Aggregator

A vulnerability classified as problematic has been found in libarchive up to 3.7.6. Affected is the function header_pax_extension of the file rchive_read_support_format_tar.c of the component bsdtar. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-48615. Access to the local network is required for this attack. There is no exploit available.

Alleged Data Breach and Sale of Hibu.com Merchant & Reviewer Database

Three security bypasses have been discovered in Ubuntu Linux's unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components. [...]

在 AI 热下，Xiao Li 在 2023 年从一名房地产承包商跨行转为数据中心项目经理。一年前，他从微信群里看到大量英伟达 GPU 的芯片交易。交易商吹嘘能通过走私搞到被限制出口的英伟达 GPU。当时一块英伟达 H100 能卖出 20 万元。如今他的微信群里开始讲述不同的故事。AI 芯片的交易更谨慎，价格也回落了。两个数据中心项目因难以从投资者手中获得更多资金而被迫抛售 GPU。根据实地采访，很多运营 AI 数据中心的企业正陷入困境。36 氪等媒体报道，新建计算资源中高达八成未被使用。向 AI 公司出租英伟达 GPU 去训练大模型本被视为是一笔包赚的生意。然而随着 DeepSeek 的崛起以及 AI 周边经济形势的突变，该行业处于衰退之中。因为缺乏经验以及过度炒作，数据中心变成了不良资产。市场研究公司 KZ Consulting 称，2023 年和 2024 年，从内蒙古到广东，各地宣布了 500 多个新数据中心项目。中国通信工业协会数据中心委员会称，到 2024 年底，至少有 150 个新建数据中心建成并投入运营。国有企业、上市公司和国有基金纷纷投资建造 AI 数据中心。在 2024 年初有超过 144 家公司在网信办注册开发大模型，但到了年底只剩下 10% 的公司还在继续投资。DeepSeek 的 R1 和 OpenAI 的 ChatGPT o1 和 o3 等推理模型的兴起改变了企业对数据中心的需求。推理性能对延迟有高要求，意味着数据中心需要建造在相关 AI 企业附近，这意味着很多建造在中西部和农村地区的数据中心对 AI 公司没有什么吸引力。此外大多数数据中心是为训练大模型而不是推理优化的。推理使用的硬件也与训练使用的硬件有很多不同。在此背景下，GPU 租赁价格降至历史最低水平。一台配置了 8 个 GPU 的英伟达 H100 服务器的月租金从 18 万元的高位降至 7.5 万元。由于高昂的电费和维护费用，一些数据中心宁愿空置。

Resources to learn more about cyber threats to elections and mitigate their impacts

Authors/Presenters: Karl Holmqvist, Beau Woods

Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel.

Permalink

The post BSidesLV24 – IATC – Wars And Rumors of Wars – What Are The Implications For Domestic Critical Infrastructure? appeared first on Security Boulevard.

Claroty revealed that 89% of healthcare organizations use the top 1% of riskiest Internet-of-Medical-Things (IoMT) devices

哥伦比亚大学对开发 AI 工具帮助面试者在编程问题中作弊的学生 Chungin“Roy”Lee 做出了停学的处罚。Lee 开发了 AI 工具 Interview Coder，帮助求职者在面试中完成编程相关的问题。该工具的月费为 60 美元。去年 12 月 Lee 发布了一则在亚马逊面试中使用 Interview Coder 的视频，之后被举报到学校，被纳入学校的纪律处分程序，出席了学校的听证会。在第一次听证会后，学校对他做出了留校察看的处罚。现在处罚加重。Lee 认为该工具能为他每年赚取约 200 万美元的收入。被停学后他准备直接去旧金山。

Het tempo om nieuwe mensen binnen te halen moet omhoog. Daarom heeft Defensie vandaag een nieuwe wervingscampagne gelanceerd. De organisatie moet in 2030 minstens 100.000 mannen en vrouwen tellen. In de jaren daarna kan dat aantal mogelijk nog verdubbelen. De nood is hoog, de urgentie om te werven ook.

Lupin Pharmaceuticals Allegedly Breached by Kill Security Ransomware Group (2025)

A breach at Oracle Health impacts multiple US healthcare organizations and hospitals after a threat actor stole patient data from legacy servers. [...]

A vulnerability was found in Dell Avamar up to 19.10 SP1. It has been rated as critical. This issue affects some unknown processing of the component AUI. The manipulation leads to operation on a resource after expiration. The identification of this vulnerability is CVE-2025-21117. An attack has to be approached locally. There is no exploit available.

A vulnerability was found in Cisco Identity Services Engine Software and ISE Passive Identity Connector. It has been classified as critical. Affected is an unknown function of the component API. The manipulation leads to deserialization. This vulnerability is traded as CVE-2025-20124. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Identity Services Engine Software and ISE Passive Identity Connector. It has been rated as critical. Affected by this issue is some unknown functionality of the component API. The manipulation leads to improper authorization. This vulnerability is handled as CVE-2025-20125. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Cisco Identity Services Engine Software. This issue affects some unknown processing of the component Web-based Management Interface. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-20204. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Cisco Identity Services Engine Software. Affected is an unknown function of the component Web-based Management Interface. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2025-20205. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in stylemix Directory Listings WordPress plugin up to 2.1.7 on WordPress. Affected is an unknown function of the component Post Meta Data Handler. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2025-1657. It is possible to launch the attack remotely. There is no exploit available.