automotive cybersecurity

Practical Analysis of Attackers Exploiting Windows and Linux Vulnerabilities for System Intrusion

by
Practical Analysis of Attackers Exploiting Windows and Linux Vulnerabilities for System Intrusion

Part01 Exploitation Trend Escalation Recent monitoring by global cybersecurity teams has detected a significant increase in activities where attackers exploit vulnerabilities in Windows and Linux systems to conduct complex attacks aimed at gaining unauthorized system access. These attacks typically begin with phishing emails or malicious web content, deploying weaponized documents to initiate the attack. When … Read more

Security and Safety of VxWorks 7: Empowering Mission-Critical Embedded Systems

by
Security and Safety of VxWorks 7: Empowering Mission-Critical Embedded Systems

Introduction In the real-time operating system (RTOS) domain, VxWorks 7 is a name that cannot be overlooked. As the flagship product of Wind River Systems, it has powered iconic mission-critical systems such as the NASA Mars Rover and the next-generation defense platforms. In today’s highly interconnected environment, embedded devices face unprecedented challenges: cybersecurity threats, industry … Read more

Will IoT Downtime Be the Next ‘Black Swan’?

by
Will IoT Downtime Be the Next 'Black Swan'?

The Internet of Things (IoT) has become a pillar of products and services across various industries. Critical applications in healthcare, energy, and other fields rely on IoT devices. However, as this dependency deepens, the impact of IoT disruptions could become the biggest business risk in the next decade. When reputation, operational efficiency, and compliance are … Read more

Wearables for the Smart Home

by
Wearables for the Smart Home

Click ↑ the blue text to follow us The integration of different technological fields can be described as a form of convergence, which is expected to become one of the major innovations that will change the world in the coming years. Relevant experts are discussing the integration of renewable energy technologies, such as those that … Read more

Local Privilege Escalation Vulnerabilities in Linux UDisks and MediaTek Chipsets

by
Local Privilege Escalation Vulnerabilities in Linux UDisks and MediaTek Chipsets

1. Local Privilege Escalation Vulnerability in Linux UDisks Daemon CVE-2025-8067, PoC Released The UDisks daemon in Linux has a serious vulnerability (CVE-2025-8067, CVSS 8.5) that allows non-privileged users to exploit a negative index when creating loop devices via D-Bus, potentially leading to denial of service or local privilege escalation. It is recommended to update to … Read more

The Roots of the Crisis in Security Operations Centers (SOC) and Pathways to Resolution

by
The Roots of the Crisis in Security Operations Centers (SOC) and Pathways to Resolution

Shake Network Technology NewsClick the follow button on the right for the latest technology news!Despite major companies investing millions of dollars or RMB in Security Operations Centers (SOC) and advanced detection technologies, data breaches remain frequent and are on the rise. Based on practical experience, currently, only about 5% of SOCs can effectively respond to … Read more

APT36 Hackers Use Linux .desktop Files to Install Malware in New Attack

by
APT36 Hackers Use Linux .desktop Files to Install Malware in New Attack

Pakistani APT36 cyber spies are using Linux .desktop files to load malware, launching new attacks against Indian government and defense entities.Reports from CYFIRMA and CloudSEK document this activity, which aims to steal data and maintain persistent espionage access. APT36 has previously used .desktop files to load malware in targeted espionage operations in South Asia.These attacks … Read more

Installation Guide for the Latest Weekly Version of Kali Linux and VPN Connection to Hack The Box

by
Installation Guide for the Latest Weekly Version of Kali Linux and VPN Connection to Hack The Box

Installation Guide for the Latest Weekly Version of Kali Linux and VPN Connection to Hack The Box Kali Linux is maintained and released by OffSec, serving as the core platform for penetration testing and cybersecurity training. Compared to the regular stable version, the Weekly version synchronizes the latest tool updates and security fixes in the … Read more

Comprehensive Guide to Kali Linux Penetration Testing: From OWASP Top 10 to Enterprise-Level Red Team Practices

by
Comprehensive Guide to Kali Linux Penetration Testing: From OWASP Top 10 to Enterprise-Level Red Team Practices

1. Core Value and System Features of Kali Linux Penetration Testing Kali Linux, as the benchmark operating system in the field of penetration testing, demonstrates its core value in three aspects: tool integration, coverage of testing scenarios, and legal compliance. The system comes pre-installed with over 600 specialized tools, covering 12 categories including information gathering, … Read more

New Fileless VShell Attack on Linux Systems

by
New Fileless VShell Attack on Linux Systems

Recently, a new type of fileless attack on Linux systems has emerged, which we have named “VShell“. The attackers employ fileless attack techniques, utilizing carefully crafted RAR filenames to trigger malicious code without explicit user execution. This type of attack does not rely on traditional software vulnerabilities but exploits common filename handling oversights in Linux … Read more