Aggregator

Cybersecurity researchers have discovered an advanced version of the Qilin ransomware sporting increased sophistication and tactics to evade detection. The new variant is being tracked by cybersecurity firm Halcyon under the moniker Qilin.B. "Notably, Qilin.B now supports AES-256-CTR encryption for systems with AESNI capabilities, while still retaining Chacha20 for systems that lack this support

The Hacker News

VisionPro 或明年年底停产；福特 CEO 法利爱上小米SU7 ；马斯克：明年特斯拉销量增长20%-30% | 极客早知道

不安全

1 year 5 months ago

苹果软件主管 Craig Federighi 谈 Apple Intelligence 延迟：等准备好了再发布；现款 Vision Pro 已大幅减产，可能会在 2024 年底彻底停产10 月 23

已知利用！Fortinet FortiManager远程代码执行漏洞（CVE-2024-47575）

微步在线研究响应中心

1 year 5 months ago

立即查看详情

Старый, но эффективный: как «Prometei» до сих пор захватывает новые устройства

Securitylab.ru

1 year 5 months ago

Необновлённые системы становятся лёгкой добычей для цифрового хищника.

【情报挖掘练习】美军运输机是否降落老挝机场？

丁爸情报分析师的工具箱

1 year 5 months ago

视频中的运输机属于美军哪个部队的？该部队还有哪些飞机，他们都在哪些机场活动？你能找到那些在该部队服役的军人吗？能否找到视频拍摄者的姓名、职业、照片和其他社交账号？

CVE-2016-10127 | PySAML2 SAML XML Response xml external entity reference (Nessus ID 96461 / ID 175936)

Vuldb Updates

1 year 5 months ago

A vulnerability was found in PySAML2. It has been rated as critical. Affected by this issue is some unknown functionality of the component SAML XML Response Handler. The manipulation leads to xml external entity reference. This vulnerability is handled as CVE-2016-10127. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

Новое поколение телескопов готово переписать законы космоса

Securitylab.ru

1 year 5 months ago

Инвестиции в астрономию – это инвестиции в будущее человечества.

Black Basta

Dark Feed IO

1 year 5 months ago

cohenido

Google 开源其 AI 水印系统 SynthID

Solidot

1 year 5 months ago

Google 开源其 AI 水印系统 SynthID，源代码采用 Apache License 2.0 托管在 Github 上。Google 是在今年 5 月宣布了 SynthID，为 AI 生成内容嵌入人眼无法识别但能被算法识别的水印。Google 称，生成式人工智能 (GenAI) 可以以前所未有的规模生成更多种类的高度多样化内容。虽然大多数此类用途都是出于合法目的，但我们担心这可能会导致虚假信息和归因错误问题。水印旨在减轻这些潜在影响。SynthID 是 Google DeepMind 的一项技术，可直接将数字水印嵌入到 AI 生成的图片、音频、文本或视频中，从而为 AI 生成的内容添加水印并识别这些内容。SynthID 文本已开源，让开发者可以为文本生成添加水印。

慢雾(SlowMist) 将出席「香港金融科技周 2024」，共探 Web3 安全与反洗钱

慢雾科技

1 year 5 months ago

期待与您交流！

Lazarus Group Exploits Google Chrome Flaw in New Campaign

Information Security Magazine

1 year 5 months ago

Lazarus Group exploited Google Chrome zero-day, infecting systems with Manuscrypt malware

调查发现：20%的CISO直接向CEO汇报，突显角色重要性

数世咨询

1 year 5 months ago

德勤全球的一项新调查显示，现在有20%的企业让其首席信息安全官（CISO）直接向CEO报告，而不是向CIO报告，这表明该角色在企业内部的影响力不断扩大。

Cisco fixed tens of vulnerabilities, including an actively exploited one

Security Affairs

1 year 5 months ago

Cisco patched vulnerabilities in ASA, FMC, and FTD products, including one actively exploited in a large-scale brute-force attack campaign. Cisco addressed multiple vulnerabilities in Adaptive Security Appliance (ASA), Secure Firewall Management Center (FMC), and Firepower Threat Defense (FTD) products, including an actively exploited flaw tracked as CVE-2024-20481. The vulnerability CVE-2024-20481 (CVSS score of 5.8) is […]

Pierluigi Paganini

SecWiki News 2024-10-24 Review

SecWiki News(国内外安全资讯)

1 year 5 months ago

今日暂未更新资讯~
更多最新文章，请访问SecWiki

AI 和 deepfakes 助长了网络钓鱼诈骗，使检测变得更加困难

安全客

1 year 5 months ago

安全客

Aggregator

Managed ad