Aggregator

Месопотамия преподносит нам новые сюрпризы.

Authlete launched Authlete 3.0, offering support for OpenID for Verifiable Credential Issuance (OID4VCI). This new capability empowers organizations—including governments, financial institutions, and educational establishments—to revolutionize how they issue and manage user credentials. With the introduction of Authlete 3.0, Authlete now offers a simple API solution for quickly issuing interoperable verifiable credentials (VCs) conformant with OID4VCI. Built on OAuth and OIDC—proven and widely used global standards for authentication and authorization—OID4VCI supports various credential formats, including SD-JWT … More →

The post Authlete 3.0 empowers organizations to improve how they issue and manage user credentials appeared first on Help Net Security.

Искусственный голос мастерски понимает нюансы и паузы человеческой речи.

超越苹果，英伟达再度登顶「全球第一」；OpenAI 据悉同美国加州洽谈，推动向营利性结构转变；腾讯开源最大 MoE 大语言模型

为了揭开人类衰老的秘密，研究人员可能最好观察在沙发上打盹的宠物，而不是实验室中的小鼠。近日公布的一项研究结果显示，随着猫的年龄增长，它们的大脑出现了萎缩和认知能力下降的迹象，与衰老的小鼠大脑的变化相比，这种退化更类似于衰老的人类。这一结果是名为“翻译时间（Translating Time）”的大型项目的一部分，该项目比较了 150 多种哺乳动物的大脑发育情况，目前正在扩展到包括衰老的数据。研究人员希望这些数据将有助于破解与年龄相关的疾病的原因，特别是影响大脑的疾病，如阿尔茨海默病。研究小组收集的大脑扫描显示，老年猫的脑容量变化与老年人的脑容量变化相似。先前的研究还表明，猫可以积聚斑块和异常蛋白质缠结，类似于人类阿尔茨海默病的特征。

Welcome to ANY.RUN‘s monthly updates, where we share our latest achievements and improvements.  October has been another productive month here at ANY.RUN, filled with new features to enhance your cybersecurity toolkit. We’ve introduced TI Lookup Notifications for real-time threat updates, rolled out a newly improved Linux sandbox for smoother malware analysis, and added the ability to export STIX reports for seamless […]

The post Release Notes: TI Lookup Notifications, Upgraded Linux Sandbox, STIX Reports, <br>and More  appeared first on ANY.RUN's Cybersecurity Blog.

Synology addressed a critical vulnerability in DiskStation and BeePhotos NAS devices that could lead to remote code execution. Taiwanese vendor Synology has addressed a critical security vulnerability, tracked as CVE-2024-10443, that impacts DiskStation and BeePhotos. An attacker can exploit the flaw without any user interaction and successful exploitation of this flaw could lead to remote […]

Социальная сеть толкает детей в пропасть.

新闻速览 •《终端计算机通用安全技术规范》等3项网络安全国家标准获批发布 •OWASP推出三大AI应用安全指南 […]

当前，随着数字经济的快速发展，数字中国的建设在各行各业中蓬勃推进。金融作为数字化转型的先锋行业，其探索已经从浅 […]

Как животные продолжают вдохновлять ученых.

Symbiotic Security launched a real-time security for software development that combines detection and remediation with just-in-time training – incorporating security testing and training directly into the development process without breaking developers’ workflows. Backed with $3 million of seed funding from investors including Lerer Hippeau, Axeleo Capital, Factorial Capital, and others, the company has introduced its software-as-a-service that works with the developer’s Integrated Development Environment (IDE) and enables them to develop software more securely. A Ponemon … More →

The post Symbiotic provides developers with real-time feedback on potential security vulnerabilities appeared first on Help Net Security.

强网杯 2024 By W&M

AI安全指南

Google has released a new update for its Chrome browser, addressing two high-severity vulnerabilities. The Stable channel has now been updated to version 130.0.6723.116/.117 for Windows and Mac and version 130.0.6723.116 for Linux. The update will be rolled out to users over the next few days or weeks, and a complete list of changes is available in the Chrome […]

The post Google Patches High-Severity Vulnerabilities in Chrome appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Шифрование Encrypted Client Hello в центре внимания.

A vulnerability, which was classified as problematic, was found in cURL. Affected is an unknown function. The manipulation leads to comparison using wrong factors. This vulnerability is traded as CVE-2024-9681. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in HumHub up to 1.16.2 on Linux. This issue affects some unknown processing. The manipulation leads to observable response discrepancy. The identification of this vulnerability is CVE-2024-52043. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in Apple Mac OS X up to 10.11.4 and classified as critical. This vulnerability affects unknown code of the component Kernel. The manipulation leads to memory corruption. This vulnerability was named CVE-2016-1827. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Open Networking Foundation sdran-in-a-box and onos-a1t. Affected is the function DeleteWatcher. The manipulation leads to denial of service. This vulnerability is traded as CVE-2024-48809. It is possible to launch the attack remotely. There is no exploit available.