关于「hub」的内容列表
On March 23rd, Slow Mist founder Cosine posted on social media, "Using the GitHub Actions CI/CD mechanism to attack Coinbase in the supply chain, fortunately it did not continue to succeed, otherwise the next security incident to be exposed would be against Coinbase. Supply chain attack path on GitHub: reviewdog/action-settings - > tj-actions/changed-files - > coinbase/agentkit - > steal GitHub personal access tokens (PAT), Cloud as a Service related keys, etc. Cosine suggests that if enterprise...
3月23日消息,慢雾创始人余弦在社交媒体上发文表示,「利用GitHub Actions CI/CD机制供应链攻击Coinbase,所幸没有继续成功,否则下一个被爆的安全事件就是针对Coinbase了。在GitHub上的供应链攻击路径:reviewdog/action-设置-> tj-actions/changed-files -> coinbase/agentkit ->窃取GitHub个人访问令牌 (PAT)、云服务有关密钥等。余弦建议,如果企业用到reviewdog或tj-actions,应该进行自查。」
一项隐秘的恶意软件活动正通过在Github上的虚假开源项目中嵌入恶意代码来劫持加密钱包,诱骗开发人员执行隐藏的有效载荷。 一个名为Gitvenom的网络攻击活动一直通过将恶意代码嵌入看似合法的开源项目中来攻击Github用户。研究人员Georgy Kucherin和Joao Godinho发现了这一行动,网络犯罪分子会创建模仿真实软件工具的欺诈性存储库。根据虚假项目中使用的编程语言,恶...
Sci-Hub 创始人 Alexandra 在 Sci-Hub 官方电报频道称其即将发布 Sci-Net。 据悉,Sci-Net 是一个全新的平台,任何人都可以上传科学论文,并获得 SCIHUB 代币奖励。Sci-Net 将打造一个互助网络,让知识共享得到回报。
Cyber security firm Kaspersky says hackers are creating hundreds of fake GitHub projects to trick users into downloading malicious software that encrypts and steals credentials. Kaspersky analyst Georgy Kucherin said in a report dated February 24 that hackers created hundreds of software feeds on GitHub, hosted by remote access trojans (RAT),...
网络安全公司Kaspersky表示,黑客们正在创建数百个虚假的GitHub项目,目的是诱骗用户下载加密和窃取凭证的恶意软件。 卡巴斯基分析师乔治-库切林(Georgy Kucherin)在2月24日的一份报告中说,黑客在GitHub上创建了数百个软件源,托管包含远程访问木马(RAT)、...
On February 24th, at 9:30 this morning, open-source large-scale model platform DeepSeek opened the first day of 5 consecutive days of technology sharing this week, open-sourcing an efficient MLA decoding kernel optimized for Hopper GPUs - FlashMLA. Just released on Github and broke 1,000 stars.
Cryptocurrency exchange Bybit has announced a $1 million investment in EthicHub, reportedly facilitated by the Blockchain Goodwill Alliance (BGA), which uses blockchain to drive financial inclusion and empower smallholder farmers to transform agricultural finance by integrating productive lending, blended finance and market access.
代币化社交网络ResearchHub宣布已完成200万美元新一轮融资,BoostVC参投,新资金将进一步利用其ResearchCoin(RSC)代币激励科学家公开共享学术内容,并构建去中心化科学协作和出版工具以促进研究人员之间的研究合作、反馈和知识共享。
On February 17th, SCAICH, the first product in the AI direction of the SciHub community, began public testing. It is reported that SCAICH is an AI-based research paper search engine that can search 140 million papers in Sci-Hub and open journals. SCAICH uses SCAI, a self-developed scientific AI agents framework, jointly developed by the SciHub community and WTF Academy. The community said that the project will be open-sourced in the future.
On February 7th, the number of stars of DeepSeek project on GitHub, the world's largest code hosting platform, exceeded OpenAI. As of 2:00 pm this Friday, the number of stars of DeepSeek-V3 large model, the most popular project under DeepSeek, has reached 77,700, surpassing the most popular project of OpenAI in the same platform. In addition, the Llama series, which is also an open-source large model, has the highest number of stars reached 57,500, Qwen 2.5 of Alibaba Cloud has 14,900 stars, and...
