Aggregator

看AI如何穿透二进制迷雾，重塑安全！

此次影响它的两个漏洞可以在没有任何身份验证或用户交互的情况下完全破坏和完全远程接管目标设备。

Новая модель от OpenAI может съесть всю вашу оперативку.

在拉斯维加斯举办的Black Hat大会上，尽管表面热闹非凡，但网络安全行业正面临经济压力和AI带来的变革挑战。AI技术的应用加剧了威胁与防御的军备竞赛，同时引发对就业前景的担忧。行业整合和裁员现象普遍，反映出从扩张转向可持续发展的趋势。

OpenAI CEO Says AI Has Beaten Voice Recognition, But Experts Disagree
OpenAI CEO Sam Altman recently claimed that artificial intelligence has "fully defeated most of the ways that people authenticate currently, other than passwords." A host of security experts disagree and point out that passwords got us into this authentication mess to begin with.

CISA Lists Flaws as Actively Exploited
Hackers are actively exploiting years-old flaws in obsolete Wi-Fi cameras and video recorders made by D-Link, warn U.S. cybersecurity authorities. Possibly Chinese hackers have used one of the flaws to implant HiatusRAT malware. "Attackers don’t care if a vulnerability is new or old."

Interlock Claims to Have 1.5TB of DaVita's Data as Expenses Mount
DaVita Inc., one of the largest kidney dialysis providers in the world, told regulators that an April cyberattack has cost the company $13.5 million so far and has affected more than one million people in the U.S., and counting. Interlock says it's behind the data theft and ransomware attack.

Cursor Patched Flaw Days After Disclosure, Says Check Point
Check Point researchers found a RCE flaw in Cursor, an AI-powered code editor, by manipulating a previously approved model context protocol configuration. Once a developer approved a configuration file for an MCP server, any future changes to that file could be executed without further prompts.

Inskit Researchers Uncover Clusters in Hungary, Saudi Arabia
Security researchers uncovered a previously unseen malware cluster associated with Israeli spyware maker Candiru. The company may have rebranded itself to evade sanctions to continue its operations. It continues to operate despite its inclusion in 2021 onto an exports blacklist by the United States.

文章介绍了在 Git 的 Detached HEAD 状态下完成修改后，如何将其安全推送至远程 main 分支。通过创建临时分支、强制更新本地 main 分支并使用 `--force` 或 `--force-with-lease` 推送至远程的方法，避免了直接推送导致的历史覆盖风险，并提供了清理临时分支的建议。

Cybersecurity experts are raising alarms over a sophisticated social engineering attack that allowed threat actors to compromise corporate systems in under five minutes, according to a recent incident response investigation by NCC Group’s Digital Forensics and Incident Response (DFIR) team. The attack began with threat actors impersonating legitimate IT support personnel, targeting approximately twenty employees […]

The post Hackers Exploit Social Engineering to Gain Remote Access in Just 5 Minutes appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Kimsuky атакует через память — без единого файла на диске.

In this Help Net Security interview, Jordan Avnaim, CISO at Entrust, discusses how to communicate the quantum computing threat to executive teams using a risk-based approach. He explains why post-quantum cryptography (PQC) is an urgent and long-term priority. Avnaim also outlines practical steps CISOs can take to build crypto agility and maintain digital trust. From your perspective as a CISO, how do you frame the quantum computing threat to executives and the board? Complexity can … More →

The post Beyond PQC: Building adaptive security programs for the unknown appeared first on Help Net Security.

Разработчики переходят в режим «директора кода.

文章指出HTTP/1.1存在严重安全漏洞（如Desync攻击），导致数千万网站易受攻击。尽管已尝试修复六年仍被绕过。建议升级至HTTP/2以消除模糊性并防止此类攻击，并强调需在反向代理与源服务器间启用上游HTTP/2连接。

用户因点击虚假物流链接感染恶意软件，导致社交媒体和支付账户被入侵并损失3000美元。事件揭示了数字安全的重要性。

在线约会可能带来真爱,但也隐藏着诈骗、情感伤害和安全威胁。需警惕潜在风险,提高防范意识,确保 dating 更加安全明智。

Online dating can spark romance—or scams. Learn how to spot red flags, avoid fraud, and protect your

Kubernetes在EKS上默认不安全，攻击者可利用配置错误的LoadBalancer、中毒镜像、过高权限角色及未受保护的初始化容器入侵集群。防御需关注恶意镜像、初始化容器风险、暴露服务、etcd注入，并采用Gatekeeper和Rego策略阻止危险配置。