Посмотрели и хватит: Activision закрывает доступ к секретам Call of Duty
Почему главные авторы утечек по игре внезапно замолчали.
Aggregator
The ransomware economy is shifting toward straight-up data extortion
16 hours 30 minutes ago
Google’s research report on ransomware activity last year underscores how cybercrime is evolving and clouding a collective understanding of its full impact and scale.
The post The ransomware economy is shifting toward straight-up data extortion appeared first on CyberScoop.
Matt Kapko
Attackers are exploiting AI faster than defenders can keep up, new report warns
16 hours 30 minutes ago
Cybersecurity is entering “a new phase” as artificial intelligence tools have matured and given IT defenders significantly less time to respond to cyberattacks and other threats, according to a new report released Monday. The report, authored by federal contractor Booz Allen Hamilton, concludes that threat actors have adopted AI more quickly than governments and private […]
The post Attackers are exploiting AI faster than defenders can keep up, new report warns appeared first on CyberScoop.
Greg Otto
Washington is right: Cybercrime is organized crime. Now we need to shut down the business model
16 hours 30 minutes ago
The executive order finally calls cyber-enabled fraud what it is: transnational organized crime. Now the U.S. has to act like it—and the private sector has to stop settling for defense-only while the criminal infrastructure stays intact.
The post Washington is right: Cybercrime is organized crime. Now we need to shut down the business model appeared first on CyberScoop.
Greg Otto
Veeam 修复位于备份服务器上的多个 RCE 漏洞
16 hours 31 minutes ago
速修复
谷歌修复已遭利用的两个新 0day
16 hours 31 minutes ago
速修复
某运营商路由器秘密将遥测数据发送到一家土耳其人工智能公司
16 hours 34 minutes ago
谷歌2025年发放了近1.2亿元漏洞赏金,单个漏洞最高奖励170万元
16 hours 34 minutes ago
谷歌漏洞奖励计划迎来最佳数据时刻
观点 | 科学构建人工智能法律体系
16 hours 41 minutes ago
在法治轨道上推进人工智能治理,既是保障国家安全与社会稳定的底线要求,也是抢占全球科技竞争制高点的关键举措。因此,必须坚持统筹发展和安全,通过构建科学完备的法律体系,实现高质量发展和高水平安全的动态平衡。
专家解读 | 深入贯彻落实数据产权制度 依法保障各方主体合法权益
16 hours 41 minutes ago
随着数据要素开发利用实践不断丰富,社会各方面对数据产权制度建设的需求更加迫切。十四届全国人大常委会立法规划明确提出,数据权属方面的立法项目,经研究论证,条件成熟时,可以安排审议。
国家安全部提醒:别让无线设备“出卖”你
16 hours 41 minutes ago
无线键盘、鼠标等设备以其简洁高效的体验,成为现代办公生活的标配。然而,这份便利的背后,若不加注意,也可能潜藏窃密风险。从空中信号截获到恶意设备潜伏,再到休眠重连漏洞,窃密者可通过多种手段实现“隔空取物”式窃密,对信息安全构成威胁。
专题·原创 | 立足数智时代,夯实网络安全治理的法制框架
16 hours 41 minutes ago
《网络安全法》的修改与实施,是我国网络安全法治建设的重要里程碑,标志着我国网络安全治理进入了规范化、制度化、法治化的新阶段。此次修改立足数智时代发展特征,回应了网络安全治理的现实需求,通过一系列制度创新,夯实了网络安全治理的法治框架……
Hackers tried to breach Poland’s nuclear research centre
16 hours 44 minutes ago
Poland’s National Centre for Nuclear Research (NCBJ) thwarted a cyberattack targeting its IT infrastructure. The attempted intrusion was detected and blocked before attackers could compromise systems or disrupt operations. “No production, operational, or research processes were disrupted, and the MARIA reactor is operating safely and smoothly, at full power,” said Prof. Jakub Kupecki, Director of the National Centre for Nuclear Research. The National Centre for Nuclear Research is one of the largest scientific institutes in … More →
The post Hackers tried to breach Poland’s nuclear research centre appeared first on Help Net Security.
Sinisa Markovic
Possible New Result in Quantum Factorization
16 hours 44 minutes ago
好的,我现在需要帮用户总结一篇文章的内容,控制在100字以内。用户提供了文章的开头部分,看起来是Bruce Schneier的个人简介和一些相关的文章标题。
首先,我需要确定文章的主题。Bruce Schneier是一位公开利益的技术专家,专注于安全、技术和人之间的交叉领域。他从2004年开始在博客上写安全问题,还写月度通讯。他现在是哈佛大学肯尼迪学院的研究员和讲师,EFF的董事会成员,以及Inrupt公司的安全架构首席。
接下来,看看用户的要求:用中文总结内容,不超过100字,不需要特定的开头。所以重点应该是介绍Bruce Schneier的身份、他的工作领域以及他在安全方面的贡献。
然后,我需要提取关键信息:他是技术专家,关注安全、科技和人的交叉点;他在博客和通讯中讨论安全问题;他的职位包括研究员、讲师、董事会成员和首席架构师;他的工作涉及AI、隐私、LLM等主题。
最后,把这些信息浓缩成一个简洁的段落,确保不超过100字,并且直接描述内容。
Bruce Schneier是一位专注于安全、技术与人交叉领域的公开利益技术专家。他在博客和月度通讯中讨论安全问题,并担任哈佛大学研究员、EFF董事会成员及Inrupt首席安全架构师。他的工作涉及AI、隐私、LLM等主题。
sg dma缓冲区cache同步批处理优化
16 hours 47 minutes ago
当然,也有相当多的硬件并不支持CPU和外设之间的cache coherence的,这种情况下,无论是面向CPU还是device,都可能需要进行cache的clean/invalidate动作,这类动作往往比较昂贵,成为火焰图热点。结合arm64微架构的知识以及dsb的原理,这里有个优化机会,可以N个entries只发一次dsb,即最后一次性dsb等待前面的N个cache操作完成。经笔者观察,目前arm64的相关实现,采用的每个sg entry进行一个cache动作,然后就发dsb同步等待的方式。
21cnbao
上周关注度较高的产品安全漏洞(20260309-20260315)
16 hours 50 minutes ago
上周关注度较高的产品安全漏洞(20260309-20260315)
CNVD漏洞周报2026年第10期
16 hours 50 minutes ago
国家信息安全漏洞共享平台(以下简称CNVD)本周共收集、整理信息安全漏洞660个,其中高危漏洞379个、中危漏洞248个、低危漏洞33个。
Подмена кошельков прямо в браузере. Вот как популярная платформа AppsFlyer подставила тысячи сайтов
16 hours 58 minutes ago
Неизвестные использовали инфраструктуру сервиса AppsFlyer для атаки на цепочку поставок ПО.
KEEQuant advances chip-scale QKD for telecom, data centers, and critical infrastructure
17 hours ago
KEEQuant has announced its commercial chip-scale QKD technology, marking an advance in quantum-secure communications. The system replaces bulky optical assemblies with photonic integration, lowering the cost and complexity of quantum key distribution and making quantum-safe key exchange a practical upgrade for telecom operators, data center providers, and critical infrastructure organizations. The result is smaller, more scalable systems that remain compatible with existing fiber environments and encryption solutions, making adoption more practical for organizations preparing their … More →
The post KEEQuant advances chip-scale QKD for telecom, data centers, and critical infrastructure appeared first on Help Net Security.
Industry News
Supply Chain Shield: How DepConfuse Proactively Stops Dependency Confusion Attacks
17 hours 6 minutes ago
DepConfuse is a command-line tool that proactively detects dependency confusion vulnerabilities. It scans SBOMs or PURLs to identify internal
The post Supply Chain Shield: How DepConfuse Proactively Stops Dependency Confusion Attacks appeared first on Penetration Testing Tools.
ddos