Aggregator

Сайт для отслеживания крипты оказался инструментом её кражи.

印度的呼叫中心行业从业者逾 300 万人，产值 2800 亿美元。AI 所带来的服务自动化会对这个行业产生多大的影响？AI 聊天机器人或虚拟智能体能完成基本的客户服务任务，如处理密码重置或余额更新，它们还能编写代码、翻译电子邮件、引导患者，分析信用卡、抵押贷款和保险的申请。印度外包巨头 Tata Consultancy Services CEO K Krithivasan 称，一年内对呼叫中心的需求将会降至最低。布鲁金斯学会发现，86% 的客户服务任务有“高度自动化潜力”。国际货币基金组织警告，印度逾四分之一的就业岗位会“高度曝光”给 AI。虽然 AI 可能会淘汰部分工作，但也会创造新的工作岗位。Teleperformance 等公司雇佣了数千印度数据标注员，为 AI 系统标注数据。

A vulnerability, which was classified as problematic, was found in WSO2 Enterprise Integrator, API Manager, Identity Server as Key Manager, Identity Server, Open Banking AM, Open Banking IAM and Carbon User Manager Kernel. Affected is an unknown function of the component Management Console. The manipulation leads to incorrect authorization. This vulnerability is traded as CVE-2024-3511. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

Google has revealed the various safety measures that are being incorporated into its generative artificial intelligence (AI) systems to mitigate emerging attack vectors like indirect prompt injections and improve the overall security posture for agentic AI systems. "Unlike direct prompt injections, where an attacker directly inputs malicious commands into a prompt, indirect prompt injections

6月20日，中国电科网络安全创新发展大会暨电科日活动在京举办，重磅推出“衡”系列安全解决方案和“量铠”抗量子密码系列产品。

6月21日，以“新安全 新价值”为主题的第五届数字安全大会在北京召开。

近年来，国家和地方政府一直在推动电动车及其电池的安全技术规范，出台了多个关于电动自行车安全治理管控的政策法规。但电动自行车仍是安全隐患“重灾区”。对此，志翔科技智慧电力技术给出了解决方案——志翔电动自行车电池安全检测和入户充电监测预警系统。

本文借鉴欧盟、美国和国际组织对开源人工智能的治理经验，为我国开源人工智能的有序发展、利用开源人工智能推动前沿科技创新和构建负责任的开源人工智能生态体系提供参考。

Zyxel users beware: A critical remote code execution flaw (CVE-2023-28771) in Zyxel devices is under active exploitation by a Mirai-like botnet. GreyNoise observed a surge on June 16, targeting devices globally.

A vulnerability was found in yrutschle sslh up to 2.2.1. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to link following. The identification of this vulnerability is CVE-2025-52936. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in OPPO ColorOS. It has been declared as problematic. This vulnerability affects unknown code of the component WiFi Hotspot. The manipulation leads to information disclosure. This vulnerability was named CVE-2025-27387. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability was found in dail8859 NotepadNext up to 0.11. It has been classified as critical. This affects an unknown part of the file ldebug.C. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2025-52939. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in PointCloudLibrary pcl up to 1.13.x and classified as problematic. Affected by this issue is some unknown functionality of the file crc32.C of the component zlib. The manipulation leads to Local Privilege Escalation. This vulnerability is handled as CVE-2025-52937. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in DragonflyDB Dragonfly 1.28.18/1.30.0/1.30.1 and classified as very critical. Affected by this vulnerability is an unknown functionality of the file lua_struct.C. The manipulation leads to integer overflow. This vulnerability is known as CVE-2025-52935. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in WSO2 Enterprise Integrator, API Manager, Identity Server as Key Manager, Identity Server, Open Banking AM, Open Banking IAM and Carbon User Manager Kernel. Affected is an unknown function of the component Management Console. The manipulation leads to incorrect authorization. This vulnerability is traded as CVE-2024-3511. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in dail8859 NotepadNext up to 0.11. This issue affects the function singlevar of the file lparser.C. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2025-52938. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in Xiaomi Mi Connect Service App 3.1.895.10. This vulnerability affects unknown code. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-45347. The attack needs to be done within the local network. There is no exploit available.

A vulnerability classified as problematic was found in Joomlatune Com Proofreader up to 1.0. This vulnerability affects unknown code of the file index.php of the component Error Page. The manipulation leads to cross site scripting. This vulnerability was named CVE-2009-4157. The attack can be initiated remotely. Furthermore, there is an exploit available.

Когда Папа говорит “Стоп”, значит, технологии перешли опасную черту…

A vulnerability was found in Itamar Elharar Com Musicgallery and classified as critical. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument ID leads to sql injection. This vulnerability is handled as CVE-2009-4217. The attack may be launched remotely. Furthermore, there is an exploit available.