[每日信息流] 2026-01-25

# 每日安全资讯（2026-01-25）

- Private Feed for M09Ic
  - [ ] [safedv starred Scrut1ny/OpSec-Guide](https://github.com/Scrut1ny/OpSec-Guide)
  - [ ] [bolucat released 202601241938 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202601241938)
  - [ ] [xnl-h4ck3r released v8.1 at xnl-h4ck3r/waymore](https://github.com/xnl-h4ck3r/waymore/releases/tag/v8.1)
  - [ ] [Ridter starred ziglang/zig](https://github.com/ziglang/zig)
  - [ ] [ourren starred ucsb-mlsec/VulnLLM-R](https://github.com/ucsb-mlsec/VulnLLM-R)
  - [ ] [esrrhs starred Fission-AI/OpenSpec](https://github.com/Fission-AI/OpenSpec)
  - [ ] [PrefectHQ released 3.6.14.dev2 at PrefectHQ/prefect](https://github.com/PrefectHQ/prefect/releases/tag/3.6.14.dev2)
  - [ ] [niudaii starred bee-san/Ciphey](https://github.com/bee-san/Ciphey)
  - [ ] [INotGreen starred lza6/notion-2api](https://github.com/lza6/notion-2api)
  - [ ] [Ridter starred exa-labs/exa-mcp-server](https://github.com/exa-labs/exa-mcp-server)
  - [ ] [CHYbeta starred frankiejun/wxpush](https://github.com/frankiejun/wxpush)
  - [ ] [panjf2000 starred anomalyco/opencode](https://github.com/anomalyco/opencode)
  - [ ] [pydantic released v1.47.0 at pydantic/pydantic-ai](https://github.com/pydantic/pydantic-ai/releases/tag/v1.47.0)
- Doonsec's feed
  - [ ] [蓝凌EKP系统接口thirdImSyncForKKWebService接口存在任意文件读取漏洞](https://mp.weixin.qq.com/s/TIw8j1MYCHIE5Hsxm7h_MA)
  - [ ] [期望值越低，你的爆发力越强](https://mp.weixin.qq.com/s/beXqc9SZs4k1KLBY1KfJzw)
  - [ ] [SQL注入挖洞已死？月入过万的SRC猎手正在用这些“过时”技巧疯狂淘金](https://mp.weixin.qq.com/s/MsFF3zyR9DExdeQz66EqFQ)
  - [ ] [网传微软Autodiscover服务对example.com域名疑似存在处理不当](https://mp.weixin.qq.com/s/_bgMemcXClFyaLKk6iC70g)
  - [ ] [拆解 AI Skills 的五大逻辑漏洞与防御实践](https://mp.weixin.qq.com/s/A-wQSZ_AwoGeZlLF_h7fDg)
  - [ ] [【资料】人工智能与军事力量的重构](https://mp.weixin.qq.com/s/RzkTXFOebMdcFnHvOI1gow)
  - [ ] [足球：中国队对战日本队](https://mp.weixin.qq.com/s/gcgpqvHDLCdecLPG-cTO_w)
  - [ ] [攻防技战术动态一周更新 - 20260119](https://mp.weixin.qq.com/s/nhnIq5rVpvxAPIl2v0e0vg)
  - [ ] [黄仁勋上海逛菜市场买水果，科技巨头邂逅市井烟火](https://mp.weixin.qq.com/s/iJ0oO3enteUjThR2zjAaKg)
  - [ ] [喜报 | ChaMd5团队荣获JSRC2025年度“优秀合作伙伴”和成员Str1am_年度No.5](https://mp.weixin.qq.com/s/MgZlMx1WOB1ePpYCxNOd7Q)
  - [ ] [CVE-2026-24061：GNU InetUtils Telnetd 身份验证绕过漏洞](https://mp.weixin.qq.com/s/fCToUaR-iSciYZ6uu8D3VQ)
  - [ ] [Linux Telnetd 远程代码执行！靶场镜像](https://mp.weixin.qq.com/s/7SinEMKajtsgs7biytJ_1Q)
  - [ ] [每日课程更新](https://mp.weixin.qq.com/s/H--ZAScKBhFGtOvaROaPGQ)
  - [ ] [网络首发 | 北京航空航天大学关振宇教授团队：大语言模型驱动的网络协议逆向与安全测试方法](https://mp.weixin.qq.com/s/qvIFti3o7lKnvQLsOOmifA)
  - [ ] [娱乐圈第一黑客非Helen莫属](https://mp.weixin.qq.com/s/czg_cFu_Zg6Y44ZkITC34A)
  - [ ] [网络安全别侥幸，一次泄露“损失”的不止十万块！](https://mp.weixin.qq.com/s/YDD0hadZwHhaGiRs2miG0Q)
  - [ ] [针对APT研究人员的定向钓鱼攻击活动](https://mp.weixin.qq.com/s/Xb6jv464MLKodGi0ogAxlQ)
  - [ ] [98个运维名词及解释](https://mp.weixin.qq.com/s/f-Dp7MhvzzmP3pMNFzJZ1g)
  - [ ] [国家网信办发布《金融信息服务数据分类分级指南（征求意见稿）》](https://mp.weixin.qq.com/s/UYucS7Hzjz7a9ljHAdv1PA)
  - [ ] [今日互联网安全速报2026-01-24【黑客驰】](https://mp.weixin.qq.com/s/WxK9ZWs7NpMZcMfDPAcTPw)
  - [ ] [微软给FBI解锁疑犯笔记本](https://mp.weixin.qq.com/s/vIC5AgNvpsfYRPGrS-GfFg)
  - [ ] [【安全锐评】企业遭受勒索病毒攻击并非是其资源投入不够](https://mp.weixin.qq.com/s/_6qk59l9H9jpI37VhgJKwQ)
  - [ ] [分享图片](https://mp.weixin.qq.com/s/3qBOrao1Y_kb3p775XDOKQ)
  - [ ] [伪装成TDesk安装程序银狐黑产样本与威胁情报](https://mp.weixin.qq.com/s/UCp8RdDVNZJXq4nG_ps_hg)
  - [ ] [【钓鱼攻防】手把手带你学会GoPhish钓鱼框架](https://mp.weixin.qq.com/s/WeIIWyeV2fAsJ3GklI39vA)
  - [ ] [【钓鱼攻防】浅谈制作免杀excel文档钓鱼](https://mp.weixin.qq.com/s/_hnxh-3bRCXJlbRCp9HmHQ)
  - [ ] [【钓鱼攻防】浅谈制作免杀word文档钓鱼](https://mp.weixin.qq.com/s/vi6VTLj99-eO5jozLqTzvQ)
  - [ ] [【钓鱼攻防】浅谈攻防实战中的钓鱼小技巧](https://mp.weixin.qq.com/s/RHn4jCggAlQfokLTxfYgVA)
  - [ ] [【钓鱼攻防】浅谈CobaltStrike钓鱼手法集锦](https://mp.weixin.qq.com/s/8jUvy7NxB45wOSfRqP42sA)
  - [ ] [【钓鱼攻防】浅谈自动化免杀xlsm文件钓鱼](https://mp.weixin.qq.com/s/DHbS_vCycJymv7GIyy1qhQ)
  - [ ] [【钓鱼攻防】浅谈exe文件伪造ico图标上线CS远控](https://mp.weixin.qq.com/s/jwLfl4tpeuPPx3ZaAQLOBw)
  - [ ] [【钓鱼攻防】浅谈如何用office文件制作ppt钓鱼](https://mp.weixin.qq.com/s/HRSuqC3TYxdofoMvO7-oWQ)
  - [ ] [Web篇 | 密码重置漏洞挖掘指南：从原理到实战的完整路径](https://mp.weixin.qq.com/s/pHYh2DSyTyVVn-Mh8pE38w)
  - [ ] [多读点没用的书，少交点有用的朋友。🌚](https://mp.weixin.qq.com/s/0uiDAORvcC6UDGr5hAn57w)
  - [ ] [数据分析抓包破解工具Wireshark](https://mp.weixin.qq.com/s/3_bYucz_t7N6nv0JIRG_nw)
  - [ ] [2026智驾Tier1分析报告：行业现状、趋势、竞争格局](https://mp.weixin.qq.com/s/_0T8HAtxcRk9qrdhfsaq_Q)
  - [ ] [干货：如何利用自动化工具绕过谷歌验证码实现XSS攻击链](https://mp.weixin.qq.com/s/j7ynlnjH31IkKV8giCuhhA)
  - [ ] [副业必备！小赚3万元，帮老舅搭建 IoT 物联网设备运维平台，设备数采、点巡检管理、工单系统](https://mp.weixin.qq.com/s/GA2XdtwtcV0qzvUnEyPowg)
  - [ ] [用完千问的任务助理，我终于明白为什么 Agent 会取代 App 了](https://mp.weixin.qq.com/s/liYNd6ad1htuMzLRz51ekQ)
  - [ ] [主流信创操作系统 2026 年最新生态](https://mp.weixin.qq.com/s/3d6BtkaN93A923lYcyOgNg)
  - [ ] [屏幕监控工具](https://mp.weixin.qq.com/s/9zeK6j3wkew5XJczbqzsEA)
  - [ ] [电脑中挖矿病毒程序   手搓溯源分析直接定位到人！](https://mp.weixin.qq.com/s/6t_B1wB03UkTJds6KDlohw)
  - [ ] [赣州银行10天两则AI智能体建设交流公告，科技投入占比提升至4.23%](https://mp.weixin.qq.com/s/616pS6_fxJaSMRl6sMbvjA)
  - [ ] [数势云创95万、蚂蚁数科85万、数巅科技18万！徽商银行AI智能问数平台采购项目](https://mp.weixin.qq.com/s/mjqnmdxtbTHlvy5vUqSc7w)
  - [ ] [k8s安全](https://mp.weixin.qq.com/s/tiEFGtikcTaIUIGtCCXxIA)
  - [ ] [【Cyberstrikelab】 PT-2 ~ PT-8](https://mp.weixin.qq.com/s/BzhjrMACGLKB-PURByflrA)
  - [ ] [印度军方发布《军事量子任务政策框架》](https://mp.weixin.qq.com/s/BVto8jiq_3vbTadPgy9usQ)
  - [ ] [记某edusrc小程序挖掘案例](https://mp.weixin.qq.com/s/qVnZOQnN72Y_ME5t-aRe_A)
  - [ ] [耐克公司疑遭WorldLeaks勒索软件组织入侵，外泄TB级数据](https://mp.weixin.qq.com/s/IF1SGOVKoWqq66psJFi7lQ)
  - [ ] [安德玛7200万条用户记录遭泄露](https://mp.weixin.qq.com/s/sBgU4NCzB-u3jbFqspd7_g)
  - [ ] [苹果第二大代工厂立讯精密疑机密数据外泄；GPT-5.2可规模化开发0Day漏洞利用程序 | FreeBuf周报](https://mp.weixin.qq.com/s/RqvfzBLB1A47WTJlnu2Jbw)
  - [ ] [CAN通信：Busoff问题知多少](https://mp.weixin.qq.com/s/lEudrPj5WFWbkLE5cHD8rA)
  - [ ] [软件定义汽车时代，网络安全将如何防范？](https://mp.weixin.qq.com/s/jAvQRfzSyTa0VAY4e148vg)
  - [ ] [重磅发布 | 冰蝎免杀生成器 XXByPassBehinder v1.0](https://mp.weixin.qq.com/s/UwACMKLlu8rXLwCaEOlzrw)
  - [ ] [智能体安全评测规范](https://mp.weixin.qq.com/s/wRBI0rpHkAF3wtXfLuudHg)
  - [ ] [2026年网络安全发展趋势洞察](https://mp.weixin.qq.com/s/vWYvG3020r1cxxGtsMM7UA)
  - [ ] [Python 面向对象编程——多态（Polymorphism）](https://mp.weixin.qq.com/s/nyvtBMuQ2jhWqdBpNzz-Og)
  - [ ] [第二届网络安全行业职业技能大赛-部分题解](https://mp.weixin.qq.com/s/QMqx156NRAMSYtty_kjnrQ)
  - [ ] [策马扬鞭看山海！一起为2025年360精英白帽荣耀加冕](https://mp.weixin.qq.com/s/DKgsbWYjulD6dzbsxShZjA)
  - [ ] [2026年网络安全学习指南 核心方法与路径汇总](https://mp.weixin.qq.com/s/t6R2SZCuyK_vzb1zY7kyEg)
  - [ ] [我会收到中国网络空间协会感谢信](https://mp.weixin.qq.com/s/P7jJKKNewaTzjB4_kcfC6w)
  - [ ] [国家互联网信息办公室等八部门发布《可能影响未成年人身心健康的网络信息分类办法》](https://mp.weixin.qq.com/s/85n3CRVJO-U9UpD8thvUfQ)
  - [ ] [专家解读｜以精细化信息分类管理筑牢未成年人网络保护屏障](https://mp.weixin.qq.com/s/ZBET6o3euFrLKBb95G6x4Q)
  - [ ] [在看 | 周报：网络工程师李某以技术手段窃取赌博网站184万余名中国公民个人信息；最高检发布6起个人信息保护检察公益诉讼典型案例](https://mp.weixin.qq.com/s/xHaXGXcTteLVV3qj5wclYw)
  - [ ] [在看 | 厂商：本周热门网络安全产业动态](https://mp.weixin.qq.com/s/3fneiiyracqAOpWYh7rwbg)
  - [ ] [逆向分析微软签名的 Rootkit：Netfilter.sys 与 WFP 流量重定向](https://mp.weixin.qq.com/s/HSoOtspTl_tjQBAEk4keWg)
  - [ ] [暗网及明网数据泄露详细信息汇总2026](https://mp.weixin.qq.com/s/NHSZT61m_97KtoDz9LV3dg)
  - [ ] [欧洲能否继续成为乌克兰的“靠山”](https://mp.weixin.qq.com/s/SLnVdvFbXDfOO3aluye6OQ)
  - [ ] [华中科技大学开源俱乐部师生论文获CCF-A类安全顶会 NDSS 录用](https://mp.weixin.qq.com/s/qVuJRTrR_pwjzEZLbakGlg)
  - [ ] [中国科学院智能信息处理重点实验室关于文生图扩散模型后门检测的工作被T-PAMI接收](https://mp.weixin.qq.com/s/sW3zemb5PFHJuw8xHJM0oA)
  - [ ] [日历间谍：揭秘\"间接提示注入\"如何将Google Gemini变成监控工具](https://mp.weixin.qq.com/s/uH9wGZBfoKBDaTrccqfSfg)
  - [ ] [戴着滑雪面罩的“黑客游击队长”： Marcos 号召“黑客反击”，用代码对抗全球不公](https://mp.weixin.qq.com/s/BslAg6LqHQZ-kms20Rh0Tg)
  - [ ] [注意：Github上这个CVE-2025-8088工具实为木马下载器](https://mp.weixin.qq.com/s/nbPsxTqg3jG3G8fqqglLbg)
  - [ ] [CISA更新KEV目录，新增四个正在被积极利用的软件漏洞](https://mp.weixin.qq.com/s/4PMH2yw8JaxTnM0_-YC13w)
  - [ ] [猝死后，所有的荣誉都变成了垃圾](https://mp.weixin.qq.com/s/VDdAk62_aF2wax8WY5gYHg)
  - [ ] [惊讶！字节跳动2025年利润竟然这么多](https://mp.weixin.qq.com/s/OJcDIOBYXgltFB36wzIXZA)
  - [ ] [MindsDB 文件路径处理漏洞预警：未授权信息泄露与拒绝服务风险](https://mp.weixin.qq.com/s/m26ce6CYk87l-xBxr4MJ3w)
  - [ ] [Windows下不触发任何进程监控的创建进程](https://mp.weixin.qq.com/s/i7qJCI1az3qZB-o1d7WYTQ)
  - [ ] [小道消息不在接收投稿](https://mp.weixin.qq.com/s/ZqiT5xw8j3F5H1AFkO8ubg)
  - [ ] [军委副主席张又侠被立案调查](https://mp.weixin.qq.com/s/-d4wz4Rr-MESNKzS0Uqdpw)
  - [ ] [从工单到Shell:利用PHP过滤器和CNEXT攻击osTicket(CVE-2026-22200)](https://mp.weixin.qq.com/s/N3xr4HJsZOK80Bh9C3oCCA)
  - [ ] [fscan 1.8.4 魔改&可视化&免杀定制版](https://mp.weixin.qq.com/s/myy58ap9BqBWrCVpHxK-Uw)
  - [ ] [【攻防实战9】记一次某人民医院的点到为止](https://mp.weixin.qq.com/s/TsWhDNXaRG1pup8sMeNerw)
  - [ ] [Spring Cloud Bus作用与原理](https://mp.weixin.qq.com/s/xJMxtTnZkwUd1xNrecoLYw)
  - [ ] [每周运动](https://mp.weixin.qq.com/s/p-g9F4VISOhNosH4Kl3WBQ)
  - [ ] [11_等保系列之等保测评机构](https://mp.weixin.qq.com/s/-KXa61TsI9zJTw_gqJPdGg)
  - [ ] [关于一道根式化简的题和这次的amc8](https://mp.weixin.qq.com/s/63ZEXcS3jsIDqBwn2o_41g)
  - [ ] [Python打包exe反编译](https://mp.weixin.qq.com/s/dYq6ppSQOkwxu1SwLMycwg)
  - [ ] [Ghidra安装与配置](https://mp.weixin.qq.com/s/VtG_gVnwV6KElpHJIrf7cw)
  - [ ] [穿山甲壳易语言exe手动实战二进制逆向脱壳](https://mp.weixin.qq.com/s/67rohiB5JeEttblZRobf3w)
  - [ ] [【转载】【BurpSuite插件推荐】微信小程序一键提取API、敏感信息--jaysenwxapkg](https://mp.weixin.qq.com/s/n2qtK7Mn5erNUL24vOT8fQ)
  - [ ] [央广网 | 中国信通院谢家贵解读：政策“组合拳”助力工业互联网万亿产业提速升级 工业高质量数据集待突破](https://mp.weixin.qq.com/s/C_IJC-JiBwFRvUq3F0PgUA)
  - [ ] [国家互联网信息办公室关于《互联网应用程序个人信息收集使用规定（征求意见稿）》公开征求意见的通知](https://mp.weixin.qq.com/s/evALxNXO183rskegCp9fyQ)
  - [ ] [黑客入侵惯用的6种方式，很难找全赶紧收藏](https://mp.weixin.qq.com/s/A19Zt1WMNMwwdkZgEt4ECA)
  - [ ] [GB/T46903—2025 数据安全技术个人信息保护合规审计要求](https://mp.weixin.qq.com/s/U-L9_zjA4O468rGYSmYHfA)
  - [ ] [AI SOC产品思考：如何用有限算力撬动最大效率](https://mp.weixin.qq.com/s/wCa_Xf0bd-U3iZXxcaypOg)
  - [ ] [记一次某证书站小程序到网站管理的测试](https://mp.weixin.qq.com/s/ve0ByZIQKbbNiEBN7OEyzw)
  - [ ] [网安工作代发-上海-安服工程师](https://mp.weixin.qq.com/s/KU5Yhr6r8rGRPVFiBBwMxQ)
  - [ ] [Malware Development组队收款专用](https://mp.weixin.qq.com/s/ZOsM-LAyiqxcwujWCiZ7lw)
  - [ ] [N1CTF Junior 2026 1/2明日开赛](https://mp.weixin.qq.com/s/R4_rdcfIJ34AavB1BrgrPA)
  - [ ] [美英情报承包商法庭翻车，十年针对伊朗的数十个秘密项目全曝光](https://mp.weixin.qq.com/s/Ru1617ITNJ3kwx4TZjCy0Q)
  - [ ] [微软向FBI提供BitLocker恢复密钥：隐私保护的重大漏洞暴露](https://mp.weixin.qq.com/s/NiruKEIvIlsrGplNF9RzGw)
  - [ ] [十年网络勒索的视觉化演变](https://mp.weixin.qq.com/s/ed0RpWez-kHa0CNLq25Kfg)
  - [ ] [高危漏洞威胁情报合集 (2026-01-22~2026-01-23）](https://mp.weixin.qq.com/s/lsC9ppKpI8Jqcx3WoWHxMg)
  - [ ] [##周末亲子时间](https://mp.weixin.qq.com/s/zgUzyOk0lbHXTq-cv1SxYQ)
  - [ ] [创新高！ 2025年爱奇艺申请发明专利880件 过半是AI相关专利](https://mp.weixin.qq.com/s/dZUdkNwqwO1yCr4sPMHXPw)
  - [ ] [【诈骗案例】筹治病钱反陷困境：女子卖劳力士救命，16万货款竟成电信诈骗赃款](https://mp.weixin.qq.com/s/O7wBeGMxMoRuud9hutvlLQ)
  - [ ] [【诈骗案例】卖表收款 37 万，银行卡全冻结](https://mp.weixin.qq.com/s/r2iF0PRqvoxl9xFXQ69JLg)
  - [ ] [每周娱乐](https://mp.weixin.qq.com/s/HzW6FFKZe-IAxMPHZy5dXA)
  - [ ] [工业网络安全周报-2026年第4期](https://mp.weixin.qq.com/s/PFoCFa_i-Hdk7uH7ri8FfQ)
  - [ ] [紫微斗数——中天星系](https://mp.weixin.qq.com/s/yx7cGviDzazBsKbTVqqq8A)
  - [ ] [VSCode Marketplace 上的恶意 AI 扩展程序会窃取开发者数据](https://mp.weixin.qq.com/s/Vv2g4I_Y9bRP6i7egl-o1g)
- Recent Commits to cve:main
  - [ ] [Update Sat Jan 24 11:28:55 UTC 2026](https://github.com/trickest/cve/commit/f77586110500b31b310727ced53c73a7613eadc5)
- SecWiki News
  - [ ] [SecWiki News 2026-01-24 Review](http://www.sec-wiki.com/?2026-01-24)
- 奇客Solidot–传递最新科技情报
  - [ ] [欧盟去年风能和太阳能首次超过化石燃料](https://www.solidot.org/story?sid=83388)
  - [ ] [利用音爆追踪重返大气层的神舟十五轨道舱](https://www.solidot.org/story?sid=83387)
  - [ ] [美国退出后加州加入 WHO 疾病预警网络](https://www.solidot.org/story?sid=83386)
  - [ ] [微软向 FBI 提供 BitLocker 密钥解锁硬盘加密数据](https://www.solidot.org/story?sid=83385)
- 黑海洋Wiki | Web开发工具包 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台
  - [ ] [Meta、依视路被诉侵犯智能眼镜专利](https://blog.upx8.com/Meta-%E4%BE%9D%E8%A7%86%E8%B7%AF%E8%A2%AB%E8%AF%89%E4%BE%B5%E7%8A%AF%E6%99%BA%E8%83%BD%E7%9C%BC%E9%95%9C%E4%B8%93%E5%88%A9)
  - [ ] [OpenAI CEO萨姆·奥尔特曼计划访问印度](https://blog.upx8.com/OpenAI-CEO%E8%90%A8%E5%A7%86-%E5%A5%A5%E5%B0%94%E7%89%B9%E6%9B%BC%E8%AE%A1%E5%88%92%E8%AE%BF%E9%97%AE%E5%8D%B0%E5%BA%A6)
  - [ ] [iPhone Air大降2500元 苹果1个月内多次促销](https://blog.upx8.com/iPhone-Air%E5%A4%A7%E9%99%8D2500%E5%85%83-%E8%8B%B9%E6%9E%9C1%E4%B8%AA%E6%9C%88%E5%86%85%E5%A4%9A%E6%AC%A1%E4%BF%83%E9%94%80)
  - [ ] [Vaultwarden 自建教程（Docker Compose 方式）](https://blog.upx8.com/Vaultwarden-Docker-Compose)
  - [ ] [奇瑞计划使用英国捷豹路虎工厂的方案被列入斯塔默访华议程](https://blog.upx8.com/%E5%A5%87%E7%91%9E%E8%AE%A1%E5%88%92%E4%BD%BF%E7%94%A8%E8%8B%B1%E5%9B%BD%E6%8D%B7%E8%B1%B9%E8%B7%AF%E8%99%8E%E5%B7%A5%E5%8E%82%E7%9A%84%E6%96%B9%E6%A1%88%E8%A2%AB%E5%88%97%E5%85%A5%E6%96%AF%E5%A1%94%E9%BB%98%E8%AE%BF%E5%8D%8E%E8%AE%AE%E7%A8%8B)
  - [ ] [自建开源SSO（单点登录）身份验证服务：VoidAuth](https://blog.upx8.com/1346)
  - [ ] [新加坡拟投入10亿新元推动本土AI产业发展](https://blog.upx8.com/%E6%96%B0%E5%8A%A0%E5%9D%A1%E6%8B%9F%E6%8A%95%E5%85%A510%E4%BA%BF%E6%96%B0%E5%85%83%E6%8E%A8%E5%8A%A8%E6%9C%AC%E5%9C%9FAI%E4%BA%A7%E4%B8%9A%E5%8F%91%E5%B1%95)
  - [ ] [研究：马斯克的Grok生成300万张不雅照](https://blog.upx8.com/%E7%A0%94%E7%A9%B6-%E9%A9%AC%E6%96%AF%E5%85%8B%E7%9A%84Grok%E7%94%9F%E6%88%90300%E4%B8%87%E5%BC%A0%E4%B8%8D%E9%9B%85%E7%85%A7)
  - [ ] [日产宣布向中国奇瑞汽车出售南非工厂](https://blog.upx8.com/%E6%97%A5%E4%BA%A7%E5%AE%A3%E5%B8%83%E5%90%91%E4%B8%AD%E5%9B%BD%E5%A5%87%E7%91%9E%E6%B1%BD%E8%BD%A6%E5%87%BA%E5%94%AE%E5%8D%97%E9%9D%9E%E5%B7%A5%E5%8E%82)
- 黑鸟
  - [ ] [网传微软Autodiscover服务对example.com域名疑似存在处理不当](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451184975&idx=1&sn=7002603dcbd1c67b31b4c8554f4b6c36)
- 安全分析与研究
  - [ ] [伪装成TDesk安装程序银狐黑产样本与威胁情报](https://mp.weixin.qq.com/s?__biz=MzA4ODEyODA3MQ==&mid=2247495450&idx=1&sn=0b3abaf4c8ca7f7de863be32d5338f57)
- 二道情报贩子
  - [ ] [微软给FBI解锁疑犯笔记本](https://mp.weixin.qq.com/s?__biz=MzU5NTA3MTk5Ng==&mid=2247490018&idx=1&sn=f34cce5cbdfa929ffadda64f2aa89f1b)
- 看雪学苑
  - [ ] [第二届网络安全行业职业技能大赛-部分题解](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458608567&idx=1&sn=9025f834ec1c9494e96b7e08bbc1ff2c)
  - [ ] [策马扬鞭看山海！一起为2025年360精英白帽荣耀加冕](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458608567&idx=2&sn=eafdfd9ea8bae27fb7d34657a056120a)
- ChaMd5安全团队
  - [ ] [喜报 | ChaMd5团队荣获JSRC2025年度“优秀合作伙伴”和成员Str1am_年度No.5](https://mp.weixin.qq.com/s?__biz=MzIzMTc1MjExOQ==&mid=2247514049&idx=1&sn=84f9b24b3ff483a1d4b19d653ebdd690)
- 渗透测试网络安全
  - [ ] [拆解 AI Skills 的五大逻辑漏洞与防御实践](https://mp.weixin.qq.com/s?__biz=MzkwMTE4NDM5NA==&mid=2247486811&idx=1&sn=ac135f423dad429e7efba75f6b53d11e)
- 极客公园
  - [ ] [iPhone Air 暴降 2500 开卖；特斯拉停用 AP，全力推 FSD；网友用 2 吨 SIM 卡练出 191 克黄金 | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653097716&idx=1&sn=eec67edcf0dc67575778f4a76b73c69a)
- 情报分析师
  - [ ] [AI如何重塑情报工作](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650566493&idx=1&sn=b40eeade5f5c40a671aac6e249185547)
- Over Security - Cybersecurity news aggregator
  - [ ] [Sandworm hackers linked to failed wiper attack on Poland’s energy systems](https://www.bleepingcomputer.com/news/security/sandworm-hackers-linked-to-failed-wiper-attack-on-polands-energy-systems/)
  - [ ] [Konni hackers target blockchain engineers with AI-built malware](https://www.bleepingcomputer.com/news/security/konni-hackers-target-blockchain-engineers-with-ai-built-malware/)
  - [ ] [China investigates top general Zhang Youxia in rare purge of senior military leaders](https://therecord.media/china-investigates-top-general-purge-senior-military-leaders)
  - [ ] [Nuovo sito, stesso MuHack](https://muhack.org/news/nuovo-sito-stesso-muhack/)
- 希潭实验室
  - [ ] [第153篇：Struts2-069 XXE 实体注入漏洞分析+复现](https://mp.weixin.qq.com/s?__biz=MzkzMjI1NjI3Ng==&mid=2247488179&idx=1&sn=cb9342ab385cd66617a65c93388841e2)
- 纽创信安
  - [ ] [纽创信安蓉城行 | 以山河为证，凝团队之力](https://mp.weixin.qq.com/s?__biz=MzAwNTczMjAzMg==&mid=2650240872&idx=1&sn=8b91dcaa31f0f39a06a7e2ba855cc2a7)
- 大兵说安全
  - [ ] [国家互联网信息办公室关于《互联网应用程序个人信息收集使用规定（征求意见稿）》公开征求意见的通知](https://mp.weixin.qq.com/s?__biz=MzI2MzM0NjcxNw==&mid=2247485693&idx=1&sn=08d39c1470d937245d0fd2e44b469124)
- Max Kersten
  - [ ] [Yaraify Java API client version 1.1-stable release notes](https://maxkersten.nl/2026/01/24/yaraify-java-api-client-version-1-1-stable-release-notes/)
  - [ ] [Hatching Triage Java API client version 1.7 release notes](https://maxkersten.nl/2026/01/24/hatching-triage-java-api-client-version-1-7-release-notes/)
  - [ ] [Malware Bazaar Java API client version 1.1-stable release notes](https://maxkersten.nl/2026/01/24/malware-bazaar-java-api-client-version-1-1-stable-release-notes/)
  - [ ] [MalShare Java API client 1.3-stable release](https://maxkersten.nl/2026/01/24/malshare-java-api-client-1-3-stable-release/)
  - [ ] [ThreatFox Java API client version 1.0 release notes](https://maxkersten.nl/2026/01/24/threatfox-java-api-client-version-1-0-release-notes/)
- ICT Security Magazine
  - [ ] [Truffa del voto ai bambini: perché docenti e personale ATA sono il bersaglio perfetto](https://www.ictsecuritymagazine.com/notizie/truffa-del-voto-ai-bambini/)
  - [ ] [Sanzione GDPR TikTok €530 milioni: perché il ban sui trasferimenti verso la Cina segna una svolta epocale](https://www.ictsecuritymagazine.com/notizie/sanzione-gdpr-tiktok/)
- The Register - Security
  - [ ] [UK border tech budget swells by £100M as Home Office targets small boat crossings](https://go.theregister.com/feed/www.theregister.com/2026/01/24/home_office_small_boats/)
  - [ ] [CISA won't attend infosec industry's biggest conference this year](https://go.theregister.com/feed/www.theregister.com/2026/01/24/cisa_skipping_rsa_exclusive/)
- Deeplinks
  - [ ] [Search Engines, AI, And The Long Fight Over Fair Use](https://www.eff.org/deeplinks/2026/01/search-engines-ai-and-long-fight-over-fair-use)
- The Hacker News
  - [ ] [Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware](https://thehackernews.com/2026/01/multi-stage-phishing-campaign-targets.html)
  - [ ] [New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector](https://thehackernews.com/2026/01/new-dynowiper-malware-used-in-attempted.html)
  - [ ] [Who Approved This Agent? Rethinking Access, Accountability, and Risk in the Age of AI Agents](https://thehackernews.com/2026/01/who-approved-this-agent-rethinking.html)
  - [ ] [CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog](https://thehackernews.com/2026/01/cisa-adds-actively-exploited-vmware.html)
- Security Affairs
  - [ ] [Osiris ransomware emerges, leveraging BYOVD technique to kill security tools](https://securityaffairs.com/187279/security/osiris-ransomware-emerges-leveraging-byovd-technique-to-kill-security-tools.html)
  - [ ] [U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/187267/security/u-s-cisa-adds-a-flaw-in-broadcom-vmware-vcenter-server-to-its-known-exploited-vulnerabilities-catalog.html)
  - [ ] [11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)](https://securityaffairs.com/187255/security/11-year-old-critical-telnetd-flaw-found-in-gnu-inetutils-cve-2026-24061.html)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[每日信息流] 2026-01-25 #1128

每日安全资讯（2026-01-25）

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[每日信息流] 2026-01-25 #1128

Description

每日安全资讯（2026-01-25）

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions