Extortion software is the first malware to be promoted. In the annual security reports released by major network security manufacturers this year, extortion software was unanimously listed as the most serious security threat in 2016. 360 believes that ransomware has become the emerging "king of viruses". AsiaInfo Security called 2016 the "real year of ransomware". Symantec pointed out that ransomware has become one of the biggest network security threats facing enterprises and consumers today. Kaspersky Lab took ransomware as the main topic in 2016, Andian Lab has released special reports on ransomware for many times. Extortion software has become the "star of hope" in malware, and is attracting people's attention with increasing harmfulness. According to 360 data, there were 49

Now you will find that there are more bike sharing in major cities, which is convenient for people to use on short trips. There must be competition in the market, so more and more new shared bicycles appear in our lives... There is no doubt that more or less deposit will be given, which has become the primary reason why people choose not to ride. Some deposits are 299, some 99... Of course, the less the deposit, the easier it will be for more users to accept Ma Yun's offer! Announce unified bike sharing in the Jianghu! be caught off guard! While everyone was still discussing the issue of bike sharing deposit, Ma Yun made a big move again during the May Day holiday, announcing the unified bike sharing Jianghu! Alipay officially announced that ofo, Yong'an Bank, Xiaolan Hellobike、funbike、 Uber, etc

On April 27, it was learned from the Ministry of Industry and Information Technology that from April 25 to 26, the seventh annual conference on network security in the telecommunications and Internet industries jointly organized by China Communications Enterprise Association and China Information and Communication Research Institute was held in Hefei, Anhui Province. Zhang Feng, a member of the Party Leadership Group and Chief Engineer of the Ministry of Industry and Information Technology, and leaders of the People's Government of Anhui Province attended the conference and delivered speeches. Zhang Feng pointed out that the Party Central Committee and the State Council attach great importance to cyber security. Since last year, the National Cyberspace Security Strategy and the Cyber Security Law have been issued at the national level. The cyber security work has clearer objectives, more specific tasks and clearer responsibilities. The current network security situation facing China is still severe and complex. In the face of the new situation and new requirements, we should always maintain a sense of urgency and crisis, constantly develop new ideas in network security work, and come up with

Recently, the national information security vulnerability sharing platform (CNVD) has included multiple vulnerabilities in Jenkins (CNVD-2017-05551, CNVD-2017-05570, CNVD-2017-05571, CNVD-2017-05572 correspond to CVE-2017-1000353 CVE-2017-1000354、CVE-2017-1000355、CVE-2017-1000356）。 An attacker can use the above vulnerability to execute arbitrary code, impersonate Jenkins user or cause Jenkins server denial of service threats in the context of the affected application. 1、 Vulnerability analysis Je

On the morning of April 27, on the occasion of the first anniversary of General Secretary Xi Jinping's "4.19" important speech, the fourth Beijing Cyber Security Day officially opened in the Beijing Exhibition Hall. This activity was jointly hosted by the Municipal Cyberspace Office of the CPC Committee and the Municipal Public Security Bureau, and was held for three consecutive days in Beijing Exhibition Hall from April 26 to 28. Under the unified leadership of the municipal party committee and the municipal government, the sponsor accurately grasped the work orientation of the "Science and Technology Innovation Center" in the capital, adhered to the working principle of "government led, social interaction, extensive participation, and comprehensive publicity", centered on the theme of "network security sharing, network life sharing", scientifically summarized historical contributions, and continued the "Qinglang Action", "four major projects", and "Aite Plan" Based on the implementation of the 2017 Cyber Security Law, the government, enterprises, and the society

Today's Internet is increasingly becoming a new space for people to study, work and live, as well as a new platform for access to public services. But people have complex feelings about network information: love, fear and hate. Love its convenience, fear it will cause trouble, and hate its disorder. One year ago today, General Secretary Xi Jinping hosted a symposium on network security and informatization work in Beijing, which sorted out the problems existing in the network information work, studied the countermeasures, and identified the direction for improvement. One year later, all regions, departments and industries have actively promoted the work of online communication. Ms. Tian is a staff member of an energy company. On that day, she came to the Administrative Examination and Approval Service Bureau of Yinchuan City to handle the industrial and commercial change registration. She received the new certificate half an hour after submitting the information. Previously, in Yinchuan, the industrial and commercial business license

Vulnerability description: Riddle is a security vulnerability found in Oracle MySQL 5.5 and 5.6 client databases. An attacker is allowed to use Riddle vulnerability in the man in the middle position to break the SSL configuration connection between MySQL client and server. When MySQL 5.5 and 5.6 send data, including user name and password, to the server, an attacker can capture them. The security update for 5.5.49 and 5.6.30 did not completely fix the vulnerability. After version 5.7 and the MariaDB system are not affected by vulnerabilities. Affected version: MySQL 5.5 and 5.6 Vulnerability level: medium risk repair suggestion: Upgrade MySQL to 5.7. Learn more about http

Security bulletin No.: CNTA-2017-0031 On April 17, Oracle released a security update in April 2017, fixing 299 security vulnerabilities in many of its products. Affected products include Oracle database (2), Oracle Secure Backup database security backup (1), middleware product Fusion Middleware (31); Enterprise manager grid control products Oracle Enterprise Manager Grid Control (2), e-commerce suite OracleE-Business Suite (11), supply chain suite

Security bulletin No.: CNTA-2017-0027 On April 11, Microsoft released its monthly routine security bulletin in April 2017, fixing 174 security vulnerabilities in many of its products. The affected products include Windows 10 (68), Windows 10/Server 2016 (24), Windows 8.1/Server 2012 R2 (24), Windows Server 2012 (18), Windows 7/Server 2008 R2 (15), Windows Vista/Server 2008 (11), the Internet

In the R&D system of e-commerce, there is a department called "risk control". The whole department is responsible for ensuring the safety and reliability of the entire website. It is a relatively mysterious organization, which needs to fight against hackers and scalpers every day. What are the potential security risks of an e-commerce website? 1. The importance of data disclosure is self-evident. In particular, e-commerce data, including personal information (name, gender, receiving address, phone number) and shopping information, is still relatively sensitive. Now the larger e-commerce platforms in China are engaged in big data, which can calculate what each user likes, and make customized push according to each person's different preferences. Even the financial business that Alibaba and JD are engaged in depends on the user data accumulated over the years