Как сделать ИИ умным, а не наивным: учёные натренировали его распознавать "троянских баранов" в данных
Один фальшивый байт — и весь городской транспорт парализован.
Aggregator
CVE-2024-49569 | Linux Kernel up to 6.12.4 blk_mq_freeze_queue_wait denial of service (Nessus ID 233479)
4 months ago
A vulnerability was found in Linux Kernel up to 6.12.4. It has been rated as critical. This issue affects the function blk_mq_freeze_queue_wait. The manipulation leads to denial of service.
The identification of this vulnerability is CVE-2024-49569. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-21853 | Linux Kernel up to 6.6.79/6.12.16/6.13.4/6.14-rc3 map_freeze permission
4 months ago
A vulnerability was found in Linux Kernel up to 6.6.79/6.12.16/6.13.4/6.14-rc3. It has been classified as critical. This affects the function map_freeze. The manipulation leads to permission issues.
This vulnerability is uniquely identified as CVE-2025-21853. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Security Experts Flag Chrome Extension Using AI Engine to Act Without User Input
4 months ago
Researchers have found a Chrome extension that can act on the user’s behalf by using a popular AI agent orchestration protocol
360 以省代制重构渠道生态 开启安全产业共赢时代!
4 months ago
“安全破局 生态突围”360数字安全集团生态合作伙伴大会顺利启航!
360 以省代制重构渠道生态 开启安全产业共赢时代!
4 months ago
“安全破局 生态突围”360数字安全集团生态合作伙伴大会顺利启航!
Chrome UAF Process Vulnerabilities Actively Exploited
4 months ago
Security researchers have revealed that two critical use-after-free (UAF) vulnerabilities in Google Chrome’s Browser process were actively exploited in the wild, exposing users to potential sandbox escapes and arbitrary code execution. However, Google’s deployment of the MiraclePtr defense mechanism ensures these flaws are no longer exploitable, marking a significant milestone in browser security. Technical Analysis […]
The post Chrome UAF Process Vulnerabilities Actively Exploited appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya
AI Is Starting to Flex Its Network Security Muscles
4 months ago
Garrett Weber
警报!57% 电商流量被机器人操控,AI 攻击重塑网络安全格局
4 months ago
安全客
Вместо Game Over — сервер на NetBSD: энтузиаст оживил приставку в роли сервер
4 months ago
Играл в Just Dance, а стал сервером — вот вторая жизнь Wii.
告警!勒索毒王Weaxor家族利用AI攻击,国内多家公司受灾
4 months ago
安全客
打造「无所不能、无处不在」的 AI,百度为何要从「操作系统」做起?
4 months ago
聪明又能干的超级生产力。
ToyMaker 利用后门程序发动双重勒索攻击,企业面临数据与运营双重威胁
4 months ago
安全客
It’s Time to Prioritize Cybersecurity Education
4 months ago
From ransomware attacks disrupting school systems to phishing scams targeting student credentials, educational institutions are prime targets for cybercriminals. Cybersecurity education is critical to protecting individual students and the vast, complex systems that support their learning.
The post It’s Time to Prioritize Cybersecurity Education appeared first on Security Boulevard.
Darren Guccione
【安全圈】微软的符号链接补丁造成了新的 Windows DoS 漏洞
4 months ago
关键词Microsoft微软最近发布的安全更新旨在修补一个严重的权限提升漏洞,但却无意中引入了一个新的重大缺陷
【安全圈】警报!57% 电商流量被机器人操控,AI 攻击重塑网络安全格局
4 months ago
关键词网络安全Radware 发布了其《2025 年电子商务机器人威胁报告》,报告显示,在 2024 年假期购
【安全圈】Kubernetes 集群安全漏洞遭利用,算力资源面临严重危机
4 months ago
关键词安全漏洞对于网络安全专业人士而言,出现了一个令人担忧的新情况:威胁行为者正越来越多地将目标对准未受安全保
【安全圈】NVIDIA NeMo 框架三大高危漏洞致远程攻击与数据篡改风险剧增
4 months ago
关键词安全漏洞NVIDIA NeMo 框架存在三个高危漏洞,攻击者可利用这些漏洞执行远程代码,这有可能危及人工
零日漏洞引发危机:黑客利用 Ivanti VPN 发动 DslogdRAT 恶意攻击
4 months ago
安全客
Operation SyncHole: Lazarus APT targets supply chains in South Korea
4 months ago
The North Korea-linked Lazarus Group targeted at least six firms in South Korea in a cyber espionage campaign called Operation SyncHole. Kaspersky researchers reported that the North Korea-linked APT group Lazarus targeted at least six firms in South Korea in a cyber espionage campaign tracked as Operation SyncHole. The campaign has been active since at […]
Pierluigi Paganini