Aggregator

平台算法给民主带来风险

Solidot
2 weeks 5 days ago
越来越多的证据表明社媒平台算法给民主带来了风险。由于算法的不透明性以及以最大化用户参与度和平台停留时间为导向,完全不在乎推送内容的质量,算法被认为是造成政治极化的罪魁祸首。以 X 平台为例,在马斯克(Elon Musk)在 2024 年宣布支持特朗普之后,倾向共和党的账号曝光度显著提升。马斯克本人在 2024 年 7 月至 11 月间所发布推文的累计浏览量高达 171 亿次,超过了该平台所有政治竞选广告的总和。2025 年德国联邦选举期间,各大社交平台算法推荐给年轻用户的政党相关内容中半数涉及极右翼政党。一项分析发现,X 平台算法不成比例的放大了政治极端政党(尤其是极右翼政党)的内容,系统性压制中间政党。另一项研究发现,相比按时间排序的内容,用户接触 X 平台算法推送内容七周后,政治态度会向更保守的方向转变。禁用算法后这种转变并未逆转。这些研究显示平台算法目前的运作方式不利于民主。社媒平台算法放大极端声音导致的一个结果是扭曲对观点分布的感知,发表边缘观点的人会认为自己是主流,这种网络同质性被称为“虚假共识效应(false consensus effect)”。如果不能采取强有力的保护措施,我们会进入到一个日益极化和分裂的威权社会。

UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms

Security Affairs
2 weeks 5 days ago
UNC3753 phones staff posing as IT, hijacks screen sessions, steals sensitive legal files, and now sends operatives physically into offices to plug in USB drives. Google Mandiant and the Google Threat Intelligence Group published a detailed report documenting an active extortion campaign carried out by the cybercrime group UNC3753 (aka Luna Moth, Chatty Spider, and […]
Pierluigi Paganini

GLP-1 减肥药与更低的乳腺癌风险相关

Solidot
2 weeks 5 days ago
根据发表在《JCO Oncology Practice》期刊上的一项研究,服用 GLP-1 减肥药与女性更低的乳腺癌风险相关。对逾 11 万名年龄在 45 岁至 80 岁之间的回顾性分析发现,服用 GLP-1 药物的女性患乳腺癌的风险比未服用的女性低约 30%。这是一项观察性研究,GLP-1 减肥药与降低乳腺癌发病率之间是否存在关联还有待进一步研究。GLP-1 药物模拟了人体天然激素 glucagon‑like peptide‑1,该激素有助于调节血糖和食欲。GLP-1 药物最初被用于减肥,如今被发现还可能有助于预防癌症。研究人员指出,GLP-1 药物会影响许多与癌症发展相关的靶点和通路,因此值得进一步展开研究。

VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances

The Hackers News
2 weeks 5 days ago
A China-nexus cyber espionage group has been observed deploying a BSD variant of a known backdoor called BRICKSTORM, as well as two other malware families codenamed PLENET (aka GRIMBOLT) and AGENTPSD to target Linux systems. The activity has been attributed by Volexity to a threat cluster it tracks as VerdantBamboo, which it said overlaps with hacking groups known as Clay Typhoon (Microsoft),
The Hacker News

CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318)

Help Net Security
2 weeks 5 days ago

A vulnerability (CVE-2026-28318) that can be exploited to crash SolarWinds Serv-U file transfer servers is being leveraged by attackers in the wild, the US Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Friday. The agency has ordered US federal civilian agencies to address it by June 19, 2026, either by implementing a patch or implementing mitigations. About CVE-2026-28318 CVE-2026-28318 is an uncontrolled resource consumption vulnerability that can be triggered by remote, unauthenticated attackers. The flaw … More →

The post CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318) appeared first on Help Net Security.

Zeljka Zorz

Managed ad