Aggregator

Стоит ли доверять алгоритмам, на работу которых так легко повлиять?

马来西亚众议院周一以 59 票对 40 票通过了扩大对互联网控制的新法案。法案对内容违规施加了更严厉的处罚，赋予执法部门广泛的权力，任何授权官员都有权在无搜查令的情况下进行搜查和扣押。服务提供商也可能将需要承担责任，需要在调查期间向当局披露用户数据。反对者认为该法案将压制异议和言论自由。反对党团结组织（Bersatu）议员 Mas Ermieyati Samsudin 称，无搜查令搜查是一项巨大的权力，而所谓的授权官员缺乏明确的定义，是反腐败官员还是普通官员？新法案将递交到参议院等待批准。

The CIS CTI team responded to member incident reports and monitored reporting trends around the 2024 General Election. Here's what the team observed.

Horizon3.ai launched NodeZero Insights, a platform designed for security leaders, CIOs, CISOs and practitioners. This new solution delivers real-time dashboards to measure, track and strengthen an organization’s security posture over time. NodeZero Insights provides the clarity and proof that security leaders need to demonstrate tangible progress, align priorities and make informed decisions in an increasingly complex threat landscape. Traditional pentesting often fails to keep pace with the rapidly changing environments organizations face. “A single pentest … More →

The post Horizon3.ai NodeZero Insights enables executives to visualize changes in their security posture appeared first on Help Net Security.

文章探讨了经济制裁对叙利亚的影响，包括其经济效果、政治效力、人道主义影响以及对欧盟制裁政策的影响，并将制裁置于叙利亚冲突的地缘政治背景下。

报告概述了2024年12月8日巴沙尔·阿萨德总统辞职后叙利亚的政治局势变化，并分析了美国和其他外部势力在这一过程中的角色。

Cybersecurity researchers have shed light on a sophisticated mobile phishing (aka mishing) campaign that's designed to distribute an updated version of the Antidot banking trojan. "The attackers presented themselves as recruiters, luring unsuspecting victims with job offers," Zimperium zLabs Vishnu Pratapagiri researcher said in a new report. "As part of their fraudulent hiring process, the

Тысячи людей оказались заложниками автоматизированной системы контроля.

Attackers are distributing a malicious .NET-based HPDxLIB activator disguised as a new version, which is signed with a self-signed certificate, and targets entrepreneurs automating business processes and aims to compromise their systems. They are distributing malicious activators on forums targeting business owners and accountants, deceptively promoting them as legitimate license bypass tools with update functionality […]

The post RedLine Malware Weaponizing Pirated Corporate Softwares To Steal Logins appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

人形机器人，能横扫工业场景吗？

SentinelOne is included in this year’s Fortune Best Workplaces for Parents, ranking among the top 70 companies worldwide for working parents.

The post First Things First | SentinelOne Is A Fortune Best Workplace for Parents appeared first on SentinelOne.

Startup Aims to Secure AI Agents, Expand Global Reach, Do User Access Management
Astrix raises $45 million to advance AI agent security and expand its global presence. The company plans to double its workforce, focusing on anomaly detection and fingerprinting techniques for non-human identities along the correlating information about human and non-human identities.

Today, the AI Audit dashboard gets an upgrade: you can now quickly see which AI services are honoring your robots.txt policies and then automatically enforce the policies against those that aren’t.

New AppLite Banker malware targets Android devices, employing advanced phishing techniques to steal credentials and data

国家计算机病毒应急处理中心监测发现12款违规移动应用

Google Play 上的 SpyLoan Android 恶意软件安装次数达 800 万次

In an attack campaign dubbed “Operation Digital Eye,” a suspected China-nexus threat actor has been observed targeting business-to-business IT service providers in Southern Europe.  The attack operation lasted roughly three weeks, from late June to mid-July 2024. The intrusions could have allowed the attackers to gain a strategic foothold and compromise downstream entities.  In particular, […]

The post Visual Studio Tunnels Abused For Stealthy Remote Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.