# 每日安全资讯(2026-04-11) - SecWiki News - [ ] [SecWiki News 2026-04-10 Review](http://www.sec-wiki.com/?2026-04-10) - Doonsec's feed - [ ] [美国财政部长召集各银行首席执行官就Anthropic新型人工智能模型举行紧急会议](https://mp.weixin.qq.com/s/bBLYqO7LhyJeLJ9i8zTAYw) - [ ] [【资源】伊朗相关开源情报工具](https://mp.weixin.qq.com/s/Vnutem7V6HzpLbvrr0CY3A) - [ ] [徐某建群并发表针对某运动员的侮辱性言论已被依法行拘](https://mp.weixin.qq.com/s/lpCgLRWbBUn7eP_4I1mNYg) - [ ] [一个会规避美国执法监控的僵尸网络](https://mp.weixin.qq.com/s/ntZCqhUWgs5fYb5Cm6rlZA) - [ ] [中央网信办、国家铁路局联合约谈7家涉火车票销售第三方平台](https://mp.weixin.qq.com/s/yCjEGg0RMyTrwUz-2BOtKw) - [ ] [安全警报 | 暗网惊现车贷数据黑产交易:5GB人脸+身份证信息仅售千元](https://mp.weixin.qq.com/s/uQNuNyyKYLvRGeWpCfgr3g) - [ ] [一键提取 API 与敏感信息:隐藏接口挖掘利器](https://mp.weixin.qq.com/s/KgoWti0n3ckOVrXSNPOaRw) - [ ] [安全警报 | 勒索遭拒,黑客报复性曝光智慧农贸企业广东菜丁集团高管照片及企业数据](https://mp.weixin.qq.com/s/AiGRbSy7NIhmNL_Ms4YuRw) - [ ] [【干货分享】新版隐私信息管理体系标准ISO/IEC 27701:2025中英文对照版下载](https://mp.weixin.qq.com/s/5_7mPVDEAh7NDCb_Mdz5rw) - [ ] [(08)4.2 理解相关方的需求和期望—企业信息安全负责人必读系列丛书《ISO/IEC 42001: 2023人工智能管理体系标准的谬误辨析与实施详解》](https://mp.weixin.qq.com/s/RoasB3y68grBBDR1PToeng) - [ ] [关于印发《网络安全标识管理办法》的通知](https://mp.weixin.qq.com/s/qXRgLsavSnfSnRVNJOUHTg) - [ ] [致一路同行的网安人,此后周更相伴](https://mp.weixin.qq.com/s/AfpxWaBr9TFcfJK9fRKFUQ) - [ ] [网络工程师必须知道的5类拓扑图](https://mp.weixin.qq.com/s/bIRTD4GpiU5TBjM5ZrAhnw) - [ ] [网络安全江湖的三大流派:从鄙视链到融合新局——我的观察与思考](https://mp.weixin.qq.com/s/C5N1TtCYedAN6guaQaGARg) - [ ] [秒拍500万!张雪机车冠军赛车拍卖,善款全捐“嫣然”](https://mp.weixin.qq.com/s/E_DcizazILKPYtwSLAfq_A) - [ ] [一线民警的“减负神器”有多能打?](https://mp.weixin.qq.com/s/MUIEBEQrui5jvZw97yfGnA) - [ ] [72小时连发3款王炸,阿里Qwen这款模型把OpenAI和谷歌都超了](https://mp.weixin.qq.com/s/uimlSrODUgwyTR9-fYo4Dg) - [ ] [行业资讯:永信至诚 涉及诉讼的公告](https://mp.weixin.qq.com/s/aUNlfS5tAmxjGXBEClL6Cg) - [ ] [热搜第一!雷军回应小米冰淇,网友:股票有救吗](https://mp.weixin.qq.com/s/aXwS2LL6BcyNgnDlMvWp_Q) - [ ] [【科普文章】记住这句话:AI视频,首图定调](https://mp.weixin.qq.com/s/Lnjwf8glBsBOlwxPBrDFGA) - [ ] [FBI:2025年美国因网络犯罪损失了创纪录的210亿美元,投资诈骗、钓鱼勒索是重灾区](https://mp.weixin.qq.com/s/Mq1ACCYflqUFHpDdX9Hoxg) - [ ] [国家网络安全通报中心发布近期多起供应链投毒事件安全风险分析](https://mp.weixin.qq.com/s/y16J_QJfRI5vT00hgsl7Kw) - [ ] [免费赠送 | 企业办公安全意识培训科普素材(第二十二期)](https://mp.weixin.qq.com/s/87MtWOqnh--jaJFvqdmQAQ) - [ ] [宣传一下](https://mp.weixin.qq.com/s/b5PhmjSR1JrMkrD5iVr6DA) - [ ] [周五|安全面经:字节安全智能体](https://mp.weixin.qq.com/s/U61AjV62EXDbNBpw-wdrzA) - [ ] [CodeScan代码审计平台(认真写的版本)](https://mp.weixin.qq.com/s/_ZPjOndxqZSGwjVlH8t2zA) - [ ] [【工业控制系统网络安全系列课程】第2课-工业控制系统的网络安全风险-过程控制漏洞利用(二)典型漏洞利用路径-物理过程影响攻击](https://mp.weixin.qq.com/s/BcNCj5AorloAfZ3EFFTeLQ) - [ ] [每周高级威胁情报解读(2026.04.03~04.09)](https://mp.weixin.qq.com/s/5SY64RmMRbTxl_ttEi4KbA) - [ ] [注意!CCRC 认证新规落地](https://mp.weixin.qq.com/s/AV-McetO-2hjk_FTyaix6w) - [ ] [AI 驱动的自动化代码安全审计:技术、工具与开放挑战](https://mp.weixin.qq.com/s/l3CG3BfXh7VdZaRf-U97Sg) - [ ] [内网渗透实战靶场lab18|从Web打点到域控提权,解锁ATT&CK全链路](https://mp.weixin.qq.com/s/7HzCV7YnDXhK8tpEYyaF2Q) - [ ] [代码审计 | FastJson 1.2.24 反序列化 RCE 漏洞分析](https://mp.weixin.qq.com/s/fMMkx5K6d_Gyo3Ehlkphqg) - [ ] [论文研读与思考|一种具有前向与后向隐私保护的动态数据集可验证高效对称可搜索加密方案](https://mp.weixin.qq.com/s/kCdci-TZBVHvnBtIdbJ-Dw) - [ ] [【公益译文】2026年国际AI安全报告(四)](https://mp.weixin.qq.com/s/SMJBuBfEivB0zuIeJ7PJYQ) - [ ] [《网络安全标识管理办法》印发,7月1日起施行](https://mp.weixin.qq.com/s/qn1g2Xio6OnijCsdMjGvTg) - [ ] [行业首家!360漏洞挖掘智能体率先完成在野0-day漏洞根因分析与复现](https://mp.weixin.qq.com/s/PjNXBFe8Eona3ep1vAqm9Q) - [ ] [信息安全漏洞周报【第069期】](https://mp.weixin.qq.com/s/WUiNfUYkKH9BcJnOc2yfWQ) - [ ] [长亭官方内推|别花 5 块买内推码了!我这儿免费直推](https://mp.weixin.qq.com/s/5bk7Ipd0--RzgmS7gxCeDQ) - [ ] [上新日 | 改个后缀就自动转换,告别格式不兼容的烦恼,Consul 上架!](https://mp.weixin.qq.com/s/nAoCkawFepphIcJsMRX5eg) - [ ] [常见Web漏洞攻击分析](https://mp.weixin.qq.com/s/1Yhg0fk3QcZlrCAoqPauWA) - [ ] [360实锤银狐木马新套路!合法远控工具成“帮凶”](https://mp.weixin.qq.com/s/s9O15olMRl4WUZRYYTdGMw) - [ ] [看不见的 Token 陷阱! AI 护栏全失效了?](https://mp.weixin.qq.com/s/ypaauWTZitETqCTW6us4FQ) - [ ] [手机“看一眼就死”:CVE-2026-0049 零点击 DoS 实战全复现](https://mp.weixin.qq.com/s/Pao6vUWx8uSUnrcJ5vYtCw) - [ ] [专题·具身智能安全 | 构建全链路防御护航具身智能范式跨越与安全落地](https://mp.weixin.qq.com/s/E5GbzNpiC1JAozLDS2VGMw) - [ ] [CNNVD | 关于Apache ActiveMQ安全漏洞的通报](https://mp.weixin.qq.com/s/IsZjIGKrO7bjWZjjuGs-eQ) - [ ] [专家解读 | 以登记制度创新破局数据产权确权难题——《数据产权登记工作指引(试行)》解读](https://mp.weixin.qq.com/s/GoSG2FczT5eX4c_wz3PWCA) - [ ] [关注 | 近期集中爆发多起供应链投毒攻击事件](https://mp.weixin.qq.com/s/9AAkPbcPkfX_RZJBe1u5tg) - [ ] [关注 | 2026年3月全国受理网络违法和不良信息举报1728.4万件](https://mp.weixin.qq.com/s/gAqE8mfsWCXG0Ddzd31evw) - [ ] [从金穹到无人机:解读美国暴涨44%的国防预算申请](https://mp.weixin.qq.com/s/rbIiEvre8d1DgeadViDDqg) - [ ] [从隐秘项目到对伊作战核心:深度解析美军RQ-180无人机](https://mp.weixin.qq.com/s/l81tOHXDAGBDX9TQRnBrKw) - [ ] [美以与伊朗冲突近日情况总结(4.3~4.9)](https://mp.weixin.qq.com/s/AIArGA3TGSFC46qzaiMacQ) - [ ] [React 服务器组件新漏洞可能使攻击者触发拒绝服务攻击](https://mp.weixin.qq.com/s/aZCyNZxktA4BAeNSDvfezg) - [ ] [Qilin EDR 杀手感染链分析](https://mp.weixin.qq.com/s/QEE7NF5w9k-F6oMkQqZz7w) - [ ] [TP-Link 设备面临风险,多个安全漏洞可能导致设备被恶意控制](https://mp.weixin.qq.com/s/_d3Ax1ilNzMCpGrpPONYhA) - [ ] [渗透 | 为什么我又重构了一遍 RouteVulScan](https://mp.weixin.qq.com/s/hP8QUwMaPaV0d4AcFZuf3Q) - [ ] [2026年C3安全大会|专题活动亮点速览](https://mp.weixin.qq.com/s/qWmoWyTGvp8CEzeci8r-2g) - [ ] [人民政协报 | 全国政协委员齐向东:词元时代,安全不能掉队](https://mp.weixin.qq.com/s/YysuLXf2UsRqDdJ4gspd1Q) - [ ] [国家通报中心提醒:供应链投毒攻击集中爆发!奇安信多管齐下筑牢防线](https://mp.weixin.qq.com/s/pDmv06baoWgjYp9AyBDdTw) - [ ] [微软揭秘Storm-2755:薪资劫持攻击如何绕过MFA窃取加拿大员工工资](https://mp.weixin.qq.com/s/1ynixm5XbudT6m8ljCT-jA) - [ ] [IRGC旗下组织CyberAv3ngers:从默认密码到ICS网络武器的四年演进](https://mp.weixin.qq.com/s/lvVVBd6O4wSyD-_hJ2NEGg) - [ ] [RDP密码喷洒到全网沦陷:RansomHub勒索软件六日入侵全链路](https://mp.weixin.qq.com/s/X3RUM0T_DATHdnsAJE_geA) - [ ] [0基础小白是否能够入局网络安全?值不值得?](https://mp.weixin.qq.com/s/WBEam_DXQZsQ_l45wb8Ncw) - [ ] [关注『反调青年』,与好文字结缘](https://mp.weixin.qq.com/s/tctUHdz7IXD05vKxI34r7Q) - [ ] [《人工智能拟人化互动服务管理暂行办法》正式公布](https://mp.weixin.qq.com/s/j-zg2kLS5nIuhH5_S0oXxw) - [ ] [网信办、工信部、公安部联合发布《网络安全标识管理办法》](https://mp.weixin.qq.com/s/wVTCuzHC0G_lFOk_aV9lfg) - [ ] [创信资讯丨第四届四川省卫生健康行业网络安全技能大赛顺利举办,创信华通以专业能力护航医疗信息安全](https://mp.weixin.qq.com/s/m02XbWL7hTy3H39UP1XDXg) - [ ] [各类小程序反编译合集](https://mp.weixin.qq.com/s/5unSqzrIcj8urkNHgY9ciA) - [ ] [等保标准再扩新篇,数据安全系列公安行标解析(一)](https://mp.weixin.qq.com/s/5emy0ya3nl6LwrdxBYh0QQ) - [ ] [GA/T 2394网络安全等级保护数据安全测评要求解析](https://mp.weixin.qq.com/s/HLGeVGdtxanJfwOaOL2YgA) - [ ] [数据安全专辑 | 捷普数据审计与风险控制系统](https://mp.weixin.qq.com/s/k24KgfMO_lHo7oBtQROrmg) - [ ] [数据安全专辑 | 捷普数据库防火墙系统](https://mp.weixin.qq.com/s/swKs97GrrHAWXDLIfWFWiQ) - [ ] [三未信安全栈密码技术为无人设备安全保驾护航](https://mp.weixin.qq.com/s/UJvXJHC7OB0KvDdZrSmvaw) - [ ] [掘影—白加黑自动挖掘工具&DLL侧加载](https://mp.weixin.qq.com/s/ibrk_UKo_ogYPTsfUCHbrA) - [ ] [威胁通缉令 · 黑桃A丨方程式(保持)](https://mp.weixin.qq.com/s/hTOTuHxvcpnf1ShQkguvUw) - [ ] [每周蓝军技术推送(2026.4.4-2026.4.10)](https://mp.weixin.qq.com/s/xKG1g95kRXu3DToH3KQEpg) - [ ] [现在学网安真的是49年入国军吗?](https://mp.weixin.qq.com/s/Yv2TeX52ApYxdevAdsiEfQ) - [ ] [EcuM模块详解](https://mp.weixin.qq.com/s/6m6fOpFWAC0MxjvBTiGJaw) - [ ] [OPEN Alliance 重磅登陆 AES 2026,携 TC18 1722 Proposal RCP 座椅方案开启亚太首秀](https://mp.weixin.qq.com/s/sHyxYAaqrrhwVcJkJoZSZw) - [ ] [OpenClaw机制与安全风险分析](https://mp.weixin.qq.com/s/gbJy8T6XqFKWeN9M2igNEg) - [ ] [CVE-2026-39363:Vite Dev Server WebSocket 任意文件读取漏洞深度剖析](https://mp.weixin.qq.com/s/lsgUtAGI5Uxp6phegasiSg) - [ ] [毛利率79%创新高,却亏损1.54亿:安博通AI转型的代价与赌注](https://mp.weixin.qq.com/s/ASMfnORHV9MCaWK19klj_g) - [ ] [提速15倍,穿透120层依赖!悬镜多模态SCA筑牢AI数字供应链安全底座!](https://mp.weixin.qq.com/s/_bVjAq4QVZah1WdVlupm_Q) - [ ] [“龙虾”也需要看病?一张旧病历,引出三个新确诊](https://mp.weixin.qq.com/s/QcJD7yAAs_Ft-gD9uBV4rA) - [ ] [【高危漏洞预警】OpenAM远程代码执行漏洞(CVE-2026-33439)](https://mp.weixin.qq.com/s/OyoFjDa8PeUemzBT9cIv6g) - [ ] [【高危漏洞预警】Fortinet FortiClient EMS 访问控制不当漏洞(CVE-2026-35616)](https://mp.weixin.qq.com/s/fEVcQ8TxCSZ7_pezbpvJJQ) - [ ] [AI提效供应商被黑,致使十余家企业遭数据泄露和勒索攻击](https://mp.weixin.qq.com/s/vQKr0YIi1rB0yY3vWJYo5g) - [ ] [我们是否需要一部《小型个人信息处理者个人信息保护简化措施规定》?](https://mp.weixin.qq.com/s/CNinTu-Dp_Jfi6c0X_jsoQ) - [ ] [2026 CCF网络与系统安全大会专题论坛征集通知](https://mp.weixin.qq.com/s/h8HmZhVgAIeVDXiSCQRbtA) - [ ] [河南信安世纪科技有限公司与黄河交通学院人工智能学院开展校企合作交流座谈](https://mp.weixin.qq.com/s/33sDS9BpzAvTmDzmFx4poA) - [ ] [参赛有券,冲榜有奖:CloudRouter 十万积分助力腾讯云智能渗透挑战赛](https://mp.weixin.qq.com/s/1d127rFNRR1yBQO2-zG-wA) - [ ] [烽火狼烟丨暗网数据及攻击威胁情报分析周报(04/06-04/10)](https://mp.weixin.qq.com/s/Xtd769w9A4k2smHOiQRmDA) - [ ] [网络安全信息与动态周报2026年第14期(3月30日-4月5日)](https://mp.weixin.qq.com/s/UPYgEvIAxbBhgNyhKG51bA) - [ ] [美国国防部2026年人工智能战略解析及应对策略](https://mp.weixin.qq.com/s/nZA_ZxuMI4EDTSJfc65U-g) - [ ] [美国财政部强化数字资产安全治理,推动网络威胁信息共享机制落地](https://mp.weixin.qq.com/s/-E1wpiKwQ75agwEa_j80Ow) - [ ] [国家网络安全通报中心:近期集中爆发多起供应链投毒攻击事件](https://mp.weixin.qq.com/s/gQFCKtllRezs7fJJ9ykuVw) - [ ] [中国电子信息产业发展研究院信软所、电子所发布《智能经济发展研究》](https://mp.weixin.qq.com/s/vBRCkMCI-9Yqk-quAsu3Xw) - [ ] [火绒安全解决方案|守护生产线xa0智造企业防勒索速看](https://mp.weixin.qq.com/s/ZxlgHpWCNYuAGsrLA9-nBw) - [ ] [火绒小问答——「企业版」软件库](https://mp.weixin.qq.com/s/ml8WToHXbFmKqJAg6SlHhA) - [ ] [【火绒安全周报】国家安全部发布Token安全警示/工信部紧急提醒苹果用户](https://mp.weixin.qq.com/s/5AIc3jBqvMBd9DId1A-CXQ) - [ ] [诚邀渠道合作伙伴共启新征程](https://mp.weixin.qq.com/s/O-VwTUyFC2Ejgr54rZEZiw) - [ ] [当跑步轨迹成为情报线索:从英军最新泄密事件拆解Strava开源情报挖掘方法](https://mp.weixin.qq.com/s/MDW9T3cBJFZXrgaE4H1vgA) - [ ] [Fortify规则库更新26.2](https://mp.weixin.qq.com/s/BQPLhVmfa2-AYzemJW9WOQ) - [ ] [生物医药案例|CDG守护科研数据安全,助力业务发展](https://mp.weixin.qq.com/s/puxq7ldJq0gUU3tiymCUgQ) - [ ] [利用“外挂”当“黄牛”,打击处理不留情](https://mp.weixin.qq.com/s/R71_1ev6quuxSZ-BdppWmA) - [ ] [曲面笔记本电脑你有见过吗?](https://mp.weixin.qq.com/s/f-J3HOBgID7WTc6nifEWNA) - [ ] [暗网情报技术能力框架及参考指标体系(指导性技术文件2026版)](https://mp.weixin.qq.com/s/WxTwaw3zCICsHqlNSm6-yQ) - [ ] [安全热点周报:Fortinet 发布紧急补丁修复 FortiClient 零日漏洞](https://mp.weixin.qq.com/s/hDpqHjKnUj4iABQ6OeIs9A) - [ ] [不要 998,不要 999,只看 99,交个朋友](https://mp.weixin.qq.com/s/0vEb3LALlYw3jTiGUj8LLQ) - [ ] [专题解读 | 推荐系统新范式:生成式推荐系统最新前沿技术全景解析](https://mp.weixin.qq.com/s/aT44wak1iS_T0sVr11Kj3w) - [ ] [近期多起供应链投毒事件安全风险分析](https://mp.weixin.qq.com/s/RMkHFwOa466EO1-DYhrbhQ) - [ ] [芯片、光刻机、海底电缆,归根原因科技战打到最后,拼的不是参数,而是控制权](https://mp.weixin.qq.com/s/xGMgsbyZNdl3_AENXFKuJA) - [ ] [俄驱逐英外交官事件的深层解码与对我战略研判](https://mp.weixin.qq.com/s/E03vd9KEoKZ67oE7p90FRA) - [ ] [美国国务院的\"反虚假信息工业链\"——GEC拨款网络的兴衰全档案](https://mp.weixin.qq.com/s/_JbWvO_Q-q3MPMpbKSv-9w) - [ ] [安全资讯汇总:2026.4.6-2026.4.10](https://mp.weixin.qq.com/s/aiC75-Fvgu1bBzWsg1aQVQ) - [ ] [安全简讯(2026.04.10)](https://mp.weixin.qq.com/s/0sLWD-mm8QOMDI85YeVbug) - [ ] [【漏洞通告】Progress ShareFile 远程代码执行漏洞(CVE-2026-2701)](https://mp.weixin.qq.com/s/yn04i5qZJ89mv_9cOkKE4A) - [ ] [【漏洞通告】CUPS 本地令牌泄露漏洞(CVE-2026-34990)](https://mp.weixin.qq.com/s/DedNUBMF2z5NGP89tBS4zw) - [ ] [等保2.0数据安全新规,天融信一站式护航合规通关](https://mp.weixin.qq.com/s/Vjj2w1VIX5mO8DB3jzf2MA) - [ ] [4月24-26日⏰天融信邀您共赴中国医院信息网络大会(CHIMA 2026)](https://mp.weixin.qq.com/s/MjBv593M37JwrhuZ6Fm6Hw) - [ ] [原创—另一个维度谈网络安全派系](https://mp.weixin.qq.com/s/bgfZ_rPgsvZl8aXW-KzJSA) - [ ] [一文搞懂内网渗透核心:PTH 哈希传递攻击从原理到攻防](https://mp.weixin.qq.com/s/2erzVvknr65tUvvATKbJeQ) - [ ] [👆SSL证书常见错误避坑指南&自动化](https://mp.weixin.qq.com/s/Nq54Mm3daaYe9Z86Sc_kiA) - [ ] [RWA 爆火背后|那些你不知道的安全陷阱](https://mp.weixin.qq.com/s/y2EF3K4_nlEQgY4TfMsFEg) - [ ] [《科技日报》整版访谈邬江兴院士:将“安全基因”植入人工智能系统](https://mp.weixin.qq.com/s/5BtYJrpFcQyqUQbA7P3A5A) - [ ] [国家网络安全通报中心:近期集中爆发多起供应链投毒攻击事件,涉及开源软件仓库和商用工具两大场景](https://mp.weixin.qq.com/s/H_TOMqn4hcdcwaZ6UnUU9w) - [ ] [参加ISC2网络研讨会,提升安全技能并获取CPE学分,回看也可](https://mp.weixin.qq.com/s/4IjLH2zsAqDlqc7WwVDapQ) - [ ] [简评Mythos Preview对国家安全和中国网安产业的影响](https://mp.weixin.qq.com/s/th60afWvJOsssedsh4wYdA) - [ ] [简介 | 五部门联合印发《“人工智能+教育”行动计划》](https://mp.weixin.qq.com/s/I5NQm5NrpepH_gci19sFtA) - [ ] [全文 |《“人工智能+教育”行动计划》](https://mp.weixin.qq.com/s/XbOgD_yRvS513qQewTuGMw) - [ ] [MySQL忘记root密码或者root密码错误](https://mp.weixin.qq.com/s/QtLkAo3HBvWA4fb7MiZqRA) - Google Online Security Blog - [ ] [Bringing Rust to the Pixel Baseband](http://security.googleblog.com/2026/04/bringing-rust-to-pixel-baseband.html) - Recent Commits to cve:main - [ ] [Update Fri Apr 10 11:17:18 UTC 2026](https://github.com/trickest/cve/commit/c382c311a963626264c00a2f4ac2aeb91619836d) - 安全客-有思想的安全新媒体 - [ ] [鸿蒙NEXT应用一键加固——AI Agent助力安全开发](https://www.anquanke.com/post/id/315277) - Private Feed for M09Ic - [ ] [pydantic released v1.80.0 at pydantic/pydantic-ai](https://github.com/pydantic/pydantic-ai/releases/tag/v1.80.0) - [ ] [github released v0.6.1 at github/spec-kit](https://github.com/github/spec-kit/releases/tag/v0.6.1) - [ ] [anthropics released v2.1.101 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.101) - [ ] [PeiQi0 starred Polymarket/py-clob-client-v2](https://github.com/Polymarket/py-clob-client-v2) - [ ] [firecrawl released v2.9.0 at firecrawl/firecrawl](https://github.com/firecrawl/firecrawl/releases/tag/v2.9.0) - [ ] [PrefectHQ released 3.6.26 at PrefectHQ/prefect](https://github.com/PrefectHQ/prefect/releases/tag/3.6.26) - [ ] [spf13 starred safishamsi/graphify](https://github.com/safishamsi/graphify) - [ ] [itm4n released 2026.04.10-1 at itm4n/PrivescCheck](https://github.com/itm4n/PrivescCheck/releases/tag/2026.04.10-1) - [ ] [Ridter starred MiniMax-AI/skills](https://github.com/MiniMax-AI/skills) - [ ] [Ridter forked Ridter/SysWhispers4 from JoasASantos/SysWhispers4](https://github.com/Ridter/SysWhispers4) - [ ] [PeiQi0 starred evan-kolberg/prediction-market-backtesting](https://github.com/evan-kolberg/prediction-market-backtesting) - [ ] [Ridter starred HughYau/qiushi-skill](https://github.com/HughYau/qiushi-skill) - [ ] [PrefectHQ released 3.6.26.dev6 at PrefectHQ/prefect](https://github.com/PrefectHQ/prefect/releases/tag/3.6.26.dev6) - [ ] [Mel0day forked Mel0day/WeChatMsg from tqjason/WeChatMsg](https://github.com/Mel0day/WeChatMsg) - [ ] [Mel0day starred tqjason/WeChatMsg](https://github.com/tqjason/WeChatMsg) - [ ] [pydantic released v0.0.11 at pydantic/monty](https://github.com/pydantic/monty/releases/tag/v0.0.11) - [ ] [gh0stkey starred Blaizzy/mlx-vlm](https://github.com/Blaizzy/mlx-vlm) - [ ] [Mr-xn forked Mr-xn/chatgpt-on-wechat from zhayujie/chatgpt-on-wechat](https://github.com/Mr-xn/chatgpt-on-wechat) - [ ] [anthropics released v2.1.100 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.100) - Der Flounder - [ ] [Detecting installed Intel-based applications on macOS Tahoe](https://derflounder.wordpress.com/2026/04/10/detecting-installed-intel-based-applications-on-macos-tahoe/) - 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com - [ ] [公安部通报37款违规应用,电商类占比超七成,小程序不再是 “法外之地”](https://www.4hou.com/posts/PGXA) - [ ] [Progress ShareFile曝新漏洞 可组合实现未认证远程代码执行](https://www.4hou.com/posts/MXOm) - [ ] [嘶吼安全动态|八部门联合发布《 科技数据安全管理暂行规定》,4月10日起实施 黑客利用像素级SVG技巧隐藏信用卡窃密代码](https://www.4hou.com/posts/8gPj) - obaby 𝐢𝐧⃝ void - [ ] [苟延残喘](https://zhongxiaojie.cn/2026/04/904/) - Tenable Blog - [ ] [Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI](https://www.tenable.com/blog/crushing-axios-supply-chain-threat-tenable-hexa-ai-agentic-ai-use-cases) - NVISO Labs - [ ] [Security’s Blind Spot: Physical Keyloggers That Bypass Antivirus Entirely](https://blog.nviso.eu/2026/04/10/securitys-blind-spot-physical-keyloggers-that-bypass-antivirus-entirely/) - Bug Bounty in InfoSec Write-ups on Medium - [ ] [️ The 2026 Web3 Security Roadmap](https://infosecwriteups.com/%EF%B8%8F-the-2026-web3-security-roadmap-aeb45011b9a5?source=rss----7b722bfd1b8d--bug_bounty) - SentinelOne - [ ] [The Good, the Bad and the Ugly in Cybersecurity – Week 15](https://www.sentinelone.com/blog/the-good-the-bad-and-the-ugly-in-cybersecurity-week-15-7/) - VMRay - [ ] [How to Reduce Cybersecurity False Positives in Your Organization](https://www.vmray.com/reduce-cyber-security-false-positive/) - Malwarebytes - [ ] [Fake Claude site installs malware that gives attackers access to your computer](https://www.malwarebytes.com/blog/scams/2026/04/fake-claude-site-installs-malware-that-gives-attackers-access-to-your-computer) - [ ] [ClickFix finds a new way to infect Macs](https://www.malwarebytes.com/blog/news/2026/04/clickfix-finds-new-way-to-infect-macs) - Intigriti - [ ] [A(I) future of Bug Bounty](https://www.intigriti.com/blog/business-insights/ai-future-of-bug-bounty) - 绿盟科技技术博客 - [ ] [绿盟清风卫NSF-ClawGuard龙虾安全插件正式开源:为OpenClaw筑牢企业安全防线](https://blog.nsfocus.net/%e7%bb%bf%e7%9b%9f%e6%b8%85%e9%a3%8e%e5%8d%abnsf-clawguard%e9%be%99%e8%99%be%e5%ae%89%e5%85%a8%e6%8f%92%e4%bb%b6%e6%ad%a3%e5%bc%8f%e5%bc%80%e6%ba%90%ef%bc%9a%e4%b8%baopenclaw%e7%ad%91%e7%89%a2/) - rtl-sdr.com - [ ] [Measuring Antenna Gain Patterns with Discovery Drive](https://www.rtl-sdr.com/measuring-antenna-gain-patterns-with-discovery-drive/) - [ ] [RTLSDR-NEXT: A Ground-Up Rust Rewrite of the RTL-SDR Driver](https://www.rtl-sdr.com/rtlsdr-next-a-ground-up-rust-rewrite-of-the-rtl-sdr-driver/) - [ ] [SPECTRAL-GSM: A Web-Based GSM Interception Platform Built on OsmocomBB](https://www.rtl-sdr.com/spectral-gsm-a-web-based-gsm-interception-platform-built-on-osmocombb/) - text/plain - [ ] [Understanding Defender AV Scans](https://textslashplain.com/2026/04/10/understanding-defender-av-scans/) - Exploit-DB.com RSS Feed - [ ] [[local] NetBT e-Fatura - Privilege Escalation](https://www.exploit-db.com/exploits/52509) - [ ] [[webapps] D-Link DIR-650IN - Authenticated Command Injection](https://www.exploit-db.com/exploits/52508) - Offensive Security Blog: Latest Trends in Hacking | Praetorian - [ ] [The Attack Helix: Praetorian Guard’s AI Architecture for Offensive Security](https://www.praetorian.com/blog/the-attack-helix-praetorian-guards-ai-architecture-for-offensive-security/) - [ ] [Bypassing LLM Supervisor Agents Through Indirect Prompt Injection](https://www.praetorian.com/blog/indirect-prompt-injection-llm/) - 奇客Solidot–传递最新科技情报 - [ ] [阿根廷企鹅国度发现 PFAS](https://www.solidot.org/story?sid=84016) - [ ] [FBI 利用 iPhone 通知数据恢复已删除 Signal 消息](https://www.solidot.org/story?sid=84015) - [ ] [法国政府将从 Windows 工作站迁移到 Linux 工作站](https://www.solidot.org/story?sid=84014) - [ ] [EFF 退出 X 平台](https://www.solidot.org/story?sid=84013) - [ ] [NASA 如何构建 Artemis II 的容错计算机](https://www.solidot.org/story?sid=84012) - [ ] [FreeBSD 公布兼容笔记本型号](https://www.solidot.org/story?sid=84011) - [ ] [日本限制人类受精卵的基因编辑](https://www.solidot.org/story?sid=84010) - [ ] [美国生育率创历史新低](https://www.solidot.org/story?sid=84009) - [ ] [Mozilla 指控微软使用 AI 限制用户选择](https://www.solidot.org/story?sid=84008) - [ ] [黑猩猩群体也会爆发内战](https://www.solidot.org/story?sid=84007) - 黑海洋Wiki | AI机器人硬件开发 | 网络安全攻防实战 | 区块链技术文档教程 - 免费资源平台 - [ ] [Anthropic短暂封禁OpenClaw创建者账号](https://blog.upx8.com/Anthropic%E7%9F%AD%E6%9A%82%E5%B0%81%E7%A6%81OpenClaw%E5%88%9B%E5%BB%BA%E8%80%85%E8%B4%A6%E5%8F%B7) - [ ] [法国将抛弃Windows转向使用Linux系统](https://blog.upx8.com/%E6%B3%95%E5%9B%BD%E5%B0%86%E6%8A%9B%E5%BC%83Windows%E8%BD%AC%E5%90%91%E4%BD%BF%E7%94%A8Linux%E7%B3%BB%E7%BB%9F) - [ ] [FBI从iOS通知存储中提取Signal加密消息](https://blog.upx8.com/FBI%E4%BB%8EiOS%E9%80%9A%E7%9F%A5%E5%AD%98%E5%82%A8%E4%B8%AD%E6%8F%90%E5%8F%96Signal%E5%8A%A0%E5%AF%86%E6%B6%88%E6%81%AF) - [ ] [苹果将关闭美国首家加入工会的零售门店](https://blog.upx8.com/%E8%8B%B9%E6%9E%9C%E5%B0%86%E5%85%B3%E9%97%AD%E7%BE%8E%E5%9B%BD%E9%A6%96%E5%AE%B6%E5%8A%A0%E5%85%A5%E5%B7%A5%E4%BC%9A%E7%9A%84%E9%9B%B6%E5%94%AE%E9%97%A8%E5%BA%97) - [ ] [Anthropic探索自研AI芯片 应对全球芯片短缺](https://blog.upx8.com/Anthropic%E6%8E%A2%E7%B4%A2%E8%87%AA%E7%A0%94AI%E8%8A%AF%E7%89%87-%E5%BA%94%E5%AF%B9%E5%85%A8%E7%90%83%E8%8A%AF%E7%89%87%E7%9F%AD%E7%BC%BA) - [ ] [YouTube Premium在美国的订阅价格上涨](https://blog.upx8.com/YouTube-Premium%E5%9C%A8%E7%BE%8E%E5%9B%BD%E7%9A%84%E8%AE%A2%E9%98%85%E4%BB%B7%E6%A0%BC%E4%B8%8A%E6%B6%A8) - [ ] [金管局发出首批两个稳定币发行人牌照](https://blog.upx8.com/%E9%87%91%E7%AE%A1%E5%B1%80%E5%8F%91%E5%87%BA%E9%A6%96%E6%89%B9%E4%B8%A4%E4%B8%AA%E7%A8%B3%E5%AE%9A%E5%B8%81%E5%8F%91%E8%A1%8C%E4%BA%BA%E7%89%8C%E7%85%A7) - 腾讯玄武实验室 - [ ] [每日安全动态推送(26/4/10)](https://mp.weixin.qq.com/s?__biz=MzA5NDYyNDI0MA==&mid=2651960419&idx=1&sn=1964c955dc0b4457a992ccd6a6f6fd0b) - 代码卫士 - [ ] [AI编程月产代码从2.5万到25万行:一场被忽视的"漏洞危机"](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247525729&idx=1&sn=25b2c6b4e1fa57bb09f2dda0e8b95549) - [ ] [AI漏洞发现量激增,HackerOne 宣布暂停开源漏洞奖励计划](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247525729&idx=2&sn=4776ef6ac621cacfac94cd6c25ca0452) - [ ] [Grafana 修复可泄露用户数据的 AI 漏洞](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247525729&idx=3&sn=bc8793597b56f124d19e242d87e8273d) - 安全内参 - [ ] [AI提效供应商被黑,至少十余家客户遭数据泄露及勒索攻击](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515798&idx=1&sn=3b10077e36ccc546bbf5853acd7c252d) - [ ] [我们是否需要一部《小型个人信息处理者个人信息保护简化措施规定》?](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515798&idx=2&sn=9d104a06f1ce0a03d1ed4a490bc825cb) - 黑鸟 - [ ] [一个会规避美国执法监控的僵尸网络](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451186326&idx=1&sn=5ee8f9a64e8bf56763ba180a2a29a84e) - 奇安信 CERT - [ ] [安全热点周报:Fortinet 发布紧急补丁修复 FortiClient 零日漏洞](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247505190&idx=1&sn=caf54cd235dbb15d2bb14d2894aae2fa) - 威努特安全网络 - [ ] [对话即创造:WinClaw技中技如何让AI越用越聪明](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651141295&idx=1&sn=998a4f3cb0022050226f8a13ba66f487) - [ ] [WinClaw安全龙虾🦞|10000名用户Token永久免费!](https://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651141295&idx=2&sn=f6098446ad3914f5021b7c19fe56e80d) - 绿盟科技研究通讯 - [ ] [【公益译文】2026年国际AI安全报告(四)](https://mp.weixin.qq.com/s?__biz=MzIyODYzNTU2OA==&mid=2247499813&idx=1&sn=9779aa497940b239063c8e9cabd8b9d0) - 天御攻防实验室 - [ ] [中央情报局引入“人工智能同事”](https://mp.weixin.qq.com/s?__biz=MzU0MzgyMzM2Nw==&mid=2247486885&idx=1&sn=12d0c661d630c533bf3b47f0c600f2e2) - 奇安信病毒响应中心 - [ ] [每周勒索威胁摘要](https://mp.weixin.qq.com/s?__biz=MzI5Mzg5MDM3NQ==&mid=2247498594&idx=1&sn=8e6086dabaf326a77e0a17d115418bfa) - 信息安全国家工程研究中心 - [ ] [个人信息保护监管升级](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247503460&idx=1&sn=6f02d7ebccd65f2c909e6e27223ff3fb) - 安全学术圈 - [ ] [行业会议 | 2026常安论坛(早鸟票倒计时一周)](https://mp.weixin.qq.com/s?__biz=MzU5MTM5MTQ2MA==&mid=2247495235&idx=1&sn=d3fb9940df446fa59954b0d4a9434f56) - 看雪学苑 - [ ] [D-Link 摄像头栈溢出漏洞复现](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458613208&idx=1&sn=96da0d35d2c028fe1709a7648f2e98aa) - [ ] [2026春季招聘-点击投递](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458613208&idx=2&sn=9f6c8b34f3fc983d51168a71cc48ca6a) - [ ] [3行文本即可绕过护栏?Claude Code 被曝可被操纵实施数据库攻击](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458613208&idx=3&sn=def236a2788dbdf51e47630a1cfb136b) - 威胁棱镜 - [ ] [基于视觉大模型的图像地理定位](https://mp.weixin.qq.com/s?__biz=MzkyMzE5ODExNQ==&mid=2247488609&idx=1&sn=1cc2853e400a3d5797944817f3f15467) - 安全圈 - [ ] [【安全圈】老板倒卖26万条客户信息获利600万](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652075510&idx=1&sn=b41c183cb3e61e1068a583217c6e8b2d) - [ ] [【安全圈】国家网络安全通报中心:近期集中爆发多起供应链投毒攻击事件](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652075510&idx=2&sn=c774b8f2e848a27d7335395f2f18551c) - [ ] [【安全圈】Adobe Acrobat Reader 零日漏洞已被黑客利用](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652075510&idx=3&sn=01f56607f2697cadf824b6f6f3136a1b) - 长亭科技 - [ ] [AI 编程增速不增险!且看长亭如何实现可信交付](https://mp.weixin.qq.com/s?__biz=MzIwNDA2NDk5OQ==&mid=2651390324&idx=1&sn=77c0fe24ca515123e18239dcf079c345) - 默安科技 - [ ] [简评Mythos Preview对国家安全和中国网安产业的影响](https://mp.weixin.qq.com/s?__biz=MzIzODQxMjM2NQ==&mid=2247501818&idx=1&sn=f9259cd9c04cbdd70c79619f0f0ac007) - 火绒安全 - [ ] [火绒安全解决方案|守护生产线 智造企业防勒索速看](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247531945&idx=1&sn=d13866ed4256aa765cbf7fdfb42f4eb0) - [ ] [火绒小问答——「企业版」软件库](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247531945&idx=2&sn=1148d04ddcedc8d8ccafb00b14175f31) - [ ] [【火绒安全周报】国家安全部发布Token安全警示/工信部紧急提醒苹果用户](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247531945&idx=3&sn=b8449d8b3f5af6870eb80a0a0ee5285e) - [ ] [诚邀渠道合作伙伴共启新征程](https://mp.weixin.qq.com/s?__biz=MzI3NjYzMDM1Mg==&mid=2247531945&idx=4&sn=859c1ec9b124dce6d994dcdfa51d3a3d) - 奇安信威胁情报中心 - [ ] [每周高级威胁情报解读(2026.04.03 ~04.09)](https://mp.weixin.qq.com/s?__biz=MzI2MDc2MDA4OA==&mid=2247518318&idx=1&sn=16c8aadedaebd27f33769be4064e6416) - 嘶吼专业版 - [ ] [Progress ShareFile曝新漏洞 可组合实现未认证远程代码执行](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247587637&idx=1&sn=814883a513ca83c6f66df42c560504ba) - [ ] [嘶吼安全动态|八部门联合发布《 科技数据安全管理暂行规定》,4月10日起实施 黑客利用像素级SVG技巧隐藏信用卡窃密代码](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247587637&idx=2&sn=c1a6c4c368bfdd1cfbe5bd92293eaa9d) - 极客公园 - [ ] [AI 营销,到底改变了什么](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653103750&idx=1&sn=8c34244a9bcbbb7aad0c072d3175182c) - [ ] [当硅谷转向「世界模型」,中国视频公司选择先把钱赚了丨对话 Sand.ai](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653103712&idx=1&sn=f442d42aa6e1df51d81afc411f6c44ee) - [ ] [大疆 Pocket 4 将在 4 月 16 日发布;Claude 推出新版 Agent 管理工具;曝 Red Hat 裁撤 500 名中国区员工|极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653103702&idx=1&sn=45049b7a562568016a3cc2bcdf92bd48) - OPPO安全中心 - [ ] [【奖励公告】2026年3月及Q1](https://mp.weixin.qq.com/s?__biz=MzUyNzc4Mzk3MQ==&mid=2247494798&idx=1&sn=ab494e01308a0cae276913998ecd4547) - M01N Team - [ ] [每周蓝军技术推送(2026.4.4-2026.4.10)](https://mp.weixin.qq.com/s?__biz=MzkyMTI0NjA3OA==&mid=2247494935&idx=1&sn=2087d14d42eb91ff972139ef7fefc5d5) - 京东安全应急响应中心 - [ ] [威胁情报: CPU-Z 软件供应链投毒攻击事件预警](https://mp.weixin.qq.com/s?__biz=MjM5OTk2MTMxOQ==&mid=2727850812&idx=1&sn=e4f2f189c62ce4727791d6f844968940) - 数世咨询 - [ ] [谷歌不再接受AI提交的漏洞检测报告](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247542523&idx=1&sn=f43e597f1e4496e6cf39bb4cba48b0b2) - [ ] [专攻AI供应链治理痛点!多模态SCA智能情报驱动,以AI治理AI实现全域风险可控!](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247542523&idx=2&sn=ffdb71395c398b2631768a30c38e9b52) - 吴鲁加 - [ ] [与父母冲突](https://mp.weixin.qq.com/s?__biz=Mzg5NDY4ODM1MA==&mid=2247485997&idx=1&sn=72d582452f151fbea14c6f0bdf3dd883) - 谛听ditecting - [ ] [谛听 工控安全月报 | 3月](https://mp.weixin.qq.com/s?__biz=MzU3MzQyOTU0Nw==&mid=2247499436&idx=1&sn=76f68ba9de8a13fcf195e85769942041) - Desync InfoSec - [ ] [微软揭秘Storm-2755:薪资劫持攻击如何绕过MFA窃取加拿大员工工资](https://mp.weixin.qq.com/s?__biz=MzkzMDE3ODc1Mw==&mid=2247489938&idx=1&sn=fb6dc113d81d28b561e7cc09a8da8a5c) - [ ] [IRGC旗下组织CyberAv3ngers:从默认密码到ICS网络武器的四年演进](https://mp.weixin.qq.com/s?__biz=MzkzMDE3ODc1Mw==&mid=2247489938&idx=2&sn=57453aac5561da8abcb789f0ebdb22f2) - [ ] [RDP密码喷洒到全网沦陷:RansomHub勒索软件六日入侵全链路](https://mp.weixin.qq.com/s?__biz=MzkzMDE3ODc1Mw==&mid=2247489938&idx=3&sn=df1c8847f2e3b76b000ea77a45607dbc) - 慢雾科技 - [ ] [暗网情报技术能力框架及参考指标体系(指导性技术文件2026版)](https://mp.weixin.qq.com/s?__biz=MzU4ODQ3NTM2OA==&mid=2247504627&idx=1&sn=9669acd8ecce92eccc5a6c188286510c) - 360数字安全 - [ ] [行业首家!360漏洞挖掘智能体率先完成在野0-day漏洞根因分析与复现](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247585680&idx=1&sn=a7adca59046dbf877ee9430df574890e) - [ ] [360实锤银狐木马新套路!合法远控工具成“帮凶”](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247585680&idx=2&sn=c0c9ce270d492c105fc88257128ae088) - 安全行者老霍 - [ ] [Mesh CSMA 如何揭示并阻断针对核心资产的攻击路径](https://mp.weixin.qq.com/s?__biz=Mzg3NjU4MDI4NQ==&mid=2247486398&idx=1&sn=12655cf9cdf748d519e7d34516a43d34) - Over Security - Cybersecurity news aggregator - [ ] [CPUID compromesso: malware nei download ufficiali di CPU-Z e HWMonitor](https://www.securityinfo.it/2026/04/10/cpuid-compromesso-malware-nei-download-ufficiali-di-cpu-z-e-hwmonitor/) - [ ] [Senator launches inquiry into 8 tech giants for failures to adequately report CSAM](https://therecord.media/senator-launches-inquiry-into-tech-giants-csam) - [ ] [‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts](https://therecord.media/drift-crypto-theft-post-mortem-north-korea) - [ ] [UK government threatens tech bosses with jail time if they do not adequately fight nudification tools](https://therecord.media/uk-threatens-tech-bosses-with-jail-ai-nudification) - [ ] [The Phishing-as-a-Service Pipeline: How a Scalable Fraud Ecosystem Is Driving Global Attacks](https://flashpoint.io/blog/the-phishing-as-a-service-pipeline-how-a-scalable-fraud-ecosystem-is-driving-global-attacks/) - [ ] [Nearly 4,000 US industrial devices exposed to Iranian cyberattacks](https://www.bleepingcomputer.com/news/security/nearly-4-000-us-industrial-devices-exposed-to-iranian-cyberattacks/) - [ ] [[Video] The TTP Ep. 22: The Collapse of the Patch Window](https://blog.talosintelligence.com/video-the-ttp-ep-22-the-collapse-of-the-patch-window/) - [ ] [Apocalissi cyber in arrivo a causa dell’AI? Che dicono le mosse Anthropic e OpenAI](https://www.cybersecurity360.it/nuove-minacce/apocalissi-cyber-in-arrivo-a-causa-dellai-che-dicono-le-mosse-anthropic-e-openai/) - [ ] [Sintesi riepilogativa delle campagne malevole nella settimana del 4 – 10 aprile](https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-4-10-aprile/) - [ ] [Florida investigates OpenAI for role ChatGPT may have played in deadly shooting](https://therecord.media/florida-investigates-openai-chatgpt-deadly-shooting) - [ ] [Analysis of one billion CISA KEV remediation records exposes limits of human-scale security](https://www.bleepingcomputer.com/news/security/analysis-of-one-billion-cisa-kev-remediation-records-exposes-limits-of-human-scale-security/) - [ ] [Mirax: a new Android RAT turning infected devices into potential residential proxy nodes](https://www.cleafy.com/cleafy-labs/mirax-a-new-android-rat-turning-infected-devices-into-potential-residential-proxy-nodes) - [ ] [Time mannaggement](https://www.cybersecurity360.it/cultura-cyber/time-mannaggement/) - [ ] [Regole digitali, la UE apre al dialogo con gli USA: ecco i rischi di compiacere Trump](https://www.cybersecurity360.it/legal/regole-digitali-la-ue-apre-al-dialogo-con-gli-usa-ecco-i-rischi-di-compiacere-trump/) - [ ] [NIS2 e cyber security aziendale: le nuove sfide per Board e IT tra conformità e rischi reali](https://www.cybersecurity360.it/legal/nis2-e-cybersecurity-aziendale-le-nuove-sfide-per-board-e-it-tra-conformita-e-rischi-reali/) - [ ] [UK says it exposed Russian submarine activity near undersea cables](https://therecord.media/uk-says-it-exposed-russian-submarine-activity) - [ ] [Agenzia delle Entrate – campagna di phishing mirata alle Pubbliche Amministrazioni](https://cert-agid.gov.it/news/agenzia-delle-entrate-campagna-di-phishing-mirata-alle-pubbliche-amministrazioni/) - [ ] [Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor](https://www.bleepingcomputer.com/news/security/supply-chain-attack-at-cpuid-pushes-malware-with-cpu-z-hwmonitor/) - [ ] [When Geopolitical Conflict Spills into Cyberspace — How US Organizations Should Respond](https://cyble.com/blog/cyber-warfare-attacks/) - [ ] [The Cyber Express Weekly Roundup: Major State Threats, Crypto Attacks, and Legal Gaps](https://thecyberexpress.com/weekly-roundup-cybersecurity-global-threats/) - [ ] [Microsoft: Canadian employees targeted in payroll pirate attacks](https://www.bleepingcomputer.com/news/microsoft/microsoft-canadian-employees-targeted-in-payroll-pirate-attacks/) - [ ] [Dutch hospitals face disruptions after ransomware attack on software provider ChipSoft](https://therecord.media/chipsoft-ransomware-attack-disrupts-dutch-hospitals) - [ ] [Google rolls out Gmail end-to-end encryption on mobile devices](https://www.bleepingcomputer.com/news/google/google-rolls-out-gmail-end-to-end-encryption-on-mobile-devices/) - [ ] [LiteLLM: perché la workstation dello sviluppatore diventa l’obiettivo principale](https://www.cybersecurity360.it/news/litellm-perche-la-workstation-dello-sviluppatore-diventa-lobiettivo-principale/) - [ ] [Not a Signal Flaw: iPhone Notifications Became a Backdoor for Deleted Messages](https://thecyberexpress.com/not-a-signal-flaw-iphone-notifications/) - [ ] [Iran Crisis Highlights Rising Gulf Cybersecurity Risks to Critical Infrastructure](https://thecyberexpress.com/iran-crisis-gulf-cybersecurity-middle-east/) - [ ] [Doppi agenti: vulnerabilità e rischi in Google Cloud Vertex AI](https://www.cybersecurity360.it/news/doppi-agenti-google-cloud/) - [ ] [Microsoft Recall Flaw Exposes Decrypted User Data, Researchers Find](https://thecyberexpress.com/totalrecall-windows-recall-security-gap/) - [ ] [NIS2 e notifica degli incidenti informatici: cosa serve per essere pronti](https://www.cybersecurity360.it/legal/nis2-e-notifica-degli-incidenti-informatici-cosa-serve-per-essere-pronti/) - [ ] [FCC Proposes Tougher KYC Rules to Crack Down on Illegal Robocalls](https://thecyberexpress.com/fcc-expands-kyc-rules-for-robocalls/) - [ ] [GitLab Security Update Fixes High-Severity CVE-2026-5173, 11 Other Flaws](https://thecyberexpress.com/gitlab-security-update-cve-2026-5173/) - [ ] [U.S. Treasury Rolls Out Cybersecurity Information Sharing Initiative as Crypto Attacks Rise](https://thecyberexpress.com/digital-asset-cybersecurity-initiative/) - Qualys Security Blog - [ ] [The Mythos Inflection Point: Dealing With the Upcoming Vulnerability Disclosure Avalanche and Compressed Exploitation Window](https://blog.qualys.com/category/product-tech) - LastKnight.com Feed - [ ] [babysitting cognitivo](https://mgpf.it/2026/04/10/babysitting-cognitivo.html) - Securityinfo.it - [ ] [CPUID compromesso: malware nei download ufficiali di CPU-Z e HWMonitor](https://www.securityinfo.it/2026/04/10/cpuid-compromesso-malware-nei-download-ufficiali-di-cpu-z-e-hwmonitor/?utm_source=rss&utm_medium=rss&utm_campaign=cpuid-compromesso-malware-nei-download-ufficiali-di-cpu-z-e-hwmonitor) - Javvad Malik - [ ] [Breach of Confidence: 10 April 2026](https://javvadmalik.com/2026/04/10/breach-of-confidence-10-april-2026/) - 网安国际 - [ ] [2026 CCF网络与系统安全大会专题论坛征集通知](https://mp.weixin.qq.com/s?__biz=MzA4ODYzMjU0NQ==&mid=2652318191&idx=1&sn=05c38020a62f50f1d6fa37a1713444c7) - Schneier on Security - [ ] [Friday Squid Blogging: Squid Overfishing in the South Pacific](https://www.schneier.com/blog/archives/2026/04/friday-squid-blogging-squid-overfishing-in-the-south-pacific.html) - [ ] [Sen. Sanders Talks to Claude About AI and Privacy](https://www.schneier.com/blog/archives/2026/04/sen-sanders-talks-to-claude-about-ai-and-privacy.html) - 白泽安全实验室 - [ ] [2026年第一季度疑似朝鲜背景的APT组织综合分析](https://mp.weixin.qq.com/s?__biz=MzI0MTE4ODY3Nw==&mid=2247492912&idx=1&sn=ca977b4569d93c527b354149547f9634) - SANS Internet Storm Center, InfoCON: green - [ ] [Obfuscated JavaScript or Nothing, (Thu, Apr 9th)](https://isc.sans.edu/diary/rss/32884) - Yak Project - [ ] [IRify 智能化改造:AI 代码审计 + Poc 自动生成,安全效率翻倍](https://mp.weixin.qq.com/s?__biz=Mzk0MTM4NzIxMQ==&mid=2247529665&idx=1&sn=d77c2fe3c7b2e4e1c3c4d9bd01753c9a) - ICT Security Magazine - [ ] [SBOM: da obbligo normativo a strumento operativo. Come implementarlo davvero](https://www.ictsecuritymagazine.com/notizie/sbom-implementazione/) - The Register - Security - [ ] [CPUID site hijacked to serve malware instead of HWMonitor downloads](https://go.theregister.com/feed/www.theregister.com/2026/04/10/cpuid_site_hijacked/) - [ ] [Project Glasswing and open source software: The good, the bad, and the ugly](https://go.theregister.com/feed/www.theregister.com/2026/04/10/project_glasswing/) - [ ] [Britain seeks views before it drops the hammer on signal jammers](https://go.theregister.com/feed/www.theregister.com/2026/04/10/signal_jammer_consultation/) - [ ] [Unpacking AI security in 2026 from experimentation to the agentic era](https://go.theregister.com/feed/www.theregister.com/2026/04/10/unpacking_ai_security_2026/) - Deeplinks - [ ] [We Need You: Our Privacy Cannot Afford a Clean Extension of Section 702](https://www.eff.org/deeplinks/2026/04/we-need-you-our-privacy-cannot-afford-clean-extension-section-702) - TorrentFreak - [ ] [HBO Obtains DMCA Subpoena to Unmask ‘Euphoria’ Spoiler Account on X](https://torrentfreak.com/hbo-obtains-dmca-subpoena-to-unmask-euphoria-spoiler-account-on-x/) - The Hacker News - [ ] [GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs](https://thehackernews.com/2026/04/glassworm-campaign-uses-zig-dropper-to.html) - [ ] [Browser Extensions Are the New AI Consumption Channel That No One Is Talking About](https://thehackernews.com/2026/04/browser-extensions-are-new-ai.html) - [ ] [Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows](https://thehackernews.com/2026/04/google-rolls-out-dbsc-in-chrome-146-to.html) - [ ] [Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure](https://thehackernews.com/2026/04/marimo-rce-flaw-cve-2026-39987.html) - [ ] [Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers](https://thehackernews.com/2026/04/backdoored-smart-slider-3-pro-update.html) - Daniel Miessler - [ ] [How to Avoid Aperture Collapse](https://danielmiessler.com/blog/aperture-collapse?utm_source=rss&utm_medium=feed&utm_campaign=website) - Security Affairs - [ ] [Ransomware attack on ChipSoft knocks EHR services offline across hospitals in the Netherlands and Belgium](https://securityaffairs.com/190615/cyber-crime/ransomware-attack-on-chipsoft-knocks-ehr-services-offline-across-hospitals-in-the-netherlands-and-belgium.html) - [ ] [UAT-10362 linked to LucidRook attacks targeting Taiwan-based institutions](https://securityaffairs.com/190598/security/uat-10362-linked-to-lucidrook-attacks-targeting-taiwan-based-institutions.html) - [ ] [EngageLab SDK flaw opens door to private data on 50M Android devices](https://securityaffairs.com/190586/hacking/engagelab-sdk-flaw-opens-door-to-private-data-on-50m-android-devices.html) - [ ] [Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials](https://securityaffairs.com/190578/cyber-crime/bitcoin-depot-hack-leads-to-3-6m-bitcoin-theft-via-stolen-credentials.html) - Security Weekly Podcast Network (Audio) - [ ] [Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. - SWN #571](http://sites.libsyn.com/18678/staypuft-claude-one-pixel-deepfakes-raccoon-bofh-satoshi-nakamoto-josh-marpet-swn-571) - 网安寻路人 - [ ] [从“人格”到“功能性情绪”:Anthropic 两篇新研究对 AI 拟人化交互监管的启示](https://mp.weixin.qq.com/s?__biz=MzIxODM0NDU4MQ==&mid=2247508325&idx=1&sn=c073b036ae22bcf5e3e98e53cbc95660)
每日安全资讯(2026-04-11)