Security Boulevard

Exploited React2Shell Flaw By LLM-generated Malware Foreshadows Shift in Threat Landscape

Attackers recently leveraged LLMs to exploit a React2Shell vulnerability and opened the door to low-skill operators and calling traditional indicators into question.
The Hacker News

Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware

Outlook add-in phishing, Chrome and Apple zero-days, BeyondTrust RCE, cloud botnets, AI-driven threats, ransomware activity, ...
Information Age

North Korean hackers pose as tech recruiters

The FBI warned in 2023 that “thousands of skilled IT workers” were moving abroad from North Korea and setting up as freelance IT professionals, warning recruiters to be wary of remote workers who ...
腾讯网

7*24小时全栈开发的性价比黑奴:Qwen3.5-plus + Agent Team

刚开源发布的 Qwen3.5-Plus,简直就是为这种高强度 Agent 任务量身定制的。 以前跑这种 10 小时的长任务,我都不敢用闭源顶配模型,心疼 Token 费啊。但 Qwen3.5-Plus 这次是全尺寸开源,不仅 API 价格极低(阿里云百炼上最低能到闭源模型的十几分之一),你甚至可以自己部署。