w********2
发帖数: 632 | 1 IPMI: The most dangerous protocol you've never heard of
IPMI could be punching holes in your corporate defenses.
Paul F. Roberts By Paul F. Roberts
ITworld | AUGUST 19, 2013
MORE GOOD READS
Many servers expose insecure out-of-band management interfaces to the
Internet
Those 'invisible' servers could open your network to hackers
Despite patches, Supermicro's IPMI firmware is far from secure, researchers
say
screen shot 2018 09 21 at 10.43.22 am
DEALPOSTS
Apple's dropping Back To My M... 阅读全帖 |
|
发帖数: 1 | 2 【 以下文字转载自 SanFrancisco 讨论区 】
发信人: onetiemyshoe (onetiemyshoe), 信区: SanFrancisco
标 题: 分析几个可能喜欢烙印的老美大头 (转载)
发信站: BBS 未名空间站 (Sun Apr 27 09:48:28 2014, 美东)
【 以下文字转载自 ITRelief 俱乐部 】
发信人: onetiemyshoe (onetiemyshoe), 信区: ITRelief
标 题: 分析几个可能喜欢烙印的老美大头
发信站: BBS 未名空间站 (Sun Apr 27 09:41:55 2014, 美东)
我们来分析一下这些好像很喜欢烙印的
老美同学。 Elop, Meg Whitman, Beth Jacob
-------------- Elop, Former candidate for Microsoft CEO
Now head of Microsoft Mobile (???) ----------------
From Elop's wiki:
Elop was a director of co... 阅读全帖 |
|
发帖数: 1 | 3 据FBI和国防部专家说,中国在出口美国的地铁车厢上安装摄像头或者利用安全监视摄
像机监视美国人。
窝憋威武, 美国警察连表还没填好,地铁抢劫杀人案窝憋已经破了。
The warnings sound like the plot of a Hollywood spy thriller: The Chinese
hide malware in a Metro rail car’s security camera system that allows
surveillance of Pentagon or White House officials as they ride the Blue Line
— sending images back to Beijing.
Or sensors on the train secretly record the officials’ conversations. Or a
flaw in the software that controls the train — inserted during the
manufacturing process ... 阅读全帖 |
|
l***o
发帖数: 7937 | 4 你到底是什么人啊,为啥净挑这种垃圾看?你一天到晚看porn网站,计算机上都是
malware和spyware吧。 |
|
s******r
发帖数: 5309 | 5 狗屁党中期惨败和这个有关系?
U.S. Cyber Command operation disrupted Internet access of Russian troll
factory on day of 2018 midterms
The building that housed the Internet Research Agency in St. Petersburg,
shown in 2018. (Dmitri Lovetsky/AP)
By Ellen Nakashima February 26 at 11:44 AM
The U.S. military blocked Internet access to an infamous Russian entity
seeking to sow discord among Americans during the 2018 midterms, several U.S
. officials said, a warning that the group’s operations against the United
State... 阅读全帖 |
|
d*****u
发帖数: 17243 | 6 n June 2017, Pavel Durov claimed publicly that U.S. intelligence agencies
tried to bribe the company's developers to weaken Telegram's encryption or
install a backdoor during their visit to the U.S. in 2016.[124][125]
In 2018 Telegram sent a message to all Iranian users stating Telegram Talai
and Hotgram unofficial clones are not secure.[126]
Telegram promised since at least March 2014 that "all code will be released
eventually", including all the various client applications (Android, iOS,
deskt... 阅读全帖 |
|
v*********u
发帖数: 10464 | 7 这个必须紧急转到香港游行队伍,哈哈哈哈
[在 daigaku (๑۩۞۩๑) 的大作中提到:]
:n June 2017, Pavel Durov claimed publicly that U.S. intelligence agencies
:tried to bribe the company's developers to weaken Telegram's
encryption or
:install a backdoor during their visit to the U.S. in 2016.[124][125]
:In 2018 Telegram sent a message to all Iranian users stating Telegram Talai
and Hotgram unofficial clones are not secure.[126]
:Telegram promised since at least March 2014 that "all code will be
... 阅读全帖 |
|
k******2
发帖数: 1396 | 8 我党正好也把M$和谷狗这两个印度流氓公司禁了。
华为哦的matebook, 完全没必要装windows这bloatware + malware. 直接跑linux +
xfce + wps office suite, 跑起来smooth as silk.
手机这边,需要联合三星,NOkia搞Open Mobile Platform, 不让谷狗强制捆绑各种
spyware. 这点东亚先进国和欧洲先进国的利益是一致的。 |
|
|
|
|
s******n
发帖数: 3946 | 12 HDP不敢装啊,报malware
: 装一个HDP直播,用手机看。
|
|
s*****k
发帖数: 604 | 13 中国不是连绿坝都做不好吗
这会牛到会玩高科技攻击google了?
我就是搞编码的。
这个攻击是不是中国/中国政府搞的我不好说
但是这位作者说表长16的crc算法只有中国人
知道我只能说他太无知了
embedded system 用这个算法n多年前就有了
你网上随便搜搜就能找到,而且很老。 |
|
l****z
发帖数: 29846 | 14 Google公司(Google Inc.)说,中国黑客攻击了数百位知名人士的Gmail账户。这轮新的
网络攻击无疑会让人们对互联网安全的担忧进一步加剧。
谷歌在一篇罕见的博客文章里说,受害者包括美国政府高级官员及军方人员、亚洲地区
官员、中国活动人士和新闻从业者。在诱骗之下,他们向位于中国的“坏人”分享了自
己的密码。攻击者从而得以阅读并转发受害者的电子邮件。
谷歌曾在2010年认定中国对它的电脑网络发动了一轮攻击。谷歌说,它最近发现了上述
攻击行动,源头疑为中国济南,并且是针对某些个人发动的。
在华盛顿,联邦调查局(Federal Bureau of Investigation)和国土安全部(Department
of Homeland Security)说,他们正在与谷歌一起调查这些攻击。
济南是一座大城市,位于北京以南约250英里(400公里)。据美国国会一个研究中国的
委员会于2009年发布的一份报告,解放军其中一个技术侦察局就位于济南。这些侦察局
隶属于中国监管国家安全的部门。
谷歌安全团队中的工程负责人格罗斯(Eric Grosse)在周三的一篇博客文章里写道,最
新攻击行... 阅读全帖 |
|
m********a
发帖数: 1041 | 15 Timothy Thomas: Why China Is Reading Your Email
Fort Leavenworth, Kan.
For several years, Washington has treated China as the Lord Voldemort of
geopolitics—the foe who must not be named, lest all economic and diplomatic
hell break loose. That policy seemed to be ending in recent weeks, and
Timothy Thomas thinks it's about time.
The clearest sign of change came in a March 11 speech by Tom Donilon,
President Obama's national security adviser, who condemned "cyber intrusions
emanating from China on... 阅读全帖 |
|
K********y
发帖数: 5068 | 16 Target IT外包烙印。 7千万卡被盗窃,CIO被炒。 (转载)
烙印会扔老美CIO去献祭, 烙印自己只会take credit的。
===================
All told, up to five "malware.binary" alarms reportedly sounded, each graded
at the top of FireEye's criticality scale, and which were seen by Target's
information security teams first in Bangalore, and then Minneapolis.
http://www.informationweek.com/security/attacks-and-breaches/ta
===================
2011年target CIO 鼓吹外包。 讽刺啊!
Beth M Jacob, executive vice-president and CIO at Target Corporation —
the sec... 阅读全帖 |
|
l****z
发帖数: 29846 | 17 Hacker Breached HealthCare.gov Insurance Site
The Hacker Uploaded Malicious Software, But Consumers' Personal Data Didn't
Appear to Be Taken
A hacker broke into part of the HealthCare.gov insurance enrollment website
in July and uploaded malicious software, according to federal officials.
Investigators found no evidence that consumers' personal data were taken or
viewed during the breach, federal officials said. The hacker appears only to
have gained access to a server used to test code for Heal... 阅读全帖 |
|
S**C
发帖数: 2964 | 18 What that FUD piece said is If you install malwares, you open yourself for
attack, therefore Firefox, oh no, every and all systems are vulnerable. |
|
|
c*******o
发帖数: 8869 | 20 我的证据就是我测试了,他自己也招认是在后台加了私货。
我一开始之所以不反对这样的插件,因为人人有言论自由,人人也有不看的自由,但是
这个自由应该是掌握在用户自己手里。
他暗箱操作在后台加了他自己不喜欢的ID,却不像向用户做disclosure,用户在不知情
的情况下被阻挡了很多信息,这在软件开发领域属于没有职业道德。
他今天可以加偷偷我的,明天跟你闹翻了也可以加你的,后天缺钱了就可以加malware
搞identity theft,你我在国外这么久了这个道理不难理解吧。 |
|
f**********n
发帖数: 29853 | 21 你测试的结果是,没有ID,也有空白。这有可能是糊涂兄程序的臭虫。
而你首先污蔑说是有后门,现在又造谣说糊涂已经招认。
malware |
|
c*******o
发帖数: 8869 | 22 有缺省屏蔽名单不是问题,你的问题是把你自己的缺省屏蔽名单藏在后台不让别人看到
。你看下面网友的讨论, 大家还在讨论在option那个公开框BLOCK什么人,放生什么人
,有人建议搞个TEMPLATE“自己选”。可惜他们不知道,他们自己选什么没有差,因为
你已经在后台捆定了一大堆人给他们洗了脑。就算你偷偷设置的缺省和他们的想法不约
而同,我想只要是稍微有点独立思维能力的传粉,知道了真相也会有受骗的感觉吧。
还有你这个在后台私下做手脚的行为已经很象malware了。就算有人好好用你的插件,
哪天你发神经在后台缺省里加个什么关键词,让人家email或工作网页里什么重要信息
被恶意屏蔽而不知道,那损失找你负责?
发信人: solomonhume (家驹), 信区: USANews
标 题: 我也贡献个过滤 id 列表
发信站: BBS 未名空间站 (Mon Oct 10 15:45:16 2016, 美东)
Oct 20. 更新了名单
只包括严重粗口,恶意造谣,公开支持犯罪,恶意反华,故意混淆是非情节严重的
老大爷,加州猫这些在里面,而甜妈,坑王这些相对文明的我放了一马
同时抗议另一个同学把... 阅读全帖 |
|
p*******m
发帖数: 20761 | 23 Lexus software update gives new meaning to 'car crash'
Now that cars are as buggy as computers, we're in trouble.
Violet Blue , @violetblue
19h ago in Transportation
7
Comments
Shares
Illustration by D. Thomas Magee
Last year, headlines made everyone fearful of hackers taking over cars on
the freeway. Turns out the real menace to owners of connected cars are the
loopy manufacturers themselves.
Toyota had to suck it up this week and admit to Lexus owners, who were going
nuts on Facebook and Tw... 阅读全帖 |
|
t********s
发帖数: 1741 | 24 软件要求:1. 确保软件没有洞,没有压坏
2. 有洞,压坏的我也收,每个减$1,自备bubble mailer单独drop off
3. 10个以上我的label寄走, 10个以下凑10个,或者单独dropoff
请按以下格式发 email to t********[email protected]
subject : [求购]各类杀毒软件,寻软件小护士长期合作
MITBBSID:
ZIP Code:
金额:
收款方式
电话(not google voice):
软件
长期求购,只要是以下列出的都收,发信后48小时之内处理。如果没有回复,请重新发
一次。
如果有其他软件, 请PM.
AVG Antivirus 2012 + PC Tuneup 3PC $13.00
AVG Antivirus 2012 1PC $8.00
AVG Antivirus 2012 3PC $11.00
AVG Internet Security 2012 + PC Tuneup 3PC $... 阅读全帖 |
|
f**********8
发帖数: 6 | 25 Please send your resume to a***[email protected] if interested.
Position: Software Engineer, Platform
Cyphort develops appliance and cloud based solutions that protect cloud
infrastructure against targeted attacks, corporate espionage and IP theft.
Our innovative approach detects armored malware, performs behavioral
clustering, and correlation algorithms for contextual threat prevention. We
are looking for smart people who collaborate, innovate and make great
security products. Whatever your role, y... 阅读全帖 |
|
t******r
发帖数: 14 | 26 公司纳贤, 要求人靠谱, 讲汉语, 年青有活力,聪明又灵活, 手快不蛮干, 风趣
加幽默。。。
To apply, please send a cover letter and resumes to j**[email protected].
Trustlook, Inc. is an Equal Opportunity Employer.
TITLE: Principal Designer
LOCATION:San Jose, CA
Responsibilities
===
Work closely with our software development team to ideate product features
and optimizations.
Translate high-level concepts into pixel-perfect UI and well thought-out UX.
Communicate your ideas effectively to the product team; accept critique &
feedback as part... 阅读全帖 |
|
s********3
发帖数: 61 | 27 做next generation firewall (sourcefire),组里面刚走了几个烙印,现在急缺人
。最好是senior级别,有些相关经验的,懂TCP proxy,application control,IPS/
IDS, malware之类。
fresh grad,如果你觉得你的背景非常相关,C/C++,OS, TCP/IP过硬,也可以把简历给
我。
组里面气氛不错,大家都比较忙,烙印50%,老中30%-40%。
简历发到: v********[email protected]
thanks, over. |
|
r******u
发帖数: 281 | 28 Can you try system restore to the time the registry has not been altered?
Otherwise you have to manually fix the registry.
Once you fix it, you can run exe file. You need some Alti spyware software
to remove it, such as Malwarebyte's Anti Malware.
Below is what I searched online for you how to manually fix it. If you don't
feel comfortable to do it, find someone do that for you.
1. Click Start->Run (or WinKey+R). Input: "command". Press Enter or click OK.
2. Type "notepad" as shown in the image |
|
s*****j
发帖数: 4530 | 29 用了malwarebyte's anti-malware
和symantec
都杀不掉 |
|
w***1
发帖数: 1951 | 30 I was notified by Google Talk notification from my cell phone around 5 am
this morning. I was quickly aware that isis's gmail got malware/virus or
something. Kind of curious how the 骗子 control their labor cost, so I keep
chatting with him, after several conversations I found that it should be a
chatting robot instead of human.
So confirmed 骗子现在升级到用聊天系统了,劳动成本大大提高
I guess the return may not good if used "mitbbs" as a filter, since all
contacts in Mitbbs are "Shen" Yi or "Shen" Hu. LOL |
|
m******p
发帖数: 5393 | 31 step 1: 和大家说的一样,安全模式+网络连接下malwarebyte anti-malware
step2:Hitman pro 3.0, cloud scan and clean
then done!
经常解决你这种比较严重的情况 |
|
t***y
发帖数: 730 | 32 【 以下文字转载自 Security 讨论区 】
发信人: tardy (小仙), 信区: Security
标 题: 怎么回事?请教
发信站: BBS 未名空间站 (Thu Dec 22 14:09:07 2011, 美东)
刚刚中了毒,下载了Malwarebytes' Anti-Malware软件杀完,结果Google就连不上了。
难道被当作恶意网站给block了?
真是悲催呀! |
|
M********i
发帖数: 4082 | 33 Restart your PC in Safe mode with internet then follow these two steps:
1. download and run MalwareBytes Anti Malware (MBAM)
2. download and run unhide.exe |
|
|
k*****t
发帖数: 71 | 35 【 以下文字转载自 Living 讨论区 】
发信人: keepfit (希望身体好), 信区: Living
标 题: 网上不小心被骗取了个人信息怎么办?
发信站: BBS 未名空间站 (Sun Oct 28 14:24:28 2012, 美东)
我一直用 Orchard Bank的那个2% cash back 的信用卡. 一直在orchardbank网上付每
月的账单.
感觉这个卡挺好的.而且我要是买了大金额的东西,客服还打电话来确认,以防信用卡盗
用.
昨晚我又登陆进自己的账户,准备付账单.登陆进之后,网页上跳出个窗口, 上面说:
"In order to provide you with extra security, we occasionally need to ask
for additional information when you access your account online".
因为这个窗口上有HSBC的logo, 我也没多想. 就输入了 card number, Exp date, CVV
code, SSN, Mother's maiden nam... 阅读全帖 |
|
|
s*********t
发帖数: 16647 | 37 it is sometimes not working
the malware may have already left a backdoor in your local machine
once u cleaned the registry, this backdoor file may change it again |
|
o**********e
发帖数: 18403 | 38 【 以下文字转载自 Boston 讨论区 】
发信人: onetiemyshoe (onetiemyshoe), 信区: Boston
标 题: Target CIO力主外包烙印。 讽刺!
发信站: BBS 未名空间站 (Fri Mar 14 12:52:25 2014, 美东)
烙印会扔老美CIO去献祭。
烙印只会take credit的。
===================
2011年target CIO 鼓吹外包。 讽刺啊!
Beth M Jacob, executive vice-president and CIO at Target Corporation — the
second biggest US discount retailer -- is at the cutting edge of business
where companies are scrambling to sell through iPads, online social networks
and mobile phones.
Technology and outsourcing is at ... 阅读全帖 |
|
t********s
发帖数: 1741 | 39 软件要求:1. 确保软件没有洞,没有压坏
2. 有洞,压坏的我也收,每个减$1,自备bubble mailer单独drop off
3. 10个以上我的label寄走, 10个以下凑10个,或者单独dropoff
请按以下格式发 email to t********[email protected]
subject : [求购]各类杀毒软件,寻软件小护士长期合作
MITBBSID:
ZIP Code:
金额:
收款方式
电话(not google voice):
软件
长期求购,只要是以下列出的都收,发信后48小时之内处理。如果没有回复,请重新发
一次。
如果有其他软件, 请PM.
AVG Antivirus 2012 + PC Tuneup 3PC $13.00
AVG Antivirus 2012 1PC $8.00
AVG Antivirus 2012 3PC $11.00
AVG Internet Security 2012 + PC Tuneup 3PC $... 阅读全帖 |
|
G*L
发帖数: 485 | 40 m
软件要求:1. 确保软件没有洞,没有压坏
2. 有洞,压坏的我也收,每个减$1,自备bubble mailer单独drop off
3. 10个以上我的label寄走, 10个以下凑10个,或者单独dropoff
请按以下格式发 email to t********[email protected]
subject : [求购]各类杀毒软件,寻软件小护士长期合作
MITBBSID:
ZIP Code:
金额:
收款方式(100以下只接收paypal和ING。)
电话(not google voice):
label email:
软件
长期求购,只要是以下列出的都收,发信后48小时之内处理。如果没有回复,请重新发
一次。凡愿意长期合作者,发送邮件时表明长期合作,我会把你加到list定期发软件
deal。
AVG Antivirus 2012 + PC Tuneup 3PC $13.00
AVG Antivirus 2012 1PC $8.00
AVG Antivirus 2012 3PC ... 阅读全帖 |
|
V*******t
发帖数: 6 | 41 【 以下文字转载自 Computation 讨论区 】
发信人: VTstudent (VT), 信区: Computation
标 题: CS@VT seeks Postdoc in program-analysis based security
发信站: BBS 未名空间站 (Sun Aug 31 16:23:28 2014, 美东)
Seek postdoctoral researcher who is interested in the use of program
analysis to ensure software security and quality. Current focus is on the
use of static and dynamic program analyses for object-oriented systems and
Android software. Algorithm design and empirical validation are key
characteristics of our work. Recent projec... 阅读全帖 |
|
p******x
发帖数: 691 | 42 去polo alto networks问问
他们需要这样人:)
好多公司需要malware research 的人才,不一定要公民
想Juniper的防火墙部门等等 |
|
A**a
发帖数: 275 | 43 具体什么方向,我们公司做防火墙,malware , ips, botnet , 有一些openings |
|
|
j******d
发帖数: 10 | 45 If you feel interested, please email your resume to d****[email protected]
===
[Job Description]
Work within a dynamic and fast-paced intrusion protection R&D team within
McAfee Labs to fight the cyber threat. McAfee Network IPS is the industry
leader in the intrusion detection and protection area. The NSS Labs 2010
competitive group test concludes that McAfee NSP has the highest attack
detection rate as well as the best throughput among all IPS vendors. Gartner
2010 IPS Magic Quadrant credits McAfee ... 阅读全帖 |
|
a********r
发帖数: 218 | 46 来自主题: JobHunting版 - M家电面题 我也膜拜北京
第一问如何扫描?面试官是个hiring manager.面试的是码工。只是在电话里谈,不需
真的写代码。他的意思是不能运行这个executable文件,不然你的PC就感染了。
第二题面试官要我告诉他找什么difference. 一个是正常的executable文件,一个怀疑
是malware |
|
h*****9
发帖数: 6643 | 47 FireEye 就这个老头是关键,但就凭他这点雕虫小鸡,靠一遍凉快去吧!
http://www.fireeye.com/company/board-of-directors.html
Ashar Aziz
Founder, Vice Chairman of the Board, CTO, and Chief Strategy Officer
Ashar Aziz, FireEye Founder, Vice Chairman of the Board, CTO, and Chief
Strategy Officer
Ashar Aziz founded FireEye in 2004 and now serves as vice chairman of the
board, CTO, and chief strategy officer. Since founding the company he has
also served as CEO through November 2012 and has led the technical and
business strategies ... 阅读全帖 |
|
C*******s
发帖数: 231 | 48 哥们和FireEye有仇哈。Anyway,没看到吗?
The FireEye platform is deployed in over 40 countries and more than 1,000
customers and partners, including over 25 percent of the Fortune 100.
我之所以认为比Palo Alto Networks强,因为:
1. PANW有Cisco、Juniper等强劲竞争对手,而FireEye的东东,Malware in VM还没人搞
2. PANW没有pricing优势,10%左右的margin profit?FireEye要高很多很多,据说
3. 关键看增长,FireEye Ranked #4 on the Deloitte 2012 Technology Fast 500 in
North America and #1 in the Business Insider article "25 Enterprise
Startups To Bet Your Career On",还不够牛X?
果 |
|
k******1
发帖数: 29 | 49 SOFTWARE ENGINEERING:
- ENTERPRISE JAVA DEVELOPMENT
- ENTERPRISE R&D ENGINEERING & TEST MANAGEMENT
- PERFORMANCE ENGINEERING
- BIG DATA ANALYTICS
- HADOOP
- MACHINE LEARNING
- DATA SCIENTISTS
- EVENT COLLECTION & CORRELATION
- LOG MANAGEMENT
- JAVA SERVER DEVELOPMENT
- SECURITY CONTENT DEVELOPMENT
- REVERSE ENGINEERING
- MALWARE AND SECURITY VULNERABILITY RESEARCHERS
- PE... 阅读全帖 |
|
|
