Aggregator

电信网络诈骗本就变幻莫测，让人防不胜防，如今有了AI换脸技术的“加持”，更加大了防骗反诈的难度。对此，民众不仅要进一步擦亮眼睛、提高警惕，还需要技术力量有更大的作为，在技防层面实现“降维打击”。

当前，数据正全面融入军事领域，成为军事建设与管理的核心要素、战争制胜的重要资源。军事指挥员要努力探索构建军事数据管理体系的方法路径，深入挖掘和充分释放数据资源的潜在价值，深入融合军事数据资源，整合多维信息平台，进一步实现……

黎巴嫩多地17日下午发生传呼机爆炸事件，造成至少9人死亡、近2800人受伤。一名黎巴嫩真主党官员说，这次的袭击目标不是针对个人，而是针对黎巴嫩“整个国家”。

近日，网安标委网站发布《关于发布<网络安全标准实践指南——敏感个人信息识别指南>的通知》。

遵循习近平总书记提出的“坚持以人为本、智能向善”的理念和宗旨，积极响应并贯彻落实《全球人工智能治理倡议》，全国网络安全标准化技术委员会制定《人工智能安全治理框架》，于2024年全国网络安全宣传周正式发布。

生成式人工智能大模型在助力内容生成的同时也潜藏风险，成为虚假信息传播、数据隐私泄露等问题的温床，加剧了认知域风险。面对新问题、新挑战，亟需探索新的治理策略和技术方法，以确保在大模型时代能够有效管理内容安全风险。

点击文章，了解最前沿的国际网安资讯！

Cary, North Carolina, 18th September 2024, CyberNewsWire

The post INE Security Wins 2024 SC Excellence Award appeared first on Security Boulevard.

A vulnerability classified as critical was found in Gecu Gulf Credit Union 1.1. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-6828. The attack needs to be approached within the local network. There is no exploit available.

一次特种作战，瘫痪某个战斗组织10%的战斗力。

Fivetran announced Hybrid Deployment, a new solution that allows customers to securely run data pipelines within their own environment from the Fivetran managed platform, providing a single control plane to manage all data sources, whether they are cloud-based SaaS apps or legacy databases with data that needs to be tightly controlled and managed for regulatory or compliance purposes. With the industry’s most comprehensive selection of connectors, destinations and features, Fivetran empowers enterprises to centralize data … More →

The post Fivetran Hybrid Deployment keeps sensitive data within the customer’s environment appeared first on Help Net Security.

The evolution of software always catches us by surprise. I remember betting against the IBM computer Deep Blue during its chess match against the grandmaster Garry Kasparov in 1997, only to be stunned when the machine claimed victory. Fast forward to today, would we have imagined just three years ago that a chatbot could write essays, handle customer support calls, and even craft commercial

ANY.RUN‘s Threat Intelligence Lookup is a valuable resource for security professionals searching for information on the latest cyber threats.  One of the key features of Threat Intelligence Lookup is its extensive search capabilities. The service offers over 40 different search parameters that can be combined to form specific queries. These parameters allow you to filter […]

The post How to Collect Threat Intelligence Using Search Parameters in TI Lookup appeared first on ANY.RUN's Cybersecurity Blog.

Разработчики уверяют в надёжности и эффективности нового протокола.

IRTF призвала к созданию протоколов, не нарушающих прав человека.

Новое исследование - очередная улика в поисках темной материи.

畅聊汽车行业与网络安全的深度融合，助力车联网安全行业发展。

A vulnerability classified as critical was found in FirmWorX. This vulnerability affects unknown code of the file includes/functions/master.inc.php. The manipulation of the argument fm_data[root] leads to Remote Code Execution. This vulnerability was named CVE-2007-2891. The attack can be initiated remotely. Furthermore, there is an exploit available.

Broadcom has released fixes for two vulnerabilities affecting VMware vCenter Server that can be triggered by sending a specially crafted network packet, and could lead to remote code execution (CVE-2024-38812) or privilege escalation (CVE-2024-38813). “Broadcom is not currently aware of exploitation ‘in the wild’,” the company says, but noted that organizations should promptly act to install one of the updated versions. VMware has patched a similarly critical RCE flaw (CVE-2023-34048) in vCenter Server in October … More →

The post Critical VMware vCenter Server bugs fixed (CVE-2024-38812) appeared first on Help Net Security.