Aggregator

巴西圣保罗 Marília 的古生物学博物馆馆长 William Nava 于 2016 年发现了一块保存几乎完好的鸟类化石，其头骨几乎完好无损。剑桥大学和洛杉矶县自然历史博物馆的研究人员以数字方式重建了鸟脑，他们用发现者的名字将其命名为 Navaornis hestiae。Navaornis 生活在 8000 万年前的巴西。研究人员认为它填补了鸟脑演化的空白，其生存年代介于 1.5 亿年前的始祖鸟和现代鸟类之间。Navaornis 的大脑比始祖鸟大，表明其认知能力比始祖鸟更强。但其大脑大部分区域如小脑都不太发达，意味着它还没有演化出现代鸟类的复杂飞控机制。论文资深作者 Daniel Field 教授称，现代鸟类有着动物界最先进的认知能力，只有哺乳动物可与之媲美。科学家一直在努力理解鸟类独特大脑和非凡智力如何以及何时演化的。Navaornis 代表了鸟类认知演化过程中处于中间点的物种，是了解鸟类智力演化的第一步。

The Ngioweb botnet, which supplies most of the 35,000 bots in the cybercriminal NSOCKS proxy service, is being disrupted as security companies block traffic to and from the two networks. [...]

Microsoft is working on a new Windows "Quick Machine Recovery" feature that will allow IT administrators to use Windows Update "targeted fixes" to remotely fix systems rendered unbootable. [...]

Jen Easterly, who took over as CISA director in 2021, will step down in January when Donald Trump takes over as president, creating an uncertain future for the critical cybersecurity agency and the country's larger security posture in an increasingly complex cyberthreat environment.

The post CISA Director Easterly to Leave When Trump Assumes Presidency appeared first on Security Boulevard.

Chinese threat actors use custom post-exploitation toolkit ‘DeepData’ to exploit FortiClient VPN zero-day and steal credentials. Volexity researchers discovered a vulnerability in Fortinet’s Windows VPN client that China-linked threat actor BrazenBamboo abused in their DEEPDATA malware. BrazenBamboo is known to be the author of other malware families, including LIGHTSPY, DEEPDATA, and DEEPPOST. DEEPDATA is a […]

为了进一步提升我国相关专业人员运用开源情报的实战能力，第12期全国开源情报能力提升培训班将于2024年12月17日至22日在北京市举办。

今天给大家介绍几个可以查询俄罗斯企业信息的工具，类似于​我国的天眼查、企查查、启信宝等工具。

Fortinet FortiManager 未授权RCE（CVE-2024-47575）

Palo Alto advised users to patch urgently as the vulnerability is critical and actively exploited in the wild

Individual companies and entire industries alike must take responsibility for protecting customer data — and doing the right thing when they fail.

浙江大学启动了世界最大的超重力实验装置。地球表面的任何物体都会受到地球重力的作用。科学家把地球上的重力叫做常重力，用1g（重力单位）来表示，大于1个g的就叫超重力。比如航天员乘坐飞船返回地球时，会受到4个g的超重力，相当于承受了4个自己的重量。在超重力环境下，会发生一些神奇效应。因为这些神奇效应，科学家们可以完成很多在常重力环境中难以完成的实验。超重具有“缩尺”作用，如了解 100 层楼对地基的影响，只需要造 1 层楼模型将其放在 100 个g 的超重力作用下；超重力场中还存在“缩时”效应，可以在短时间内模拟长时间的影响。世界上离心机最大容量为1200g·t（重力加速度×吨），浙江大学的超重力离心模拟与实验装置（CHIEF）达到了 1900g·t。

Tanium unveiled new AI-powered autonomous innovations that transform how IT and Security teams execute change safely and reliably in their IT environments – at scale and in real-time. Tanium Autonomous Endpoint Management (AEM) enhances and extends the Tanium platform with a set of autonomous capabilities across the industry’s most comprehensive real-time platform, which includes asset discovery and inventory, vulnerability management, endpoint management, incident response, and digital employee experience. “Tanium AEM leverages real-time insights from millions … More →

The post Tanium delivers autonomous controls that mitigate risk and maintain operational resiliency appeared first on Help Net Security.

Sooty是一款专为SoC安全分析人员设计的一体化CLI工具，该工具实现了高度自动化任务流，可以辅助加快SoC分析工作流程。