Security Boulevard

Exploited React2Shell Flaw By LLM-generated Malware Foreshadows Shift in Threat Landscape

Attackers recently leveraged LLMs to exploit a React2Shell vulnerability and opened the door to low-skill operators and calling traditional indicators into question.
The Hacker News

Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware

Outlook add-in phishing, Chrome and Apple zero-days, BeyondTrust RCE, cloud botnets, AI-driven threats, ransomware activity, ...
腾讯网

7*24小时全栈开发的性价比黑奴:Qwen3.5-plus + Agent Team

以前跑这种 10 小时的长任务,我都不敢用闭源顶配模型,心疼 Token 费啊。但 Qwen3.5-Plus 这次是全尺寸开源,不仅 API 价格极低(阿里云百炼上最低能到闭源模型的十几分之一),你甚至可以自己部署。