Aggregator

多智能体协作系统开发竞赛 - 这是当前AI技术发展的最前沿方向！

作为开发者，你一定深有体感：单一的AI模型已经无法满足复杂应用场景的需求。未来的AI系统将是多个专业化智能体协同工作的生态系统。每个智能体就像一个专业的开发者，在特定领域具备专家级能力，通过标准化协议实现无缝协作。

Maritime transport, the backbone of global trade, is adapting to shifting economic, political, and technological conditions. Advances in technology have improved efficiency, bringing innovations such as remote cargo monitoring, advanced energy management systems, and automation of various onboard operations. But modernization also comes with new security challenges. Ships equipped with new technologies have become attractive targets for criminals. Any attack on these systems can compromise safety and put human lives at risk. In March 2024, … More →

The post Maritime cybersecurity is the iceberg no one sees coming appeared first on Help Net Security.

When analysts at RH-ISAC found themselves spending 10 hours a week just collecting threat intelligence, they knew their process wasn’t sustainable. They were manually tracking blogs, RSS feeds, and social media channels, but it took too long to separate useful signals from irrelevant chatter. After adopting Feedly Threat Intelligence, the team reduced that time by more than 70 percent, dropping from 10 hours to just 2-3 hours a week. Stories like this are becoming more … More →

The post Can AI make threat intelligence easier? One platform thinks so appeared first on Help Net Security.

AI has moved to the top of the CISO agenda. Three in five CISOs see generative AI as a security risk, with many worried about sensitive data leaking through public tools. At the same time, most organizations are not blocking AI outright. Instead, they are trying to put guardrails in place so employees can use these tools without exposing data, according to the Proofpoint 2025 Voice of the CISO report. CISOs are also weighing AI’s … More →

The post How CISOs are balancing risk, pressure and board expectations appeared first on Help Net Security.

近期，美国有关部门宣布，已从勒索软件组织Zeppelin处扣押超过280万美元的加密货币。据悉，Zeppelin是一个已于2019至2022年间停止运作的勒索团伙。

除数字资产外，有关部门还查扣了7万美元现金和一辆豪华汽车。美国司法部在公告中指出：Zeppelin勒索软件组织曾在全球范围内对个人、企业及组织发起攻击，其中包括美国的相关企业。

其组织发起网络攻击后会对受害者的数据进行加密和窃取，通常会索要赎金，声称用于解密数据、承诺不公开数据或安排删除数据。在收到赎金后，其成员试图通过加密货币混币服务ChipMixer清洗资金，而该服务已于2023年3月被有关部门查封。他们使用的其他洗钱手段包括加密货币兑现金以及“结构化存款”——即把大额资金拆分成多笔小额存款，以规避银行的关注。

Zeppelin勒索软件组织于2019年末出现，是VegaLocker/Buran勒索软件的新变种，当时通过MSP（管理服务提供商）软件漏洞针对医疗和IT企业发起攻击。

2021年，在一段沉寂期后，Zeppelin的组织成员带着更新版本卷土重来，但后续攻击中使用的加密方案显得颇为粗糙。到2022年11月，Zeppelin团伙基本停止运作。彼时有消息称，早在2020年初，Unit221b的安全研究员就已掌握解密密钥，可帮助受害者免费恢复文件。

2024年1月有消息显示，Zeppelin勒索软件组织的源代码在一个黑客论坛上仅以500美元的价格售出。根据起诉书表明，即便勒索软件团伙成员停止网络犯罪活动数年，相关证据仍能揭露其当时恶行。 

此次扣押的280万美元据称多来自赎金收益。美国当局最近还宣布了其他类似的行动成果，包括从BlackSuit勒索软件团伙处查扣了价值100万美元的加密货币，从Chaos勒索软件团伙处查扣了价值240万美元的比特币。

扣押犯罪收益在打击勒索软件组织的行动中至关重要，尤其在未实施逮捕的案件中：这能阻止勒索软件组织及同伙利用这些资金重建基础设施或招募新成员。