Aggregator
Hunters
1 year 5 months ago
cohenido
109 млрд евро на ИИ-превосходство: Франция готова к разгрому Кремниевой долины
1 year 5 months ago
Макрон достал козырь из рукава после анонса проекта Stargate.
一月漏洞信息简报
1 year 5 months ago
1月新收录漏洞481个,包含2025年首个满分漏洞。
Protecting Your Software Supply Chain: Assessing the Risks Before Deployment
1 year 5 months ago
Imagine you're considering a new car for your family. Before making a purchase, you evaluate its safety ratings, fuel efficiency, and reliability. You might even take it for a test drive to ensure it meets your needs. The same approach should be applied to software and hardware products before integrating them into an organization's environment. Just as you wouldn’t buy a car without knowing its
The Hacker News
CVE-2025-1229 | olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6 ?page=1&logfile=eee&match= path os command injection (IBJT1K)
1 year 5 months ago
A vulnerability classified as critical was found in olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6. Affected by this vulnerability is an unknown functionality of the file /read/?page=1&logfile=eee&match=. The manipulation of the argument path leads to os command injection.
This vulnerability is known as CVE-2025-1229. The attack can be launched remotely. Furthermore, there is an exploit available.
This product does not use versioning. This is why information about affected and unaffected releases are unavailable.
vuldb.com
CVE-2025-1228 | olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6 Logfile Update ?page=1&logfile=LOG_Monitor path path traversal (IBJSXS)
1 year 5 months ago
A vulnerability classified as problematic has been found in olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6. Affected is an unknown function of the file /read/?page=1&logfile=LOG_Monitor of the component Logfile Update Handler. The manipulation of the argument path leads to path traversal.
This vulnerability is traded as CVE-2025-1228. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.
vuldb.com
苹果修复了“极其复杂”攻击中的零日漏洞
1 year 5 months ago
安全客
评论 | 筑牢人工智能安全防火墙
1 year 5 months ago
今年春节期间,深度求索人工智能基础技术研究有限公司开发的生成式人工智能服务,吸睛引粉,热议不断。不过,也有报道指出,针对DeepSeek线上服务的攻击烈度突然升级,其攻击指令暴增,由此产生的服务中断、数据泄露等网络安全风险不可忽视。
国际 | 泰国出台措施打击电信诈骗
1 year 5 months ago
据泰国媒体报道,缅甸边防部队近日在位于泰缅边境的泰国达府湄索县向泰方移交了61名电信诈骗受害者,由泰国警方对其进行调查询问,以便更清晰地了解诈骗分子的犯罪线索。
外交部:中方主张开源人工智能技术,实现各国共享智能红利
1 year 5 months ago
外交部发言人郭嘉昆10日表示,中方积极推动人工智能普惠发展,帮助发展中国家加强能力建设,主张开源人工智能技术,促进人工智能服务的可及性,实现各国共享智能红利。
专家解读 | 以“少而精”“小而准”举措 降低数据流通安全治理成本
1 year 5 months ago
建立健全合规高效的数据流通体系是推进数据要素市场化的必然要求,也是推动数据要素以较低的交易成本实现跨主体流通、多场景复用,在更大范围内与其他要素协同、与不同种类数据融合,促进数据要素价值化过程、放大数据要素价值化效应的重要举措。
专家观点 | 鲁传颖:人工智能重塑国家安全的范式和逻辑
1 year 5 months ago
随着人工智能技术的不断发展,国家安全进入了数字化和智能化时代,技术安全风险也在深刻塑造和改变国家安全的性质与特点。因此,我们需要深入思考人工智能将如何塑造未来的国家安全,并探讨国家安全治理体系的变革趋向。
新赛道 | 启明星辰发布MAF大模型应用防火墙产品,提升DeepSeek类企业用户安全
1 year 5 months ago
2月7日,启明星辰面向DeepSeek等企业级大模型业务服务者提供的安全防护产品 —— 天清MAF大模型应用防火墙产品正式发布。
AI 与星辰大海:2025,从新手到开挂勇士的奇幻旅程
1 year 5 months ago
CVE-2025-1227 | ywoa up to 2024.07.03 AddressDao.xml selectList sql injection (IBI7XH)
1 year 5 months ago
A vulnerability was found in ywoa up to 2024.07.03. It has been rated as critical. This issue affects the function selectList of the file com/cloudweb/oa/mapper/xml/AddressDao.xml. The manipulation leads to sql injection.
The identification of this vulnerability is CVE-2025-1227. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
苹果紧急修复被用于“极其复杂”攻击中的0day漏洞
1 year 5 months ago
速修复
微软扩展Copilot AI漏洞奖励计划范围,提高赏金
1 year 5 months ago
快去一试身手
EDR技术革命:从被动防御到智能反制的进化之路
1 year 5 months ago
EDR技术革命:从被动防御到智能反制的进化之路
1 year 5 months ago