【研究报告】美国侦察卫星发展研究:太空智能侦察星座、RG-XX与SG-XX系统全面解析
该报告系统分析了美国太空侦察体系正经历的60年来最深刻战略重构,核心内容可概括为五大维度。
Aggregator
京东与腾讯就AI Agent将达成重要合作
2 weeks 4 days ago
京东与腾讯就AI Agent将达成重要合作据悉,京东与腾讯将围绕AI Agent展开深度合作。依托京东的商品供应链、履约服务能力及腾讯的生态入口优势,双方将共同打造跨场景的智能化服务新范式,推动AI
Agentic AI赋能的 ARM Metis 系统,推动软件安全漏洞检测技术升级
2 weeks 4 days ago
Governing Claude Enterprise in Environments Where Inline Controls Can't Go
2 weeks 4 days ago
TrendAI™ integrates Anthropic's Claude Compliance API into TrendAI Vision One™ through two collectors that bring AI-aware visibility and detection to Claude Enterprise usage: one keeps all data inside the environment, while the other feeds TrendAI Vision One™ for deeper correlation and compliance.
Tawnya Lancaster
Old WinRAR Flaw Fuels Attacks on Ukraine: How Unmanaged Software Keeps the Door Open
2 weeks 4 days ago
Two separate Russia-aligned campaigns are still exploiting the WinRAR flaw CVE-2025-8088 against Ukrainian organizations nearly a year after it was patched, showing how unmanaged software keeps an exploited entry point open long after the fix ships.
Hiroyuki Kakara
[webapps] OpenEMR 7.0.2 - Arbitrary File Read
2 weeks 4 days ago
OpenEMR 7.0.2 - Arbitrary File Read
开源邮件安全检测与内部邮箱盗用防护:小模型方案评估及群发拦截策略|总第313周
2 weeks 4 days ago
本期周报简介:
1、针对开源邮件安全检测系统,尤其是基于小模型或零样本模型的方案,在实际选型中会考虑吗?防钓鱼、防木马的优缺点分别在哪?
2、内部邮箱被盗后,如何有效阻止其向全员群发钓鱼邮件?还有哪些实操中好用的网关检测或发送限制手段?
WinClaw限时全免!注册即享AI大模型免费额度
2 weeks 4 days ago
快来注册体验吧~
7月1日新规施行:能源企业数据安全合规建设方案
2 weeks 4 days ago
《能源行业数据安全管理办法(试行)》
Agentic AI赋能的 ARM Metis 系统,推动软件安全漏洞检测技术升级
2 weeks 4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
开源邮件安全检测与内部邮箱盗用防护:小模型方案评估及群发拦截策略|总第313周
2 weeks 4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
WinClaw限时全免!注册即享AI大模型免费额度
2 weeks 4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
7月1日新规施行:能源企业数据安全合规建设方案
2 weeks 4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
【华为手机取证中你不知道的秘密】
2 weeks 4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
【如何查找网站的真实IP地址】
2 weeks 4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
【华为手机取证中你不知道的秘密】
2 weeks 4 days ago
文末有两种获取方法
【如何查找网站的真实IP地址】
2 weeks 4 days ago
随着CDN加速和各类安全防护的普及,大量网站的真实IP被层层隐藏,用户只能接触到经CDN中转的代理节点。当我们需要对目标网站进行技术分析、安全评估,或排查源服务器故障时,找到那张被层层遮挡的“真实面孔”。
CVE-2026-36576 | openlabs docker-wkhtmltopdf-aas POST Request app.py os command injection
2 weeks 4 days ago
A vulnerability labeled as critical has been found in openlabs docker-wkhtmltopdf-aas. This vulnerability affects unknown code of the file app.py of the component POST Request Handler. Executing a manipulation can lead to os command injection.
This vulnerability is registered as CVE-2026-36576. The attack requires access to the local network. No exploit is available.
vuldb.com
CVE-2026-37462 | gobgp 4.3.0 BGP /bgp/bgp.go BGPUpdate.DecodeFromBytes integer underflow
2 weeks 4 days ago
A vulnerability marked as problematic has been reported in gobgp 4.3.0. This issue affects the function BGPUpdate.DecodeFromBytes of the file /bgp/bgp.go of the component BGP Handler. The manipulation leads to integer underflow.
This vulnerability is documented as CVE-2026-37462. The attack can be initiated remotely. There is not any exploit available.
vuldb.com
CVE-2026-36748 | RockRMS up to 16.13/17.7.0 User Profile cross site scripting
2 weeks 4 days ago
A vulnerability was found in RockRMS up to 16.13/17.7.0. It has been classified as problematic. Affected by this issue is some unknown functionality of the component User Profile Handler. This manipulation causes cross site scripting.
The identification of this vulnerability is CVE-2026-36748. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com