Aggregator

2018年发现的CPU推测执行攻击曾引发广泛关注和修复措施，但这些修复显著降低了性能。近期Ubuntu禁用部分保护机制以提升20%性能。英特尔与Canonical团队达成共识，认为Spectre攻击在GPU层面的缓解不再必要，因已在内核中解决。权衡后认为此类攻击难度高且数据窃取不易，更简单的方式攻击系统更现实。

关键词网络攻击在伊朗与以色列冲突不断升级的背景下，黑客行动主义（Hacktivism）活动骤然激增。

关键词Google谷歌正为其 Android 版 Chrome 浏览器测试一项颇具颠覆性的 AI 新功能——A

关键词海康威视据加拿大政府消息，加方日前以所谓“国家安全风险”为由，正式下令中国视频监控企业海康威视（Hikv

关键词Windows微软近日宣布，将彻底替换已使用数十年的蓝屏死机（Blue Screen of Death，

The French cybersecurity agency identified Houken, a new Chinese intrusion campaign targeting various industries in France

随着网络威胁模仿合法行为增多，传统安全措施如防火墙和EDR效果有限。现代安全运营中心（SOC）采用多层检测策略，结合网络数据和行为分析技术（如NDR），提升威胁识别能力。

DARPA的AI网络挑战赛决赛启动，参赛队伍利用自主AI系统Buttercup寻找并修复软件漏洞。比赛为期十天，涉及30个真实世界开源程序的漏洞。获胜者将获得400万美元奖金。赛后，Buttercup团队将开源其系统并分享技术细节。

With nearly 80% of cyber threats now mimicking legitimate user behavior, how are top SOCs determining what’s legitimate traffic and what is potentially dangerous? Where do you turn when firewalls and endpoint detection and response (EDR) fall short at detecting the most important threats to your organization? Breaches at edge devices and VPN gateways have risen from 3% to 22%, according to

Статистика закончилась, началась нелегальщина.

Qantas has suffered a cyber incident that has lead to a data breach. “The incident occurred when a cyber criminal targeted a call centre and gained access to a third-party customer servicing platform,” the Australian airline announced today, but said that all of its systems remain secure and its operations haven’t been affected. What is known about the cyber incident? Qantas does not say which call center was affected, but the Australian Frequent Flyer reports … More →

The post Qantas data breach could affect 6 million customers appeared first on Help Net Security.

作者对当前工作感到厌倦，寻求新的挑战。转向网络安全领域，包括红蓝队、道德黑客等深入学习与实践。具备扎实的技术背景（编程、DSA、Web开发），愿意投入时间和精力学习复杂内容，并寻找全面的学习路线图和高质量课程推荐及实践平台建议。

网络钓鱼攻击利用品牌仿冒和PDF附件中的恶意链接或QR码诱导用户访问钓鱼网站或拨打电话。攻击者通过VOIP号码隐藏身份，并利用AI生成恶意URL扩大攻击面。

Cybersecurity researchers are calling attention to phishing campaigns that impersonate popular brands and trick targets into calling phone numbers operated by threat actors. "A significant portion of email threats with PDF payloads persuade victims to call adversary-controlled phone numbers, displaying another popular social engineering technique known as Telephone-Oriented Attack Delivery (TOAD

The International Criminal Court (ICC), the global tribunal responsible for prosecuting serious international crimes, has been targeted by a sophisticated and highly focused cyberattack late last week. The Court confirmed that the incident, which marks the second such breach in recent years, was quickly detected and contained through its robust cybersecurity measures. According to an […]

The post International Criminal Court Hacked via Sophisticated Cyber Campaign appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

华为发布盘古 Pro MoE 模型，参数720亿，优化昇腾硬件，在推理性能上领先同类模型，并在Gitcode开放，但禁止欧盟使用。

华为发布了使用其昇腾 NPU 训练的开放权重模型，模型发布在 Gitcode 上，其许可证禁止欧盟地区使用。被称为盘古 Pro MoE 的模型总参数 720 亿，每个 token 激活 160 亿参数。模型为昇腾 300I Duo 和 800I A2 进行了优化，单卡推理性能达到了 1148 token/s，通过预测加速（speculative acceleration）能进一步提高到 1528 token/s。华为研究人员称，在参数低于 1000 亿的模型中，盘古 Pro MoE 的性能超越了 GLM-Z1-32B 和 Qwen3-32B 等知名开放权重模型。