CSO Online

FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

Researchers say the campaign uses a browser-based JavaScript VM to hide credential theft and intercept MFA at scale.
OSTechNix

JavaScript Timestamp Bugs: How UTC Mistakes Break Web Apps

Learn how a single JavaScript Date() timezone mistake silently corrupts web apps and how to fix timestamp bugs in JS, Python, ...
CSO Online

Exchange Server zero-day vulnerability can be triggered by opening a malicious email

A newly discovered zero-day vulnerability in Microsoft Exchange Server has experts declaring an emergency and urging CSOs to ...
51CTO

用了终端将近十年,试了 Ghostty 才知道亏了多少

说实话,有点意外。这套配置我自己用了半年多,改改调调,已经习以为常,没意识到和大家的用法差这么多。今天整理一下正式发出来,顺便把原始配置附在后面,直接拿去用。 前段时间在技术群随手丢了一份配置文件,标题都没起,就发了个 Gist 链接,然后 ...