Aggregator

Exploiting zero days in abandoned hardware

不安全
6 months 3 weeks ago
研究人员在DistrictCon Junkyard竞赛中成功利用两款已停产的网络设备(Netgear路由器和BitDefender盒子)的漏洞链获得远程根权限,展示了老旧硬件持续存在的安全风险,并分享了详细的研究过程和经验。

Mistral AI 环境报告证实 AI 是一个饥渴的怪物

Solidot
6 months 3 weeks ago
为提高透明度,法国 AI 公司 Mistral AI 与 Carbone 4 和生态转型机构 ADEME 合作发布了其大模型 Mistral Large 2 的环境报告,证实 AI 是一个饥渴的怪物。Mistral Large 2 大模型的推理过程占到了温室气体排放的 85.5% 和水消耗的 91%;Mistral Large 2 有 1230 亿个参数,模型训练产生了约 2 万吨二氧化碳当量,消耗了 28.1 万立方米水,相当于约 112 个奥运会标准游泳池的蓄水量;为了产生 400 个 token 的响应,模型消耗了约 45 毫升水,产生了约 1.14 克二氧化碳当量。Mistral 称测试显示,大模型的环境影响与参数规模成正比,生成相同数量的 token,一个参数规模大十倍的模型的环境影响比较小的模型大一个量级。

US Announces $15M Reward for North Korean IT Scheme Leaders

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
6 months 3 weeks ago

The United States government announced coordinated actions across multiple departments today, offering rewards totaling up to $15 million for information leading to the arrests and convictions of North Korean nationals involved in extensive revenue generation schemes targeting American companies and citizens. The Department of State’s Transnational Organized Crime Rewards Program is specifically targeting Sim Hyon-sop […]

The post US Announces $15M Reward for North Korean IT Scheme Leaders appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

BlackSuit ransomware gang’s darknet websites seized by police

不安全
6 months 3 weeks ago
多国警方联合行动查封了BlackSuit勒索软件团伙的暗网 extortion 网站,涉及17个执法机构和网络安全公司Bitdefender。该团伙自2023年活跃以来,涉嫌通过勒索索取超5亿美元赎金,并与Royal和Conti等犯罪组织有关联。部分成员已转向Chaos勒索软件活动。

特朗普威胁关闭 TikTok

Solidot
6 months 3 weeks ago
由于谈判不顺利,在三次给予 TikTok 宽限期之后美国政府官员威胁关闭 TikTok。TikTok 美国业务出售或被禁止服务的禁令原本于 2025 年 1 月 19 日生效,特朗普于 1 月 20 日上任之后就给了它 75 天宽限期。该宽限期于 4 月 5 日截至,但将 TikTok 美国业务出售给美国公司的谈判仍然在进行之中,特朗普之后第二次给了 75 天的宽限期。在 6 月 19 日第二次宽限期即将结束之际,特朗普再次延长 90 天。这位最早在 2020 年威胁要关闭 TikTok 的美国总统表示只有他能达成交易让它能在美国继续运营。然而与中国方面的谈判并不顺利,商务部长 Howard Lutnick 表示如果中国方面不批准交易,美国政府愿意关闭 TikTok。谈判的焦灼点是美国要求字节跳动出售 TikTok 使用的推荐算法。

Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks

The Hackers News
6 months 3 weeks ago
Threat hunters have disclosed two different malware campaigns that have targeted vulnerabilities and misconfigurations across cloud environments to deliver cryptocurrency miners. The threat activity clusters have been codenamed Soco404 and Koske by cloud security firms Wiz and Aqua, respectively. Soco404 "targets both Linux and Windows systems, deploying platform-specific malware," Wiz
The Hacker News

Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks

不安全
6 months 3 weeks ago
云安全公司披露了两个恶意软件活动集群Soco404和Koske,利用云环境漏洞和配置错误传播加密货币挖矿软件。Soco404针对Linux和Windows系统,使用伪装技术;Koske则利用伪装成熊猫图片的多格式文件传播恶意代码。两者均通过自动化扫描寻找入口点,并利用多种工具和技术最大化传播范围和持久性。

Overcoming Risks from Chinese GenAI Tool Usage

The Hackers News
6 months 3 weeks ago
A recent analysis of enterprise data suggests that generative AI tools developed in China are being used extensively by employees in the US and UK, often without oversight or approval from security teams. The study, conducted by Harmonic Security, also identifies hundreds of instances in which sensitive data was uploaded to platforms hosted in China, raising concerns over compliance, data
The Hacker News

Overcoming Risks from Chinese GenAI Tool Usage

不安全
6 months 3 weeks ago
中国企业开发的生成式AI工具被美英员工广泛使用,导致大量敏感数据上传至中国平台,引发合规与安全担忧。研究显示近8%员工使用此类工具,涉及源代码、财务报告等敏感信息。企业需加强监控与管理以应对风险。

Managed ad