2025年ACM China杰出学者讲坛——徐恪
“ACM China 杰出学者讲坛”由ACM中国理事会发起,旨在遴选在信息科学技术及相关领域做出杰出贡献、具有
Aggregator
2025年ACM China杰出学者讲坛——贾焰
8 months 3 weeks ago
“ACM China 杰出学者讲坛”由ACM中国理事会发起,旨在遴选在信息科学技术及相关领域做出杰出贡献、具有
树莓派推出 Raspberry Pi 500+
8 months 3 weeks ago
在推出键盘外形的一体机 Raspberry Pi 500 九个月之后,树莓派宣布了升级版 Raspberry Pi 500+,价格也提高了一倍达到 200 美元。Raspberry Pi 500+ 基本配置与 Raspberry Pi 500 相同,CPU 仍然是四核 2.4GHz Arm Cortex-A76,但内存从 8GB 升级到 16GB,提供了一个 NVMe 插槽,配备了 256GB M.2 2280 SSD,用户可升级为更高容量的 SSD。除此之外,Raspberry Pi 500+ 还改进了一体机的键盘,配备机械开关、可更换键帽和可单独编程的 RGB LED 灯。用户可选配 220 美元的版本,包括鼠标、27W USB-C 电源、2 米长的 micro HDMI 转 HDMI 线和初学者指南。
DeepMind представила Gemini Robotics-ER 1.5 — ИИ-модель, которая научит роботов планировать и рассуждать
8 months 3 weeks ago
Первая общедоступная модель "воплощенного рассуждения" для робототехники.
《追随麾下四十年(节录)》-- 张爱萍
8 months 3 weeks ago
回忆几十年里与他的接触,我从他那里得到的是关怀,是信任,是爱护,是支持,是深厚的情谊,是不尽的温暖。
China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks
8 months 3 weeks ago
Telecommunications and manufacturing sectors in Central and South Asian countries have emerged as the target of an ongoing campaign distributing a new variant of a known malware called PlugX (aka Korplug or SOGU).
"The new variant's features overlap with both the RainyDay and Turian backdoors, including abuse of the same legitimate applications for DLL side-loading, the
The Hacker News
国庆节前某红队钓鱼样本分析
8 months 3 weeks ago
国庆节前某红队钓鱼样本分析
亚马逊 kindle 竭尽所能打击电子书盗版
8 months 3 weeks ago
亚马逊 kindle 电子书阅读器的围墙花园如今比巴比伦塔还要高。亚马逊一周前向 11 代和 12 代 Kindle,Kindle Scribe 1 和 Scribe 2 以及 Kindle Colorsoft 推送了新版本固件(v5.18.5),更新了 DRM 系统。新的 DRM 使用了一个储存在 Kindle 无法访问区域的文件(account secret)作为解密加密电子书的密钥的一部分,这意味着除非设备在更新新固件前已经越狱,否则下载到设备上的新电子书将无法解密。亚马逊是否会对第 9 代和 10 代 Kindle 推送新 DRM 还有待观察。阻止下载新固件的一个权宜之计是让 Kindle 设备的可用空间降至 300MB 以内,因为下载新固件需要 300MB 的空间。
"Робот-матка" — ложь, сгенерированная ИИ. Красивая картинка убедила мир в невозможном.
8 months 3 weeks ago
Разоблачение самого убедительного ИИ-фейка года.
Hackers use Weaponized Microsoft Teams Installer to Compromise Systems With Oyster Malware
8 months 3 weeks ago
A sophisticated malvertising campaign is using fake Microsoft Teams installers to compromise corporate systems, leveraging poisoned search engine results and abused code-signing certificates to deliver the Oyster backdoor malware. The attack was neutralized by Microsoft Defender’s Attack Surface Reduction (ASR) rules, which blocked the malware from establishing contact with its command-and-control server. The multi-stage attack […]
The post Hackers use Weaponized Microsoft Teams Installer to Compromise Systems With Oyster Malware appeared first on Cyber Security News.
Guru Baran
【安全圈】22 岁主谋落网!00 后黑客组建的 DDoS 僵尸网络帝国 RapperBot 被彻底取缔
8 months 3 weeks ago
关键词违反网络安全法一、上海某跨国公司违规出境用户信息案2025年5月,某国际时尚品牌被曝数据泄露,其中国公司
【安全圈】曝一加氧 OS 12 - 15 系统存严重漏洞,10 月中旬修复
8 months 3 weeks ago
关键词违反网络安全法一、上海某跨国公司违规出境用户信息案2025年5月,某国际时尚品牌被曝数据泄露,其中国公司
【安全圈】XCSSET 新变种:专攻苹果 Mac 开发者,窃取加密货币钱包!
8 months 3 weeks ago
关键词违反网络安全法一、上海某跨国公司违规出境用户信息案2025年5月,某国际时尚品牌被曝数据泄露,其中国公司
Hackers Use Fake Invoices to Spread XWorm RAT via Office Files
8 months 3 weeks ago
Hackers are sending fake invoice emails with malicious Office files that install the XWorm RAT on Windows systems, allowing full remote access and data theft. Learn how the shellcode and process injection are used to steal data, and how to stay safe from this persistent threat.
Deeba Ahmed
Apache Airflow Vulnerability Exposes Sensitive Details to Read-Only Users
8 months 3 weeks ago
A critical security flaw has emerged in Apache Airflow 3.0.3, exposing sensitive connection information to users with only read permissions. The vulnerability, tracked as CVE-2025-54831 and classified as “important” severity, fundamentally undermines the platform’s intended security model for handling sensitive data within workflow connections. Apache Airflow version 3.0 introduced significant changes to how sensitive information […]
The post Apache Airflow Vulnerability Exposes Sensitive Details to Read-Only Users appeared first on Cyber Security News.
Tushar Subhra Dutta
Malware Operators Collaborate With Covert North Korean IT Workers to Attack Corporate Organizations
8 months 3 weeks ago
A sophisticated cybercriminal alliance between malware operators and covert North Korean IT workers has emerged as a significant threat to corporate organizations worldwide. This hybrid operation, known as DeceptiveDevelopment, represents a dangerous convergence of traditional cybercrime and state-sponsored activities, targeting software developers and cryptocurrency professionals through elaborate social engineering campaigns. The DeceptiveDevelopment group, active since […]
The post Malware Operators Collaborate With Covert North Korean IT Workers to Attack Corporate Organizations appeared first on Cyber Security News.
Tushar Subhra Dutta
Водород в 10 раз горячее солнца + суперкомпьютер = вечная энергия для человечества к 2030-м
8 months 3 weeks ago
Type One Energy укротила температуру звезд на Земле.
绕过WAF:追踪源站IP与SQL注入的艺术
8 months 3 weeks ago
声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由用户承担全部
New Botnet Loader-as-a-Service Exploiting Routers and IoT Devices to Deploy Mirai Payloads
8 months 3 weeks ago
A sophisticated botnet operation has emerged, employing a Loader-as-a-Service model to systematically weaponize internet-connected devices across the globe. The campaign exploits SOHO routers, IoT devices, and enterprise applications through command injection vulnerabilities in web interfaces, demonstrating an alarming evolution in cybercriminal tactics. The malicious infrastructure operates by targeting unsanitized POST parameters in network management fields […]
The post New Botnet Loader-as-a-Service Exploiting Routers and IoT Devices to Deploy Mirai Payloads appeared first on Cyber Security News.
Tushar Subhra Dutta
应对量子计算威胁!格尔软件官网已启用抗量子密码技术
8 months 3 weeks ago
格尔软件近日宣布其官方网站已全面完成ML-KEM算法的升级与支持