Aggregator

TensorFlow 是由 Google 开发的开源机器学习框架，用于数值计算和构建机器学习模型。它提供丰富的技术文档、模型库及工具支持，助力开发者高效实现 AI 项目。

上周关注度较高的产品安全漏洞(20250901-20250907)

国家信息安全漏洞共享平台（以下简称CNVD）本周共收集、整理信息安全漏洞639个，其中高危漏洞389个、中危漏洞212个、低危漏洞38个。

同心者同路，同路者共赢！

A vulnerability has been found in Microsoft Edge and classified as critical. The affected element is an unknown function of the component Scripting Engine. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2018-0758. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability described as critical has been identified in Microsoft Edge. This issue affects some unknown processing of the component Scripting Engine. Such manipulation leads to memory corruption. This vulnerability is documented as CVE-2018-0834. The attack can be executed remotely. Additionally, an exploit exists. Applying a patch is advised to resolve this issue.

A vulnerability was found in Microsoft Edge and ChakraCore. It has been declared as critical. This affects an unknown part of the component Scripting Engine. Such manipulation leads to memory corruption. This vulnerability is listed as CVE-2018-8355. The attack may be performed from remote. In addition, an exploit is available. It is advisable to implement a patch to correct this issue.

安全迭代，智启新程。

ISC.AI沙盒大赛、CSOP实战大会引领AI实战风向；绿盟发布AISOC新成果，盛邦战略投资布局卫星互联网安全；产业生态合作持续深化。

Не верь зарплатным таблицам — они ведут к DOWNSHELL.

文章探讨了招聘欺诈成为新的网络安全威胁：攻击者通过伪造身份、简历和背景调查入职企业，在内部获取敏感权限并实施破坏。远程招聘的普及使这一威胁加剧。文章建议采用零信任原则和最小权限管理来防范此类风险。

When Attackers Get Hired: Today’s New Identity Crisis What if the star engineer you just hired isn’t actually an employee, but an attacker in disguise? This isn’t phishing; it’s infiltration by onboarding. Meet “Jordan from Colorado,” who has a strong resume, convincing references, a clean background check, even a digital footprint that checks out. On day one, Jordan logs into email and attends

According to the Wall Street Journal, the deceptive message, purporting to come from Representative John Moolenaar, was dispatched in July to multiple U.S. trade groups, prominent law firms and government agencies. WASHINGTON, Sept. 7 (Reuters) – U.S. authorities have launched an investigation into a sophisticated malware-laden email that appears to have been crafted to glean […]

The post U.S. Officials Investigating Cyber Threat Aimed at China Trade Talks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

该网站使用技术性、分析性和 profiling cookie 来优化用户体验、提供个性化服务并进行广告投放。用户可通过 Cookie 中心管理偏好或访问隐私政策获取更多信息。

深圳市正浩创新科技股份有限公司招聘信息安全工程师（基础安全/数据安全/应用安全方向），负责日常监控与事件响应（基础）、数据分类分级与加密脱敏（数据）、代码扫描与漏洞修复（应用）。要求相关专业背景及技能。

Venezuela’s President Maduro shows Huawei Mate X6 gift from China’s President Xi Jinping, hailing it as “unhackable” by U.S. spies. Last week, Venezuelan President Nicolás Maduro showcased a Huawei Mate X6 smartphone, reportedly gifted by China’s President Xi Jinping, claiming that US cyber spies cannot hack it. Venezuelan President Maduro said that his device is […]

委内瑞拉总统马杜罗展示了中国领导人习近平赠送的华为Mate X6手机，并称其“不可被美国网络间谍破解”。尽管一体化设计可能增加难度，但新操作系统也可能存在漏洞。

本文通过回顾人工智能技术发展历程，探讨下一代人工智能技术的发展契机，并针对当前技术发展的迷雾与噪音提出了自己的观点。

活动时间：2025.09.08-09.30