Aggregator
蚁后被发现产下了两个不同物种的蚂蚁
9 months 2 weeks ago
伊比利亚收获蚁通过克隆其他物种雄蚁的精子产生混血工蚁,实现跨物种繁殖。这种“性驯化”机制使它们无需依赖地理邻近性即可维持种群运作。
蚁后被发现产下了两个不同物种的蚂蚁
9 months 2 weeks ago
根据发表在《自然》期刊上的一项研究,一种名为伊比利亚收获蚁(Messor ibericus)的蚁后可以产下两个不同物种的蚂蚁。蚁群里的个体通常分为三类,包括蚁后,雄蚁以及工蚁。研究发现,伊比利亚收获蚁的工蚁体内带有另一种“工匠收获蚁”(Messor structor)的基因,但这并非杂交的结果,而是蚁后从工匠收获蚁雄蚁的精子直接克隆出来的“复制品”。这一“异种生殖”现象不仅刷新了人类对蚂蚁生殖机制的认知,还首次提供了雌性主动“繁殖”另一物种的直接证据。研究人员推断,这个演化故事的起点是一种被称为“精子寄生”(sperm parasitism)的现象。在数百万年前,伊比利亚收获蚁的蚁后因某种未知原因失去了生产本物种工蚁的能力。为了维持蚁群的运作,它们不得不“借用”生活在附近的工匠收获蚁雄蚁的精子,与自己的卵结合,生产出兼具两个物种基因的混血工蚁。然而这种生殖策略严重依赖于建造收获蚁种群的地理邻近性,对于蚁后来说,寻找异种雄蚁交配是一件既耗时又不稳定的“麻烦事”。为了摆脱这种束缚,伊比利亚收获蚁演化出了一种更为高效且惊人的策略——“性驯化”(sexual domestication)。它们不再需要在野外寻找工匠收获蚁雄蚁,而是直接利用储存在自己体内的异种精子,通过一种特殊的克隆过程来生产它们。
CVE-2025-31255 | Apple watchOS up to 18.2 App information disclosure (WID-SEC-2025-2061)
9 months 2 weeks ago
A vulnerability marked as problematic has been reported in Apple watchOS. Affected by this vulnerability is an unknown functionality of the component App. This manipulation causes information disclosure.
This vulnerability is handled as CVE-2025-31255. It is possible to launch the attack on the local host. There is not any exploit available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2025-31255 | Apple macOS up to 18.4 App information disclosure (WID-SEC-2025-2061)
9 months 2 weeks ago
A vulnerability categorized as problematic has been discovered in Apple macOS. This affects an unknown function of the component App. Executing manipulation can lead to information disclosure.
This vulnerability appears as CVE-2025-31255. The attack requires local access. There is no available exploit.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2025-31255 | Apple iOS/iPadOS up to 18.6 App information disclosure (WID-SEC-2025-2061)
9 months 2 weeks ago
A vulnerability identified as problematic has been detected in Apple iOS and iPadOS. This impacts an unknown function of the component App. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2025-31255. An attack has to be approached locally. There is no exploit available.
You should upgrade the affected component.
vuldb.com
CVE-2025-31255 | Apple tvOS up to 18.4 App information disclosure (WID-SEC-2025-2061)
9 months 2 weeks ago
A vulnerability labeled as problematic has been found in Apple tvOS. Affected is an unknown function of the component App. The manipulation results in information disclosure.
This vulnerability is known as CVE-2025-31255. Attacking locally is a requirement. No exploit is available.
The affected component should be upgraded.
vuldb.com
CVE-2025-30468 | Apple iOS/iPadOS up to 18.7 improper authentication (WID-SEC-2025-2061)
9 months 2 weeks ago
A vulnerability has been found in Apple iOS and iPadOS up to 18.7 and classified as critical. Affected is an unknown function. The manipulation leads to improper authentication.
This vulnerability is uniquely identified as CVE-2025-30468. Local access is required to approach this attack. No exploit exists.
The affected component should be upgraded.
vuldb.com
API Threats Surge to 40,000 Incidents in 1H 2025
9 months 2 weeks ago
Thales claims there were over 40,000 API incidents in the first half of 2025
AOMedia 联盟将于年底发布 AV2 编解码器
9 months 2 weeks ago
AOMedia联盟宣布将于年底发布新一代视频编解码器AV2,其压缩性能显著优于前代AV1,并增强对AR/VR应用的支持及多节目分屏播放功能。
AOMedia 联盟将于年底发布 AV2 编解码器
9 months 2 weeks ago
由 Amazon、Cisco, Google、Intel、Microsoft、Mozilla 和 Netflix 等联合创办的开放媒体联盟 AOMedia 宣布将于年底发布 AV1 的后继者 AV2 编解码器。AOMedia 声称,AV2 是开放视频编码的一次世代飞跃,旨在满足全球日益增长的流媒体需求,压缩性能显著优于 AV1。AV2 增强了对 AR/VR 应用的支持,支持多节目分屏播放,改进屏幕内容处理,能在更宽的视觉质量范围内运行。
$1,5 миллиарда превратились в пыль. А вы и дальше верьте в анонимность блокчейна
9 months 2 weeks ago
Израиль нашел и заморозил "черную кассу" Ирана.
BountyHunter Walkthrough: HackTheBox Writeup
9 months 2 weeks ago
文章介绍了一台名为BountyHunter的简单Linux机器,旨在帮助新手通过端口扫描和枚举技术获取用户和root权限。文中使用NMAP进行扫描,发现开放的SSH和HTTP服务,并进一步分析了Apache服务器上的Web应用。
HTB Planning Machine Walkthrough | Easy HackTheBox Guide for Beginners
9 months 2 weeks ago
文章描述了HackTheBox中一个Easy Linux机器的破解过程,利用Grafana漏洞获取初始权限,并通过SSH和cron作业实现提权至root。
如何绕过WAF
9 months 2 weeks ago
How I Hacked My ISP’s IPTV Set-Top Box?
9 months 2 weeks ago
一位网络安全专家通过逆向工程和漏洞利用分析IPTV盒子的工作原理。他从好奇开始,逐步解决技术难题:绕过沙盒环境、调整路由器端口、提取并反编译APK文件等。最终发现系统存在默认弱密码、可预测用户名及未加密流媒体链接等严重安全问题,并负责任地向ISP披露漏洞。文章强调了安全测试中细节的重要性及默认设置带来的风险。
【2503众测挑战赛】测试环境大搜罗,超50个域名等你来测!
9 months 2 weeks ago
【奖励公告】2025年8月
9 months 2 weeks ago
2025年7月奖励公告2025年8月共有40位白帽师傅来到OSRC挖出有效漏洞具体名单如下:注:根据OSRC漏
Inclusion·外滩大会回顾|慢雾探讨 Web3 合规与安全范式
9 months 2 weeks ago
慢雾将继续深耕 Web3 安全与合规领域。
防范类“震网”攻击!美太空军资助研发用于检测卫星网络攻击的AI工具
9 months 2 weeks ago
美国太空网络安全公司正在开发防范“震网”病毒式网络攻击的AI工具