Aggregator

对AI的情感依赖

Microsoft fixed over 60 flaws, including an actively exploited Windows kernel zero-day, in its latest Patch Tuesday updates. Microsoft’s Patch Tuesday security updates for November 2025 addressed 63 vulnerabilities impacting Windows and Windows Components, Office and Office Components, Microsoft Edge (Chromium-based), Azure Monitor Agent, Dynamics 365, Hyper-V, SQL Server, and the Windows Subsystem for Linux […]

安全公司火绒报告，曾经的装机软件鲁大师被发现会绕过北京地区投放推广。安全研究人员发现，包含成都奇鲁科技有限公司、天津杏仁桉科技有限公司在内的多家软件厂商，正通过云控配置方式构建大规模推广产业链，远程开启推广模块以实现流量变现。这些厂商通过云端下达配置指令，动态控制软件的推广行为，不同公司及其产品的推广方式各有差异。以成都奇鲁科技旗下的鲁大师为例，其推广行为涵盖但不限于：利用浏览器弹窗推广"传奇"类页游、在未获用户明确许可的情况下弹窗安装第三方软件、篡改京东网页链接并插入京粉推广参数以获取佣金、弹出带有渠道标识的百度搜索框、植入具有推广性质且伪装为正常应用的浏览器扩展程序等。以鲁大师为例，软件会根据用户所在地区针对性的投放推广云控配置，对北京地区的用户会减少或不下发推广相关的云控配置，它还会通过遍历检测当前系统信息的方式判断是否为技术人员、是否在虚拟机中、是否为业务会员等相关数据，从而针对性调整云控配置。

极客公园创新大会 2026 首批嘉宾揭晓！

​AI To B 突围的新解法就在非共识里。

Вспоминаем золотой век физических носителей, которому не смог помешать стриминг.

ProxyBridge is a lightweight, open-source tool that lets Windows users route network traffic from specific applications through SOCKS5 or HTTP proxies. It can redirect both TCP and UDP traffic and gives users the option to route, block, or allow connections on a per-application basis. The tool operates at the kernel level using WinDivert, which means it works even with applications that are not proxy-aware. Users do not need to change any app settings or modify … More →

The post ProxyBridge: Open-source proxy routing for Windows applications appeared first on Help Net Security.

Ransomware Attack on British Pathology Lab Disrupted Patient Care for Months
British pathology laboratory services firm Synnovis has completed a forensics review of data stolen in a June 2024 ransomware attack and is notifying affected healthcare organizations. Those providers will be responsible for notifying their own affected patients, if deemed necessary, the firm said.

坦桑尼亚的“粮仓地区（BBRs）”是国家粮食供应的核心，贡献了全国超 38% 的玉米产量。然而 2018 年全国营养调查显示了一个矛盾现象：该国儿童发育迟缓和严重营养不良率最高的五个地区，全部位于这些农业高产区域。这一“粮仓悖论”引发关注：为何粮食主产区的儿童反而比非主产区更容易出现生长问题？中国农业大学和坦桑尼亚的研究人员发现背后的原因是饮食单一。研究发现，在非粮仓地区，粮食产量增加确实带来了更丰富的家庭饮食，这与营养改善直接相关；但在粮仓地区，尽管产量更高，家庭饮食多样性却没有显著提升。这可能与粮仓地区农业商业化程度高有关——农户更倾向于种植单一经济作物并出售，而非为自家消费种植多样化食物，导致“高产却饮食单一”的现象。研究指出，单纯提高粮食产量不足以解决儿童营养不良的问题，尤其是在农业商业化程度高的地区。

AI is transforming how businesses operate, but it’s also creating new, often hidden risks. As employees and business units eagerly embrace and experiment with AI solutions, many organizations are losing control over where and how AI is being used. A new threat is emerging: shadow AI. This unsanctioned use of AI tools without oversight from IT or security teams has quickly become a top concern for CISOs. According to Delinea’s 2025 AI in Identity Security … More →

The post Shadow AI risk: Navigating the growing threat of ungoverned AI adoption appeared first on Help Net Security.

A vulnerability described as critical has been identified in Http-solution Project Man up to 1.0. This impacts an unknown function of the file login.php of the component Login. The manipulation of the argument Password results in sql injection. This vulnerability is identified as CVE-2010-2134. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability, which was classified as critical, has been found in Giaard ProMan 0.1.0/0.1.1. Affected by this issue is some unknown functionality of the file center.php. Performing manipulation of the argument page results in code injection. This vulnerability is cataloged as CVE-2010-2137. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in Giaard ProMan 0.1.0/0.1.1. This affects an unknown part of the file elisttasks.php. Executing manipulation of the argument _SESSION[userLang] can lead to path traversal. This vulnerability is registered as CVE-2010-2138. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability, which was classified as critical, has been found in Mhproducts Projekt Shop. This affects an unknown part of the file details.php. Performing manipulation of the argument ilceler results in sql injection. This vulnerability is identified as CVE-2010-4845. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability was found in ProArcadeScript. It has been rated as critical. The affected element is an unknown function of the file game.php. Performing manipulation of the argument ID results in sql injection. This vulnerability is identified as CVE-2010-1069. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability marked as critical has been reported in Bouzouste Primitive CMS 1.0.9. Impacted is an unknown function of the file cms_write.php. Performing manipulation results in sql injection. This vulnerability is reported as CVE-2010-3482. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability described as problematic has been identified in Bouzouste Primitive CMS 1.0.9. The affected element is an unknown function of the file cms_write.php. Executing manipulation can lead to improper access controls. This vulnerability appears as CVE-2010-3483. The attack may be performed from remote. In addition, an exploit is available.

Новая эра обороны НАТО: она слышит всё… но не выдаст себя ничем.

A Russian-speaking threat actor has orchestrated an extensive phishing campaign that has registered over 4,300 malicious domains targeting travelers since the beginning of 2025. The sophisticated operation customizes phishing pages to impersonate legitimate travel industry giants including Airbnb, Booking.com, Expedia, and Agoda, deceiving unsuspecting users into surrendering payment card information under the guise of hotel […]

The post Phishing Attack Impersonates Travel Brands Using 4,300 Malicious Domains appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.