Aggregator

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

Троян MagicAd прятался более чем в 50 играх и программах каталога Xiaomi GetApps

继Andreessen”软件吞噬世界”之后，AI正反过来吞噬软件：从写代码到搭架构、做编排、修模型，人类不断为其打造技能与自主系统，把自己挤出回路。当工具完善到AI不再需要我们，碳基生命这段”引导程序”或许已写下最后一行代码，届时人类在宇宙中还剩下什么？

США признали уязвимость SolarWinds активно эксплуатируемой и дали госорганам две недели.

百万级模型的复杂供应链背后的元数据缺失、依赖关系隐形，正加剧供应链风险的传播。

HomeAI AI

A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how it turns devices, including always-on smart TVs, into exit nodes that relay web-scraping traffic for a data business Bright Data markets heavily to the AI industry. The company, the successor to Luminati, operates what it calls the largest residential proxy network in the world,

A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and docume

Корпорация расширяет экосистему ИИ-инструментов для создателей контента на фоне растущей конкуренции с YouTube, TikTok и Instagram.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-28318 (CVSS score: 7.5), is a denial-of-service (DoS) bug that causes the service to crash

Vulnerability / Patch ManagementThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) h

Claude Opus 4.8 helped uncover a four-year-old critical flaw in Zcash that could have enabled undetectable creation of counterfeit coins. On May 29, the security researcher Taylor Hornby found a critical vulnerability in Zcash Orchard privacy pool using Claude Opus 4.8. The Zcash team hired Hornby specifically to look for this kind of issue. He […]

Claude Opus Found a Four-Year-Old Hole in Zcash’s Privacy Layer. Nobody Knows If Some

前不久，浙江桐乡警方通报了一起特大跨全国侵犯游戏著作权案。国内一个规模巨大的Steam游戏账号非法交易窝点已被成功捣毁。该网络犯罪团伙涉及人员数量不少于12人，长期在电商平台非法提供所谓“假入库”服务

Two things landed within days of each other this week. A security startup reported 21 previously unknown vulnerabilities in FFmpeg, the media library inside almost everything that touches video, all of them found by an autonomous AI agent. The same week, Google shipped Chrome 149 with patches for 429 security bugs, the most ever in a single release. Only the FFmpeg bugs were found by AI.

Vulnerability / Endpoint SecurityTwo things landed within days of each other this week. A security

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical SolarWinds Serv-U vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, warning that threat actors are actively exploiting the flaw in the wild. Tracked as CVE-2026-28318, the vulnerability affects SolarWinds Serv-U file transfer software and enables unauthenticated attackers to crash the service through specially […]

The post CISA Warns of SolarWinds Serv-U Vulnerability Exploited in Attacks appeared first on Cyber Security News.

По данным СМИ, деньги заплатили. Weil подтвердила только сам инцидент.

A vulnerability categorized as problematic has been discovered in LatePoint Plugin up to 5.6.0 on WordPress. Affected by this issue is the function change_status of the component Appointment Handler. Such manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2026-9719. The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.