Aggregator

GitHub 内部 3,800 仓库被盗，入口是员工电脑上被投毒的 VS Code 扩展。TeamPCP 用 Claude 写 payload，还调 Claude Code 当侦察、用 Sigstore 签出带合法签名的恶意 npm 包。

Новая память на оксиде гафния готова к самым дальним миссиям.

三星电子劳资 20 日就奖金发放上限标准等进行第三轮事后调解会议，但是双方未能达成协议，谈判最终破裂。工会表示对雇佣劳动部旗下中央劳动委员会提出的协调方案表示同意，但是三星电子方面拒不接受

三星电子劳资 20 日就奖金发放上限标准等进行第三轮事后调解会议，但是双方未能达成协议，谈判最终破裂。工会表示对雇佣劳动部旗下中央劳动委员会提出的协调方案表示同意，但是三星电子方面拒不接受协调方案。三星电子只反复称“尚未做出决策”，没有表明立场。工会将于明天如期启动总罢工，在罢工期间工会仍将继续努力，争取同资方达成协议。总罢工预期每天会给三星电子带来多达 20 亿美元的损失。韩总统府对谈判破裂表示遗憾，韩政府正在研讨行使“紧急调解权”限制工会进行罢工，并将支持劳资进行新一轮调解。

Large language models in operational roles query telemetry, propose configuration changes, and in some deployments execute those changes against live infrastructure. Ticket drafting and alert summarization were the starting point. Vendors describe this work as autonomous remediation or self-healing infrastructure. A recent survey on agentic AI in network and IT operations gives it a more useful name: a confused-deputy problem waiting to happen. The confused-deputy problem in agentic AI security The classic confused-deputy attack tricks … More →

The post When your AI assistant has the keys to production appeared first on Help Net Security.

A Huawei zero-day flaw reportedly caused Luxembourg’s 2025 nationwide outage, disrupting landline, 4G/5G, and emergency services On July 23, 2025, a nationwide telecom outage in Luxembourg was reportedly triggered by a previously undisclosed flaw in Huawei enterprise routers. The attack disrupted landline, 4G, 5G, and emergency communications for more than three hours after specially crafted […]

Alleged Huawei zero-day blamed for the 2025 Luxembourg telecom crash

2026年5月20日 13:28云计算, 科技资讯0228

May 20, 2026Thank you t

GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group

Grafana Labs, on May 19, 2026, said an investigation into its recent breach found no evidence of customer production systems or operations being compromised. It said the scope of the incident is limited to the Grafana Labs GitHub environment, which includes public and private source code along with internal GitHub repositories. "After the initial assessment, we found that in addition to source

Supply Chain Attack / Cloud SecurityGrafana Labs, on May 19, 2026, said an investigation into its

Positive Technologies проведет в Москве День технологий при поддержке мэрии.

GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group claimed to have accessed approximately 4,000 repositories containing private code. [...]

New StorybyVarun VardebyVarun Varde@varunvardeCEO & DevOps leader with 20 years driving cloud innov

New StorybyRoshan RajbanshibyRoshan Rajbanshi@RoshanRajbanshi_frqj97tcCybersecurity enthusiast | CT

New StorybySebastian Martinez TorregrosabySebastian Martinez Torregrosa@sebastianmartinezPMM (ex-En

New StorybyDeepesh Dhake (SQL Server DBA)byDeepesh Dhake (SQL Server DBA)@sqlserverinsightsSQL Serv