Aggregator
CVE-2024-8576 | TOTOLINK AC1200 T8/AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207 /cgi-bin/cstecgi.cgi setIpPortFilterRules desc buffer overflow
CVE-2024-8577 | TOTOLINK AC1200 T8/AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207 /cgi-bin/cstecgi.cgi setStaticDhcpRules desc buffer overflow
CVE-2024-8578 | TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 /cgi-bin/cstecgi.cgi setWiFiMeshName device_name buffer overflow
CVE-2024-8574 | TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 /cgi-bin/cstecgi.cgi setParentalRules slaveIpList os command injection
CVE-2014-6020 | Fuel Rewards Network 1.0 X.509 Certificate cryptographic issues (VU#582497)
幕后操控者:美国情报界合同授予专报分析
【实战】使用开源情报破解谋杀案(一)
CVE-2013-1599 | D-Link IP Cameras var/www/cgi-bin/rtpd.cgi insecure inherited permissions (CORE-2013-0303 / EDB-25138)
Измена по заказу: новая волна кибершантажа угрожает семейному счастью
CVE-2014-6019 | psychology 1.0.2 X.509 Certificate cryptographic issues (VU#582497)
RansomHub
喜报 | 纽创信安荣获国家级专精特新“小巨人”企业称号
喜报 | 纽创信安荣获国家级专精特新“小巨人”企业称号
喜报 | 纽创信安荣获国家级专精特新“小巨人”企业称号
《人工智能安全治理框架》1.0版发布
9月9日,在2024年国家网络安全宣传周主论坛上,全国网络安全标准化技术委员会(以下简称“网安标委”)发布《人工智能安全治理框架》1.0版。
贯彻落实《全球人工智能治理倡议》,网安标委研究制定了《人工智能安全治理框架》(以下简称《框架》)。
《框架》以鼓励人工智能创新发展为第一要务,以有效防范化解人工智能安全风险为出发点和落脚点,提出了包容审慎、确保安全,风险导向、敏捷治理,技管结合、协同应对,开放合作、共治共享等人工智能安全治理的原则。《框架》按照风险管理的理念,紧密结合人工智能技术特性,分析人工智能风险来源和表现形式,针对模型算法安全、数据安全和系统安全等内生安全风险和网络域、现实域、认知域、伦理域等应用安全风险,提出相应技术应对和综合防治措施,以及人工智能安全开发应用指引。
网安标委秘书处主要负责人表示,《框架》1.0版的发布,对推动社会各方积极参与、协同推进人工智能安全治理具有重要促进作用,为培育安全、可靠、公平、透明的人工智能技术研发和应用生态,促进人工智能的健康发展和规范应用,提供了基础性、框架性技术指南。同时,也有助于在全球范围推动人工智能安全治理国际合作,推动形成具有广泛共识的全球人工智能治理体系,确保人工智能技术造福于人类。
点击阅读原文即可查看《人工智能安全治理框架》
文章来源:网信中国
How human-led threat hunting complements automation in detecting cyber threats
In this Help Net Security interview, Shane Cox, Director, Cyber Fusion Center at MorganFranklin Consulting, discusses the evolving methodologies and strategies in threat hunting and explains how human-led approaches complement each other to form a robust defense. Cox also discusses the ongoing need for skilled threat hunters and the future challenges and opportunities in integrating human intelligence with advanced automation. What are the primary methodologies used in threat hunting? How do they complement each other? … More →
The post How human-led threat hunting complements automation in detecting cyber threats appeared first on Help Net Security.
Hackers Target Taiwan UAV, Military Industries
A Chinese-speaking hacking group is targeting drone manufacturers in Taiwan and other military-related industries on the island country located roughly 100 miles from mainland China. Trend Micro on Friday said it tracks the threat actor as "Tidrone."
Darktrace CEO Swap: Gustafsson Steps Down; Popelka Steps Up
Darktrace has promoted COO Jill Popelka to CEO, replacing long-time leader Poppy Gustafsson. As the cybersecurity AI vendor prepares to finalize its sale to Thoma Bravo, Popelka will steer Darktrace into its next phase of growth. Gustafsson will join the board as a non-executive director.
US Prepares to Gather AI Foundational Model Developer Info
The U.S. federal government is preparing to collect reports from foundational artificial intelligence model developers, including details about their cybersecurity defenses and red-teaming efforts. The Department of Commerce said it wants thoughts on how data should be safety collected and stored.