI's Value and Hiring - Matt Quinn - BSW #455](http://sites.libsyn.com/18678/why-ai-just-broke-traditional-it-security-as-leaders-clash-over-ais-value-and-hiring-matt-quinn-bsw-455) - TorrentFreak - [ ] [Pirate Site Blocking Is Legally Impossible in Bulgaria, Supreme Court Ruled](https://torrentfreak.com/pirate-site-blocking-is-legally-impossible-in-bulgaria-supreme-court-ruled/)
每日安全资讯(2026-07-09)