Aggregator

A vulnerability classified as critical was found in AMD Radeon RX 6000 Graphics Products, Radeon RX 7000 Graphics Products, Radeon PRO W7000 Graphics Products, Radeon PRO W6000 Graphics Products, Instinct MI250 and Instinct MI210. Affected by this issue is some unknown functionality. Such manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2023-31317. Local access is required to approach this attack. No exploit exists.

OpenAI 公司CFO莎拉·弗里尔周四表示，即使在完成了她所称的史上最大一轮私募融资之后，OpenAI公司仍可能进一步筹集更多资金，因为该公司正加紧获取算力，以应对飙升的AI需求。弗里尔在接受彭博电

根据发表在《科学》期刊上的一项研究，2025 年初对美国国际开发署（USAID）的资金削减与非洲大陆大部分地区的暴力冲突显著增加存在关联。突然的撤资不仅带走了资源，还中断了合同、人员配置、采购和对项目结果的预期。这可能会使当地政府、中间机构和普通民众面临的不只是物资匮乏，还有承诺落空。因此，这种效应所反映的可能不仅是援助的缺失，同时也是制度的中断，这与援助逐渐减少的影响有很大差异。USAID 曾是全球最大的对外援助机构之一；其业务遍及 100 多个国家，其所支持的各类倡议项目涵盖公共卫生、农业、教育、灾难救援以及民主制度建设。然而，在上任不到一周的时间里，第二届特朗普政府便对 USAID 实施了大规模的削减，它标志着美国长达 60 多年的外交政策发生剧变。研究显示，撤销 USAID 与暴力冲突、武装冲突、抗议和骚乱活动的显著增加相关，特别是在那些曾接受过大量美国援助的地区。这些影响会在 USAID 撤销后立即显现，并持续数月之久。体制薄弱的地区在援助削减后会有更大幅的冲突增加，而体制较稳固地区则能更有效地缓解由此带来的伤害。

根据发表在《科学》期刊上的一项研究，2025 年初对美国国际开发署（USAID）的资金削减与非洲大陆大部分地区的暴力冲突显著增加存在关联。突然的撤资不仅带走了资源，还中断了合同、人员配置、

В данной статье мы рассмотрим основные принципы DFIR и подробно расскажем о практических методах реагирования на инциденты.

SpaceXAI公司自合并以来一直在流失员工埃隆·马斯克新更名的SpaceXAI正在流失顶尖人才，自二月以来已有超过50名研究人员和工程师离职。这些离职人员包括编程、世界模型和Grok语音方面的关键负

I was browsing the NahamSec YouTube channel when I noticed some members-only videos. Usually, you ne

Deepfake detection has been built around a single question for close to a decade. Given a video or audio clip, is it real or synthetic? Commercial detectors analyze pixels, frequencies, and biometric signals to answer that question, and the best of them post strong accuracy numbers on standard benchmarks. In deployment, performance drops sharply on content from newer generators. Researchers at the Vector Institute think this gap is structural, and closing it means rethinking what … More →

The post Deepfake detection is losing ground to generative models appeared first on Help Net Security.

Хакеры два месяца возвращались в сеть нефтяной компании через незакрытый сервер — и каждый раз их пускали.

The U.S.Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly disclosed vulnerability impacting Cisco Catalyst SD-WAN Controller to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to remediate the issue by May 17, 2026. The vulnerability is a critical authentication bypass tracked as CVE-2026-20182. It's

Vulnerability / Credential TheftThe U.S.Cybersecurity and Infrastructure Security Agency (CISA) on

Pwn2Own Berlin 2026 day one saw 22 entries and 24 zero-days across major software, with researchers earning $523,000 in total rewards. Day one of Pwn2Own Berlin 2026 featured 22 entries targeting widely used technologies, including browsers, operating systems, AI platforms, and NVIDIA infrastructure. By the end of the day, researchers demonstrated 24 unique zero-day vulnerabilities […]

Pwn2Own Berlin 2026, Day One: $523,000 paid out, AI products fall

太空算力的概念，在美国的关键词是「算力」，在中国的关键词是「太空」。

OpenAI公司表示Codex即将登陆你的手机Codex正在推出移动端。这款由 OpenAI约1年前推出的编码工具，现已集成到ChatGPT应用中，允许用户远程监控和管理他们的开发工作流程。新功能允许

Domains expire, get transferred, and return to the market every day. The systems connected to those domains can continue trusting the original owner long after control has changed. Researchers at USC and the University of Twente examined this problem in three widely used systems: Web PKI, Maven Central, and Ethereum Name Service. They use the term “zombie linkages” to describe lingering trust records that remain active after the original domain owner no longer controls the … More →

The post Zombie linkages are keeping expired domains trusted for years appeared first on Help Net Security.

Слабое место срабатывало только при особых условиях, но последствия могли быть жёсткими.