This article explains what a firewall is, how it isolates risk zones from safe zones, its working principles, the typical architecture involving screening routers and proxy servers, and the key security functions it provides for protecting network communications.
This article provides two comprehensive collections of network security interview questions, totaling 164 real‑world questions that cover fundamentals such as SQL injection, XSS, CSRF, protocol basics, cryptography, penetration testing techniques, and incident response, helping candidates prepare effectively for technical interviews and increase their chances of landing high‑pay offers.
GitHub’s recent security incident, unrelated to OAuth token attacks, exposed over 100,000 npm users' plaintext credentials and detailed private package data, prompting a review of logging practices, notification plans, and broader implications for supply‑chain security.
This article highlights Ant Group’s recent technical achievements—including green carbon‑reduction scheduling, the AntDTX trusted privacy sandbox for mobile anti‑fraud, the open‑source YinYu privacy‑computing platform, the OceanBase database competition, and the Space5D security parallel‑slice architecture—showcasing their impact on sustainability, security, and open‑source collaboration.
This article explains the importance of data security under emerging privacy laws and provides a comprehensive overview of data masking concepts, common technical methods, typical enterprise scenarios—including static, database, and application-level masking—and strategic considerations for balancing business needs with privacy protection.
This article explains the theory behind cryptographic hash functions and provides a complete PHP implementation of the SHA‑256 algorithm, detailing each processing step—from converting strings to binary to final compression—along with supporting helper functions and reference tables.
This guide walks you through configuring firewalld on Linux, covering zones, temporary and permanent settings, service and port management, zone manipulation, rich rule creation, direct rule usage, and essential commands for enabling, disabling, and querying the firewall.
This article presents ten multiple‑choice questions covering symmetric and asymmetric encryption, web malware, cookie security, access control, ARP spoofing, malicious code detection, buffer overflows, SQL injection, and rainbow‑table defenses, letting readers assess their information‑security expertise.
A former Lianjia database administrator was sentenced to seven years for deleting critical financial data, revealing how insider misuse of root privileges, inadequate security response, and ignored vulnerability reports can cripple a multi‑billion‑dollar enterprise, while similar incidents underscore the broader risks of insider threats.
This article explains the technical principles behind IP‑based geolocation, describing how autonomous systems map IP addresses to approximate locations, the limits of accuracy, and the privacy concerns arising from both network operators and large‑scale data services.
This article explains how WKMS addresses rising data‑protection regulations by offering a hierarchical key‑management service, masking SDK, AES‑based encryption, robust disaster‑recovery, and high‑throughput performance testing, illustrating a secure yet scalable solution for modern enterprises.
This article introduces Hashcat, the world’s fastest password‑recovery tool, outlines its extensive feature set, provides the project’s GitHub address, and explains how to download, install, and run basic commands with common options for various hash types and attack modes.
A Sichuan hot‑pot restaurant was ordered by the court to stop forcing customers to scan QR codes for ordering, as the practice unlawfully collected personal data such as WeChat nickname, avatar, phone number, and location, violating privacy and consumer rights.
GitHub announced that, starting in 2023, every code contributor must enable two‑factor authentication or lose the ability to push code, a move aimed at strengthening account security across its massive developer ecosystem despite low current adoption rates.
This article explains how chat applications like WeChat protect messages with asymmetric and symmetric encryption, why network administrators generally cannot read chat content, and what alternative monitoring methods (such as installed surveillance software, system vulnerabilities, or compromised private keys) could expose your conversations.
The article explains how modern chat applications protect communication with asymmetric and symmetric encryption, why network eavesdropping alone cannot reveal messages, and how installed monitoring software or system vulnerabilities can still expose chat records, emphasizing the need for regular updates and careful device usage.
The article presents a comprehensive design of an end‑to‑end data warehouse for information‑security governance, detailing background motivations, multi‑layer data architecture, dimension modeling, bus‑matrix mapping, real‑time (lambda/kappa) processing, data‑dictionary integration, and future directions toward unified streaming‑batch solutions.
A new Inno Stealer malware campaign masquerades as a legitimate Windows 11 upgrade installer, using a spoofed Microsoft site to distribute an infected ISO that creates hidden scripts, disables security, and steals browser data and cryptocurrency wallets, posing a serious information‑security threat.
Mullvad Privacy Companion, a free open‑source Firefox extension, centralizes privacy tools, disables WebRTC IP leaks, supports SOCKS5, and is being adapted for Chromium browsers, while still in testing and inviting user feedback via email.
Recent developments in China’s tech sector include the Academy of Sciences ending CNKI access, Loongson’s upcoming programming framework, Huawei’s $15 million telecom equipment delivery to Russia, ASML’s chip‑recycling revelation, TSMC founder’s critique of US chip expansion, Alibaba Cloud’s new VMware service, SAP’s Russian loss, and Oracle’s Java crypto fix.
The article reviews the fifteen dependency‑management guidelines, discusses how to apply them in practice, and lists both open‑source and commercial tools—including Google’s Open Source Insights, Snyk, WhiteSource, Fossas, Anchore, OpenSCA, and MurphySec—while also highlighting differing analysis strategies and related research reports.
This article provides a comprehensive analysis of Zero Trust security, explaining its core principles, SDP‑based architecture, various implementation models—including user‑to‑resource and service‑to‑service schemes—deployment options, practical use cases, and guidance for successful enterprise adoption.
This article explains how everyday network protocols such as DNS, HTTP, and IP routing expose your traffic to eavesdropping, hijacking, and spoofing, and it reviews practical mitigations like DNSSEC, DoH, ODoH, TLS 1.3, HSTS, and user‑focused security hygiene.
This article introduces concise penetration testing dictionaries and shares a high‑efficiency brute‑force wordlist, providing free resources for security engineers seeking effective attack payloads and encouraging community access to valuable cybersecurity tools.
This article provides a comprehensive overview of essential information security technologies, covering network attacks such as SQL injection, XSS, CSRF, DDoS, DNS and TCP hijacking, system vulnerabilities like stack overflow and privilege escalation, and core cryptographic concepts including symmetric/asymmetric encryption, key exchange, hashing, encoding, and multi‑factor authentication.
A CCTV investigation revealed that some mobile browsers and integrated third‑party SDKs silently read users’ clipboard, capturing bank account numbers, passwords and other personal data in plaintext even when running in the background, highlighting serious privacy risks under China’s Personal Information Protection Law.
This article reveals a newly disclosed Spring framework RCE 0‑day vulnerability caused by unsafe Java serialization, rates it as dangerous, explains why Java 8 remains unaffected, and warns developers against indiscriminate JDK upgrades while comparing it to the Log4j2 incident.
This article surveys the evolution of cryptography from ancient Mesopotamian cipher sticks through classical ciphers, the Enigma machine, modern public‑key systems, and multi‑party computation, then explains the concept, current challenges, and future directions of privacy‑preserving computation technologies.
This article provides a comprehensive overview of a token‑based security authentication system, covering terminology, development background, objectives, functional points, technology selection, OAuth2 grant types, JWT fundamentals, authentication flow, credential renewal, and interface design for unified access control across microservices.
This presentation outlines the landscape of black and gray market activities in China's residential real‑estate platform, describes the various fraud scenarios, details intelligence collection, tracing architecture, and anti‑fraud measures, and shares typical cases such as fake C‑side registrations and crawler attacks.
This article explains the fundamental differences between JSON Web Token (JWT) and OAuth2, describes how each works, provides code examples of JWT structure, outlines OAuth2 roles and flows, and discusses practical scenarios, advantages, and drawbacks for securing APIs.
The article outlines the need for a unified account management system in enterprise platforms and details a token‑based authentication solution using OAuth2 password grant and JWT, describing its advantages, workflow, technical selection, and interface design for secure cross‑service integration.
This article explains why Windows Defender is generally sufficient, how security professionals can unlock the hidden Microsoft Advanced Protection Service (MAPS) via Group Policy or PowerShell, and provides additional configuration tips for ransomware protection, signature updates, and cloud‑based blocking.
This article presents a detailed technical analysis of the Y‑BotManager anti‑spam system, describing its architecture, the reverse‑engineering process of its SensorData generation, the device and user‑interaction features used for bot detection, and the practical attempts to bypass the protection.
The newly disclosed Linux kernel vulnerability CVE‑2022‑0847, dubbed “Dirty Pipe,” affects kernels 5.8 and later (including many Android 12 devices), allowing unprivileged users to overwrite read‑only files and gain root privileges, with existing PoC/EXP and patches already released.
This article explains two high‑severity Spring Cloud Gateway vulnerabilities (CVE‑2022‑22946 and CVE‑2022‑22947), outlines the affected versions, describes how attackers can exploit exposed Actuator endpoints, and provides concrete mitigation steps such as upgrading to safe releases or disabling the gateway actuator.
This article explains the remote code execution flaw in Spring Cloud Gateway's Actuator endpoint (CVE‑2022‑22947), lists the affected versions, and provides mitigation steps such as restricting endpoint exposure, upgrading to patched releases, and applying operational hardening best practices.
This article examines the origins, strategic importance, architecture, and key features of ZTO’s internally‑developed “Box” platform, illustrating how it unifies seamless user experience with deep security through zero‑trust principles, cross‑platform development, and integrated collaboration tools for a large logistics enterprise.
This article explains the Spectre hardware vulnerability, how it leverages speculative execution and side‑channel attacks to read arbitrary memory, and reviews the browser‑level defenses such as cache policies, timer reduction, rel="noopener", COOP, COEP and CORB that aim to mitigate its impact.
An investigation reveals how weak credentials like "admin" and "123456" persisted in Ukraine’s military control systems, exposing massive data to low‑skill attackers and highlighting the urgent need for stronger password policies across critical infrastructure.
This article outlines how Haodf Online implements a closed‑loop partner data security framework—covering background regulations, SDL‑based lifecycle stages, partner information handling, security assessment, API testing, monitoring, and continuous improvement—to protect sensitive medical data across its ecosystem.
The article reveals how millions still use weak passwords like "123456", highlights a Ukrainian military system compromised by default credentials, and offers practical guidelines for creating stronger passwords to protect personal and organizational data.
This article explains why Docker, the dominant container runtime, introduces significant security risks, outlines eight key container‑security challenges, provides 26 practical Docker hardening recommendations, adds seven Kubernetes protection best practices, and lists eleven essential questions for assessing a secure cloud‑native environment.
This article recounts how a Chinese fintech company's automated web‑crawler, built to query a municipal residence‑permit system, overloaded the server, triggered police action, led to criminal charges for the CTO and programmer, and offers lessons on the legal risks of large‑scale data scraping.
This article explains the fundamentals of symmetric, asymmetric, and hybrid encryption, compares their strengths and weaknesses, discusses key distribution challenges, and illustrates how combining both methods can address security gaps while highlighting potential man‑in‑the‑middle attacks.
This presentation details the current landscape of black and gray market activities in the residential services sector, describes typical fraud scenarios such as fake user registrations and crawler attacks, and outlines Beike's intelligence collection, tracing capabilities, and multi‑stage anti‑fraud operations to detect, investigate, and mitigate these threats.
This article outlines the current data security challenges and trends in digital transformation, presents Alibaba Cloud's privacy-enhancing computing approach with the DataTrust product, and details the DSMM framework, lifecycle protection, and practical solutions for secure data sharing and usage.
On January 25 Linus Torvalds posted a joking README in the Linux GitHub repository that claimed to delete Linux, which turned out to be a demonstration of a “fake‑commit” vulnerability that lets attackers host arbitrary files via special URLs without appearing in the commit history.
This article introduces several widely used internal network penetration and tunneling tools—including NPS, FRP, EW, and Ngrok—explains their core principles, features, and provides step‑by‑step installation and configuration commands for exposing services such as HTTP, SSH, RDP, and file sharing to the public internet.
Recent Chinese security alerts claim hackers exploited Vue.js and SonarQube to launch XSS attacks and steal source code, but the Vue creator clarifies that the vulnerabilities stem from backend API authentication, not the framework itself, while still acknowledging potential XSS risks in Vue applications.
This article examines the rapid growth of China’s digital economy, the escalating risk of data leaks, and how digital watermarking—across images, text, and databases—can be applied to trace leaks, protect privacy, and address practical challenges in e‑commerce environments.
A recent Austrian court ruling deems the use of Google Analytics on European websites illegal under GDPR, highlighting data transfer concerns, the role of NOYB, and the broader impact on U.S. tech services operating in the EU.
The article examines how the proliferation of Linux‑powered IoT devices has made them prime targets for malware families like XorDDoS, Mirai and Mozi, highlighting their rapid growth, attack techniques, and recommended defensive measures for operators.
The Biden administration is scrutinizing Alibaba's cloud services for potential national security risks, focusing on data storage practices, possible Chinese government access, and the broader impact on U.S.-China tech relations, while Alibaba's shares dip amid regulatory pressure.
This article examines how banks can adopt cloud‑native container technologies while addressing security challenges through a four‑layer architecture covering infrastructure, platform, container, and full‑lifecycle risk mitigation, offering practical recommendations for robust, compliant cloud operations.
This article explores the MD5 hashing algorithm in depth, detailing its fixed 128‑bit output, the padding and block processing steps defined in RFC 1321, the internal round functions, and the reasons it is considered irreversible yet vulnerable to collisions and various cracking techniques such as brute‑force, rainbow tables, and differential attacks.
The article explores the rapid growth of China's digital economy, the escalating risk of data leaks, and how digital watermarking—across images, text, and databases—can be employed to trace leakage sources, protect e‑commerce data, and address practical challenges in security implementations.
This article introduces firewall fundamentals, traces their evolution, compares network, application, and database firewalls, explores Linux firewall implementations with iptables and Netfilter, and discusses performance metrics, limitations, and practical use cases for securing enterprise networks.
This article explains data security fundamentals, the full data lifecycle, the 4A/5A security model, trust‑level goals, and a comprehensive tool framework covering identity authentication, permission control, asset protection, and governance strategies to protect data throughout its lifecycle.
This article presents a comprehensive study on detecting malicious webpages using heterogeneous graph structures and Graph Convolutional Networks, detailing background challenges, technical approaches, model iterations, optimization techniques for large‑scale deployment, experimental results, and directions for future research.
This article explains data masking, its importance for protecting sensitive information, and details both static and dynamic masking methods—including nullification, randomization, substitution, symmetric encryption, mean value, and offset rounding—along with practical examples and implementation considerations.
This article explains the principles, features, and implementation details of carrier‑based one‑click login and mobile number verification services offered by China Mobile, China Telecom, and China Unicom, highlighting SDK usage, network requirements, caching, and security considerations.
The FTC urges companies to urgently patch Log4j2 (CVE‑2021‑44228) after a month of attacks by state‑backed hackers, warning of massive data leaks, financial loss, and potential lawsuits, while highlighting past cases like Equifax’s $700 million settlement.
The article reviews the Xi'an “One Code Pass” health‑code platform, covering its award recognition, recent service outages, capacity‑planning calculations, security‑platform procurement, Ministry engineer inspection, and the identified technical bottlenecks such as lack of CDN for static assets and insufficient outbound bandwidth.
This article presents a comprehensive study on detecting malicious webpages by constructing heterogeneous graphs from URL redirection and textual features, applying Graph Convolutional Networks and Cluster‑Text‑GCN models, detailing optimization techniques for large‑scale deployment, and outlining future research directions.
This article presents the background, industry challenges, design principles, architecture, core capabilities, and implementation details of JD Tech's privacy compliance detection system for mobile applications, highlighting both static and dynamic analysis techniques to identify and remediate personal data risks.
Photon is a fast, multithreaded Python web crawler that extracts URLs, files, and various intelligence from targets, offering flexible options, Ninja mode, and extensive command‑line parameters while supporting Linux, Windows, macOS, and Termux environments.
This article outlines the Log4j2 security vulnerability, notes that Logback shares the same flaw, and provides comprehensive remediation advice—including upgrading to Log4j2 2.17, coordinating development and security teams, testing environments, JDK updates, and consulting professional security services.
The author recounts a step‑by‑step penetration test against a fraudulent reseller, detailing OSINT gathering, port scanning, FTP brute‑forcing, JavaScript injection, location tracking, domain hijacking, and the deployment of custom Python scripts for each stage.
This article introduces web security testing, explains why it is essential, describes common vulnerabilities such as weak passwords, XSS, CSRF, SQL injection, authorization bypass, and file upload issues, and offers practical prevention measures and testing guidelines for developers and testers.
A recent investigation uncovers how the XiaoHongShu app repeatedly pushes videos that expose minors’ personal privacy, featuring inadequate content review, legal concerns, and platform apologies, while highlighting new network protection regulations and the company's pledged actions to curb such violations.
This article provides a comprehensive analysis of SQL injection vulnerabilities, covering their principles, testing tools, repair methods, and defense strategies, with practical implementation guidance for secure web application development.
The jointly authored whitepaper by China Software Testing Center, National Information Center, and Ant Group introduces a data security composite governance model, detailing strategic, managerial, and technical dimensions, multi‑view security measurement, and practical implementation guidance for enterprises under the new data security law.
Zhengzhou Bank’s electronic banking system passed the Level 2 security‑operation assessment of the DevSecOps standard, showcasing how standardization, tool empowerment, and a culture of shared security responsibility can elevate a financial institution’s DevOps practices to an advanced domestic level.
The article reports on Zhengzhou Bank's successful DevSecOps assessment at the 2021 GOLF+ IT New Governance Forum, detailing the bank's interview on implementation practices, cultural, process and technical measures, and the broader significance of the national DevOps maturity model for digital governance.
In its 2021 technology report, JD.com highlights over 220 published papers, 60 competition awards, 260 breakthroughs—including advances in trustworthy AI, quantum computing, multimodal AI, and supply‑chain automation—while showcasing cloud‑native infrastructure, information‑security innovations, and numerous industry‑focused applications across logistics, retail, and smart cities.
The article explains the Log4j2 remote code execution flaw caused by unsafe JNDI lookups, outlines its widespread impact on Java applications and major Chinese tech firms, and provides concrete emergency mitigation steps such as JVM parameter changes, firewall rules, and upgrading to version 2.17.0.
A network‑security enthusiast shows step‑by‑step how to use Kali's zip2john and John the Ripper to break a password‑protected Cain & Abel zip file, revealing the password "darknet123" after five hours of brute‑force cracking.
This article examines the Log4j2 critical vulnerability, explains why merely having log4j‑api does not guarantee exposure, demonstrates step‑by‑step reproduction in a Spring Boot project, analyzes the JNDI injection mechanism, and outlines temporary mitigations and official fixes.
The Log4Shell (CVE-2021-44228) vulnerability in Apache Log4j, first reported on November 24, has triggered a global security crisis, affecting thousands of organizations, enabling rapid exploitation for crypto mining and data theft, and prompting massive attack volumes that rival historic flaws like Heartbleed and EternalBlue.
Meta’s latest privacy tool lets users pre‑upload intimate images to generate a unique digital fingerprint that platforms match and delete if re‑uploaded, but its reliance on exact‑match hashing, similar to PhotoDNA, raises questions about effectiveness, privacy, and the broader challenges of end‑to‑end encryption delays at the company.
This article explains the fundamentals of Java Naming and Directory Interface (JNDI), its architecture and typical usage, then walks through a step‑by‑step RMI implementation and demonstrates how JNDI can be abused to craft a Log4j2 remote code execution attack, complete with full code samples and mitigation advice.
This article explains why Java bytecode is easy to decompile and presents four major protection methods—isolating the program, encrypting class files, converting to native code, and applying code obfuscation—detailing their implementations, advantages, and limitations.
This article explains why Java bytecode is easy to decompile and presents several practical protection methods—including isolation, class file encryption, native code conversion, and various obfuscation techniques—while discussing their advantages, limitations, and typical use cases.
This comprehensive tutorial introduces several widely used intranet penetration and proxy tools—including nps, frp, EW, and ngrok—explaining their core principles, key features, installation steps, configuration details, and practical usage scenarios for secure remote access and service exposure.
The article examines how the Personal Information Protection Law creates a new authorization framework and introduces the “computable but not identifiable” concept, arguing that trusted‑computing technologies and controlled environments can reconcile strict privacy safeguards with the data‑driven needs of AI and other industries.
Swedish parents, frustrated by the costly and unusable official Skolplattformen app, reverse‑engineered its API and released the open‑source Öppna Skolplattformen, sparking legal battles, privacy debates, and a community‑driven alternative that now serves thousands of families.
Mozilla’s security team has disabled the malicious ‘Bypass’ and ‘Bypass XM’ Firefox extensions that abused the proxy API, affecting hundreds of thousands of users, and provides steps to identify and remove them while highlighting recent Firefox updates and new security features.
This article explains firewalls by defining their purpose, describing how they monitor and filter network traffic, outlining their architecture—including screening routers and proxy servers—and listing their key security functions such as access control, traffic filtering, logging, and attack detection.
Security researchers at ESET reveal that the Hive ransomware group has expanded its attacks to Linux and FreeBSD systems, releasing a buggy yet feature‑rich Linux variant written in Go, while noting a broader industry trend of ransomware operators developing Linux encryptors to compromise virtualized server environments.
This article examines the security challenges faced by mobile applications, outlines static, dynamic, and business‑level attack vectors, and presents comprehensive hardening techniques—including environment detection, data collection, code and algorithm obfuscation, and virtual‑machine protection—illustrated with iOS‑specific examples and code snippets.
This article introduces several widely used intranet penetration tools—including nps, frp, EW, and ngrok—explaining their core principles, key features, and step‑by‑step configuration commands for establishing secure tunnels, proxy services, and remote access to internal resources.
Even when you use a browser’s incognito or private mode, your search queries, visited sites, and personal data can still be captured by browsers, cookies, your employer, ISP, and even input methods, making true online anonymity virtually impossible.
This technical guide reviews several popular intranet penetration and proxy tools—including nps, frp, EW, and ngrok—explaining their core principles, key features, installation steps, configuration examples, and advanced options such as encryption, compression, dashboards, and multi‑level port mapping.
The 2021 Pan‑Terminal Security Workshop, jointly organized by the China Computer Federation and OPPO at Xi'an Jiaotong University, gathered leading academics and industry experts to discuss AI‑driven security, kernel protection, and blockchain finance, offering livestream access and video recordings for the research community.
Discover ten easy‑to‑use web log security analysis tools that help you trace attackers, identify vulnerabilities, and visualize malicious activity, ranging from open‑source visualizers to enterprise‑grade SIEM platforms.
The article recounts how a developer created the “Da Niu Assistant” app to spoof DingTalk check‑ins, generated several hundred thousand yuan in revenue, was analyzed by Alibaba security engineers, and ultimately led to a five‑year‑six‑month prison sentence, highlighting the risks of security‑related startups.
This article details how a former technical director inserted malicious code into a company's WeChat payment platform, diverting millions of yuan to his own account, the subsequent investigation, witness testimonies, and the court's judgment sentencing him for large‑scale theft.
Recent reports reveal that foreign privacy‑tracking apps can cause major Chinese services like Meituan, major layoffs at Beike's Shanghai R&D team, and an FSF warning that Windows 11 undermines user freedom, highlighting growing concerns over data privacy, corporate restructuring, and open‑source advocacy.
This article walks through creating a Python script that uses the pywifi library to brute‑force Wi‑Fi passwords, shows how to improve flexibility with command‑line arguments, and demonstrates two graphical interfaces built with Tkinter for a more user‑friendly cracking tool.
