Aggregator

AI 智能体显著抬高了企业治理难度和合规风险。

Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach

Pakistan-based threat actor APT36, widely known as Transparent Tribe, has shifted away from carefully crafted tools to a new approach called “vibeware” — AI-assisted malware produced in high volumes with little regard for quality. Rather than investing time in one sophisticated piece of code, the group uses AI coding tools to pump out dozens of […]

The post Transparent Tribe’s ‘Vibeware’ Shift Signals Rise of AI-Generated Malware at Industrial Scale appeared first on Cyber Security News.

Очередной скриншот или реальный взлом?

SpaceX 计划向太空发射 1 百万颗卫星，理由是建造太空数据中心。暂不讨论太空数据中心的可行性（没什么可行性），这一百万颗卫星会如何影响我们每一个人？SpaceX 已经向 FCC 递交了发射提议，对该计划的公众意见征集于上周五结束，逾千条公众意见绝大多数持反对立场，要求 FCC 停止推进该计划。SpaceX 已经向地球轨道发射了上万颗卫星，一百万颗则是已有数量的一百倍。SpaceX 平均每周发射两次，它的卫星不断上天，也不断坠落。越来越多的证据表明，火箭发射会将污染物排放到空气中，影响大气层，造成潜在的温室效应，可能加剧对臭氧层的威胁。如果 SpaceX 的一百万颗卫星全部脱离轨道，意味着每三分钟就有一颗卫星重返大气层。轨道上的卫星越多，发生碰撞的可能性也越大。卫星也会影响天文观测，该公司一直试图与国际天文学联合会合作减少卫星对天文观测的影响，但一百万颗是完全不同的量级，天文学家震惊不已。

Two Google Chrome extensions have turned malicious after what appears to be a case of ownership transfer, offering attackers a way to push malware to downstream customers, inject arbitrary code, and harvest sensitive data. The extensions in question, both originally associated with a developer named "[email protected]" (BuildMelon), are listed below - QuickLens - Search Screen with

摘要：当”机器”成为常态，”人类”反而成了异类。Agent时代的安全风控应如何发展？

Пока спецслужбы ищут виновных, государственные сервисы «превратились в тыкву».

不是经济周期的正常波动，而是一场没有回头路的产业重组。

Workflows built around multiple AI agents and constant tool switching are adding cognitive strain across large enterprises. A recent Harvard Business Review analysis describes this pattern as “AI brain fry,” a form of mental fatigue tied to intensive use and oversight of AI systems. Employees increasingly manage clusters of agents that generate code, synthesize information, and produce drafts at high speed. Performance systems in some organizations reward activity metrics such as token consumption and AI … More →

The post More AI tools, more burnout! New research explains why appeared first on Help Net Security.

Hackers have cut their attack timelines from weeks to hours while the government spreads resources too thin. We need to stop pretending we can protect everything and start focusing on what would hurt us most.

The post We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it. appeared first on CyberScoop.

Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang

100+框架实战：一次过Momo检测，玩转KPM/LSPosed/Zygisk

AI 20分钟找出Firefox漏洞，但开发攻击代码仍力不从心

看雪论坛作者ID：南行

Web applications are the backbone of modern businesses. They serve as sales platforms, customer interfaces, and process engines. There is no question that this infrastructure must be protected.   But in an IT landscape that is rapidly evolving toward APIs and microservices, one thing remains constant: standing still means risk. In light of this, is the classic protection approach still sufficient?  […]

The post WAF is yesterday’s news: Why WAAP is the answer to today’s threats  appeared first on Link11.

Augur has announced a $15 million seed round led by Plural, with participation from First Kind, SNR, Flix, and Tiny VC. The funding will support the deployment of Augur’s technology as governments, operators, and venue owners across Europe face rising security threats to vulnerable public spaces and critical national infrastructure. The changing threat landscape The world is facing ever more complex and destabilising security threats, underlined by the outbreak of conflict in Iran, which has … More →

The post Augur lands $15 million funding to strengthen critical infrastructure security appeared first on Help Net Security.