AI赋能SOC测评:只有10%从AI中获得高价值
18个月前,AI SOC还只是一句营销话术。如今它已经成了预算项目。
Aggregator
IDnow launches Trust Platform to help regulated firms move from KYC to continuous trust
2 days 13 hours ago
IDnow has announced the launch of the IDnow Trust Platform, designed to help regulated organisations orchestrate identity verification, fraud prevention, biometric authentication, and qualified digital trust services throughout the customer lifecycle. “The identity industry is entering its biggest transformation since onboarding first went digital,” said Andreas Bodczek, CEO of IDnow. “For years, organisations treated identity verification as a one-time event at the start of a customer relationship. That model is no longer sufficient. We are … More →
The post IDnow launches Trust Platform to help regulated firms move from KYC to continuous trust appeared first on Help Net Security.
Industry News
Meta 放宽言论限制后对政客的威胁增加了两倍
2 days 13 hours ago
Meta 去年以言论监管过严为由放宽了限制。Center for Countering Digital Hate(CCDH)的一项研究调查了这一变化带来的直接影响。研究人员分析了约 800 万 Facebook 评论,发现新规实施后六个月内,针对共和党和民主党议员的辱骂性和种族主义评论增加了两倍,暴力威胁和仇恨言论在同期内增加了三倍。研究人员还发现,针对特朗普总统的威胁增加了一倍多。研究人员表示,直接威胁总统生命安全的评论可能构成重罪。违反 Meta 有关暴力威胁政策的评论数量增至四倍,从政策改变前六个月的 1800 条增加到改变后六个月的 7600 条。仇恨言论评论也翻了两倍,从 6900 条增加到 30000条。违反 Meta 关于欺凌和骚扰规则的评论数量增加了一倍,从 15700 条增加到 39900 条。
Qilin
2 days 13 hours ago
You must login to view this content
cohenido
Безвизовый въезд, курортные апартаменты и переводы вне банков. Мошенники нашли новый дом на Шри-Ланке
2 days 13 hours ago
Как работает миграция мошеннических центров по всей Азии.
JDY Botnet Evolves After KV Takedown, Targets Military Networks
2 days 14 hours ago
JDY botnet scans SOHO/IoT devices globally to map services and targets, especially US military networks. Lumen’s Black Lotus Labs reported the resurgence of the JDY botnet, a covert reconnaissance network tied to Chinese state-sponsored hacking groups including Volt Typhoon. The network was first spotted in late 2023 as a cluster inside KV-botnet. The U.S. government […]
Pierluigi Paganini
Adversarial Alignment: Threat Actors Weaponize AI Safety Guards to Thwart Malware Analysis
2 days 14 hours ago
Most frontier artificial intelligence models feature built-in safety mechanisms. Consequently, these protocols actively block inquiries regarding biological or nuclear weaponry. Specifically, when systems detect hazardous triggers, they immediately refuse the prompt. However, threat actors...
The post Adversarial Alignment: Threat Actors Weaponize AI Safety Guards to Thwart Malware Analysis appeared first on Information Security News.
ddos
信息窃取木马将数百万设备变成凭证盗窃机器
2 days 14 hours ago
当信息窃取木马能给他们一把前门钥匙时,黑客们不再费力去撬侧窗。 信息窃取木马已成为攻击者获取被盗凭证的主要来源。使用这些凭证现已成为恶意行为者以"受邀客人"身份有效访问目标的首选途径。这比强行闯入更快、更容易、更隐蔽且更有效。 Flashpoint 报告称,2025 年有超过 1,110 万台设备感染了信息窃取木马。超过 33 亿条凭证、浏览器工件、会话信息及其他形式的身份数据正在非法市场上流通。...
hackernews
Nottingham University data breach affects over 450,000 students
2 days 14 hours ago
The University of Nottingham confirmed on Wednesday that a hacking group gained access to its student records system in a breach affecting both current students and alums. [...]
Sergiu Gatlan
ФБР ломает один ботнет — Пекин поднимает другой. Сеть Volt Typhoon выросла до 1500 заражённых устройств
2 days 14 hours ago
Китайские хакеры используют взломанные роутеры для разведки в военных структурах США.
喜报|锦行科技联合攻关项目斩获2026年度八桂人工智能技术发明一等奖
2 days 14 hours ago
由广西科技大学牵头立项申报、广州锦行网络科技有限公司作为核心合作单位联合攻关的《跨境网络隐蔽威胁智能感知与协同防御关键技术及应用》项目,经过评审成功斩获技术发明一等奖。
HVAC 和 UPS 关键漏洞可致黑客破坏数据中心
2 days 14 hours ago
网络物理系统安全公司 Claroty 的研究人员在数据中心广泛使用的两款 HVAC 和 UPS 产品中发现了多个漏洞,展示了攻击者如何利用这些漏洞发起破坏性的远程攻击。 研究人员瞄准了为 Vertiv 的不间断电源(UPS)设备提供网络接口的网卡。 Claroty 指出:"UPS 在数据中心中被广泛使用,以在断电时维持运营;它们还能保护系统免受电涌和电压骤降的影响,并支持安全关机。" 这家安全公司...
hackernews
CVE-2026-41001 | Vmware Spring Boot up to 4.0.6 temp file (EUVD-2026-36211)
2 days 14 hours ago
A vulnerability, which was classified as problematic, has been found in Vmware Spring Boot up to 2.7.33/3.3.19/3.4.16/3.5.14/4.0.6. This impacts an unknown function. This manipulation causes insecure temporary file.
This vulnerability is tracked as CVE-2026-41001. The attack is restricted to local execution. No exploit exists.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2026-41856 | Vmware Spring for GraphQL up to 1.0.6/1.3.8/1.4.5/2.0.3 access control (EUVD-2026-36214)
2 days 14 hours ago
A vulnerability classified as critical was found in Vmware Spring for GraphQL up to 1.0.6/1.3.8/1.4.5/2.0.3. This affects an unknown function. The manipulation results in improper access controls.
This vulnerability is identified as CVE-2026-41856. The attack can be executed remotely. There is not any exploit available.
Upgrading the affected component is advised.
vuldb.com
CVE-2026-41699 | Vmware Spring for GraphQL up to 1.3.8/1.4.5/2.0.3 deserialization (EUVD-2026-36212)
2 days 14 hours ago
A vulnerability classified as problematic has been found in Vmware Spring for GraphQL up to 1.3.8/1.4.5/2.0.3. The impacted element is an unknown function. The manipulation leads to deserialization.
This vulnerability is referenced as CVE-2026-41699. Remote exploitation of the attack is possible. No exploit is available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-40987 | Vmware Spring Integration up to 7.0.4 /SFTP/SMB path traversal
2 days 14 hours ago
A vulnerability described as critical has been identified in Vmware Spring Integration up to 5.5.20/6.3.14/6.4.11/6.5.8/7.0.4. The affected element is an unknown function of the file /SFTP/SMB. Executing a manipulation can lead to path traversal.
The identification of this vulnerability is CVE-2026-40987. The attack may be launched remotely. There is no exploit available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2026-40986 | Vmware Spring Web Flow up to 2.5.1/3.0.1/4.0.0 cross site scripting
2 days 14 hours ago
A vulnerability marked as problematic has been reported in Vmware Spring Web Flow up to 2.5.1/3.0.1/4.0.0. Impacted is an unknown function. Performing a manipulation results in cross site scripting.
This vulnerability was named CVE-2026-40986. The attack may be initiated remotely. There is no available exploit.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2026-41000 | Vmware Spring Web Services up to 3.1.8/4.0.18/4.1.3/5.0.1 authentication replay (EUVD-2026-36210)
2 days 14 hours ago
A vulnerability labeled as problematic has been found in Vmware Spring Web Services up to 3.1.8/4.0.18/4.1.3/5.0.1. This issue affects some unknown processing. Such manipulation leads to authentication bypass by capture-replay.
This vulnerability is uniquely identified as CVE-2026-41000. The attack can be launched remotely. No exploit exists.
The affected component should be upgraded.
vuldb.com
CVE-2026-41700 | Vmware Spring for GraphQL up to 1.0.6/1.3.8/1.4.5/2.0.3 origin validation (EUVD-2026-36213)
2 days 14 hours ago
A vulnerability identified as problematic has been detected in Vmware Spring for GraphQL up to 1.0.6/1.3.8/1.4.5/2.0.3. This vulnerability affects unknown code. This manipulation causes origin validation error.
This vulnerability is handled as CVE-2026-41700. The attack can be initiated remotely. There is not any exploit available.
You should upgrade the affected component.
vuldb.com
CVE-2026-40998 | Vmware Spring Web Services up to 3.1.8/4.0.18/4.1.3/5.0.1 xml external entity reference (EUVD-2026-36208)
2 days 14 hours ago
A vulnerability categorized as problematic has been discovered in Vmware Spring Web Services up to 3.1.8/4.0.18/4.1.3/5.0.1. This affects an unknown part. The manipulation results in xml external entity reference.
This vulnerability is known as CVE-2026-40998. It is possible to launch the attack remotely. No exploit is available.
It is advisable to upgrade the affected component.
vuldb.com