Aggregator
AI 是否真的影响了工作岗位招聘?
5 days 19 hours ago
对 2023 年 1 月至 2025 年 10 月发布的近 1.8 亿条招聘信息的分析显示:2025 年职位发布数量下降了 8%,职位数量下降幅度最大的是创意执行类的工作,包括计算机图形艺术家(-33%)、摄影师(-28%)和作家(-28%),但创意高管类工作岗位数量变化很小;企业合规专员(-29%)、可持续发展专员(-28%)和环境技术员(-26%),这一趋势显然和美国政府当前的政策相关,贸易合规专员职位数增长了 18%,这与美国的关税政策相关;医疗记录员职位数下降 20%,可能和 AI 能自动化记录病例相关;机器学习工程师职位增长了 40%;高级领导职位数量变化不大,其中数据工程总监职位数增长 23%;网红营销专家职位数增长 18.3%;虽然有很多关于 AI 取代软件工程师的讨论,但软件工程师是当前最稳定的工作之一;客服代表并没有被 AI 大规模取代,其职位数仅仅下降 4%。
Microsoft Edge security advisory (AV25-720)
5 days 19 hours ago
Canadian Centre for Cyber Security
Ядро Linux впервые запущено прямо в браузере — без установки и виртуальных машин
5 days 19 hours ago
Проект показал большой потенциал WebAssembly для запуска сложных системных компонентов.
“黄金入场券”变“卖身契”:美国网络安全人才计划为何面临崩盘?
5 days 19 hours ago
在网络安全人才紧缺的时代,美国政府曾推出一个看起来很完美的计划:用奖学金换取年轻人的为联邦政府服务承诺。
Japanese retailer Askul confirms data leak after cyberattack claimed by Russia-linked group
5 days 19 hours ago
The company said the breach exposed contact information and inquiry details from users of its online stores — Askul, Lohaco and Soloel Arena — as well as supplier data stored on its internal servers.
[Control systems] ABB security advisory (AV25-719)
5 days 19 hours ago
Canadian Centre for Cyber Security
Microsoft: Patch for WSUS flaw disabled Windows Server hotpatching
5 days 19 hours ago
An out-of-band (OOB) security update that patches an actively exploited Windows Server Update Service (WSUS) vulnerability has broken hotpatching on some Windows Server 2025 devices. [...]
Sergiu Gatlan
OAuth Device Code Phishing: Azure vs. Google Compared
5 days 20 hours ago
Device code phishing abuses the OAuth device flow, and Google and Azure produce strikingly different attack surfaces. Register for Huntress Labs' Live Hack to learn about attack techniques, defensive tactics, and get an Identity Security Assessment. [...]
Sponsored by Huntress Labs
Бывший создатель руткитов и ботнетов — теперь официальный разработчик Microsoft. Его новый продукт: отладчик ядра
5 days 20 hours ago
Тень ZeroAccess вернулась — но уже с цифровой подписью Microsoft.
Product showcase: Cogent Community democratizes vulnerability intelligence with agentic AI
5 days 20 hours ago
The volume of threat intelligence data has grown exponentially, but the ability to interpret and act on it has not. Every day brings new CVE disclosures, exploit releases, and vendor advisories. Teams are buried under overlapping feeds, inconsistent formats, and fragmented context. Even with advanced tools, analyzing raw intelligence into prioritized, evidence-based action remains one of the hardest problems in modern security operations. Cogent Security addresses this problem head-on with its industry-first AI taskforce for … More →
The post Product showcase: Cogent Community democratizes vulnerability intelligence with agentic AI appeared first on Help Net Security.
Help Net Security
美国学者向欧洲申请研究拨款
5 days 20 hours ago
欧盟发现申请拨款的美国学者兴趣激增,因为越来越多的美国研究人员寻求海外选项,作为对特朗普(Donald Trump)攻击高等教育的回应。欧盟今年收到创纪录数量的顶级科研与创新拨款申请,其中来自美国的对一项关键基金的申请数量是 2024 年的三倍。2025 年向欧盟基础研究资助机构 European Research Council(ERC) 和欧盟博士和博士后研究计划 Marie Skłodowska-Curie Actions (MSCA)的申请量均创历史新高。欧盟研究事务专员叶扎哈里耶娃(Ekaterina Zaharieva)表示,激烈的竞争是关于人才而不是资金,人人都想要吸引人才。面向高级研究员的 ERC 申请量比去年增长 31%,比 2023 年增长了 82%。MSCA 收到了 17058 份申请,为历史最高。特朗普政府今年取消了数十亿美元的联邦研究资金,取消了与其政策不符的 DEI 和气候变化等主题的资助。
Hackers Help Organized Crime Groups in Cargo Freight Heists, Researchers Find
5 days 20 hours ago
Proofpoint researchers have observed recent hacking campaigns supporting cargo theft
Chrome 142 Released: Two high-severity V8 flaws fixed, $100K in rewards paid
5 days 20 hours ago
Google released Chrome 142, fixing 20 flaws, including two high-severity V8 bugs, and awarded $100,000 in bug bounties. Google addressed 20 flaws in Chrome version 142, including high-severity bugs that impact the V8 engine. The IT giant awarded $100,000 in bounties for two issues in the V8 JavaScript engine. The two vulnerabilities are tracked as […]
Pierluigi Paganini
Radar
5 days 20 hours ago
You must login to view this content
cohenido
[Control systems] CISA ICS security advisories (AV25–718)
5 days 20 hours ago
Canadian Centre for Cyber Security
共勉
5 days 20 hours ago
CVE-2025-12324 | TablePress Plugin up to 3.2.4 on WordPress Shortcode table cross site scripting
5 days 20 hours ago
A vulnerability was found in TablePress Plugin up to 3.2.4 on WordPress. It has been classified as problematic. Affected is the function table of the component Shortcode Handler. The manipulation leads to cross site scripting.
This vulnerability is listed as CVE-2025-12324. The attack may be initiated remotely. There is no available exploit.
vuldb.com
Beware of New Phishing Attack that Abuses Cloudflare and ZenDesk Pages to Steal Logins
5 days 20 hours ago
A sophisticated phishing campaign has emerged, exploiting the trust placed in legitimate cloud hosting services. Threat actors are leveraging Cloudflare Pages and ZenDesk platforms to conduct large-scale credential theft operations targeting unsuspecting users. The campaign demonstrates a concerning trend where established infrastructure services become vectors for social engineering attacks. Security researchers have identified over 600 […]
The post Beware of New Phishing Attack that Abuses Cloudflare and ZenDesk Pages to Steal Logins appeared first on Cyber Security News.
Tushar Subhra Dutta
Red Hat security advisory (AV25-717)
5 days 20 hours ago
Canadian Centre for Cyber Security