Many businesses are refuting rumors: the Spring Festival this year will not close.
#International

🔵Egavilan Media EGM Address Book SQL injection leak:

https://dailycve.com/egavilan-media-egm-address-book-sql-injection-leak

Samsung’s folding screen will break at low temperatures, causing serious damage.
#Technologies

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑How to configure a host-based intrusion detection system on CentOS?

One of the first security measures that any system administrator wants to deploy on its production server is a mechanism to detect file tampering-criminals tamper with not only file content, but also file attributes.

AIDE (full name "Advanced Intrusion Detection Environment") is a host-based open source intrusion detection system. AIDE checks the integrity of system binary files and basic configuration files by checking the inconsistency of many file attributes. These file attributes include permissions, file types, inodes, number of links, link names, users, user groups, and file sizes. , Block count, modification time, access time, creation time, access control list (acl), SELinux security context, xattrs and md5/sha checksum.

AIDE builds a file attribute database by scanning the file system of a (untampered) Linux server. Then, it checks the file attributes of the server against the database, and then issues a warning if there are any changes to the index file while the server is running. It is for this reason that whenever the system is updated or the configuration file is changed due to legitimate reasons, AIDE must re-index the protected files.

For some customers, their security policy may require some kind of intrusion detection system (IDS) to be installed on the server. But whether the customer requires IDS or not, it is a good practice for system administrators to deploy IDS.

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🔵A SQL injection vulnerability exists in the website of Chongqing Yishu Information Technology Co., Ltd.2021-01-10

https://dailycve.com/sql-injection-vulnerability-exists-website-chongqing-yishu-information-technology-co-ltd2021-01-10

🔵Unauthorized access vulnerability exists in ThinkAdmin:

https://dailycve.com/unauthorized-access-vulnerability-exists-thinkadmin

A significant number of cases of loss of external reference connections have been triggered by the Twitter ban on President Trump.
#International

New Apple Products: Guide To What’s Coming Out in April ?
#Technologies

Cisco issued an announcement to refute that it has met all the conditions for completing the acquisition of Acacia.
#Updates

Microsoft is now planning for the Windows 10X Build 20280 version upgrade, which will correct the obstructive flaw.
#Updates

Hi all ! We start another new hacking block, few hours and will start uploading some awesome hacking tutorials, not like the telegram tutorials !

hack.undercode.help

(for now 403, till few hours)

Have a great day everyone !!!😊

🔵Tomcat CVE-2020-17527 CVE-2020-13943 :

https://dailycve.com/tomcat-cve-2020-17527-cve-2020-13943

🔵python-paramiko: Execute arbitrary code/commands - Existing account :

https://dailycve.com/python-paramiko-execute-arbitrary-codecommands-existing-account

🔵python-defusedxml: Unauthorised access - Remote/unauthenticated :

https://dailycve.com/python-defusedxml-unauthorised-access-remoteunauthenticated

🔵 tomcat: Multiple vulnerabilities CVE-2020-17527:

https://dailycve.com/tomcat-multiple-vulnerabilities-cve-2020-17527

Some media broke the news that Bank of Communications was hacked.
#CyberAttacks

In 2024, can Apple really mass-produce? Many analysts lack confidence.
#Technologies

Lenovo released laptops running Windows 10 entirely on ARM-processors.
#Technologies

🔵firefox: Multiple vulnerabilities :

https://dailycve.com/firefox-multiple-vulnerabilities