PSA.ngo
LightNews LightNews
banner
psa.ngo
PSA.ngo
@psa.ngo
34 followers 1 following 1.3K posts
关注数字隐私、信息安全、知识可及性

🌐 https://psa.ngo

#数字隐私 #隐私 #信息安全 #安全 #资安 #可及性 #privacy #security #accessibility #infosec
Posts Replies Media Videos
psa.ngo
Google将允许用户更改@gmail.com邮箱地址,突破历史限制

Google宣布将首次为用户提供更改@gmail.com邮箱地址的选项,打破长期以来邮箱地址无法修改的局限,有望提升账号管理灵活性与用户体验。

📰 https://psa.ngo/news/google-gmail-address-change-feature-launch/
Google will finally allow you to change your @gmail.com address
Google will finally allow you to change your @gmail address or create a new alias, according to a new support document.
www.bleepingcomputer.com
December 26, 2025 at 11:10 AM
psa.ngo
Apple将开放巴西iOS用户使用第三方应用商店,响应反垄断诉求

Apple同意在巴西开放iOS第三方应用商店和外部支付,以达成反垄断诉讼和解,并将对新平台收取服务费,但也警告用户隐私与安全风险将增加。

📰 https://psa.ngo/news/apple-brazil-ios-alternative-app-stores-antitrust-settlement/
Apple to Allow Alternative App Stores for iOS Users in Brazil
Apple will soon allow alternative iOS app stores in Brazil after agreeing to settle an antitrust lawsuit in the country.
www.thurrott.com
December 26, 2025 at 10:10 AM
psa.ngo
冒充MAS的激活网站传播PowerShell恶意软件被曝光

仿冒MAS激活网站通过伪装脚本向用户传播PowerShell恶意软件,安全专家呼吁用户警惕此类攻击风险,务必通过正规渠道获取工具。

📰 https://psa.ngo/news/fake-mas-windows-activation-domain-powershell-malware-campaign/
Fake MAS Windows activation domain used to spread PowerShell malware
A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell scripts that infect Windows systems with the 'Cosmali Loader'.
www.bleepingcomputer.com
December 26, 2025 at 9:10 AM
psa.ngo
Microsoft Teams将支持通过Defender统一门户屏蔽外部用户

Microsoft将为Teams引入通过Defender门户集中屏蔽外部用户的新功能,将提升企业协作安全性。该功能有助于防范外部安全风险,细节将在后续公布。

📰 https://psa.ngo/news/microsoft-teams-defender-portal-block-external-users/
Microsoft Teams to let admins block external users via Defender portal
Microsoft announced that security administrators will soon be able to block external users from sending messages, calls, or meeting invitations to members of their organization via Teams.
www.bleepingcomputer.com
December 26, 2025 at 8:10 AM
psa.ngo
法院叫停德州年龄验证法,Apple暂停当地App Store调整

德州强制应用商店年龄验证法被法院叫停,Apple宣布暂停当地App Store相关调整,关注法律进展。该案涉及用户隐私争议,德州州政府计划继续上诉。

📰 https://psa.ngo/news/apple-pauses-app-store-texas-court-blocks-age-assurance-law/
Apple pauses app store changes in Texas after court blocks age-assurance law | TechCrunch
Apple said it will pause its plans for compliance with the new law in Texas but notes other age-assurance tech remains available to developers.
techcrunch.com
December 26, 2025 at 6:10 AM
psa.ngo
EFF指国会草率通过网络言论治理法案,恐损言论自由与隐私

EFF等组织批评美国国会匆忙通过TAKE IT DOWN法案,认为其威胁言论自由与隐私,并可能导致正当内容被错误下架。

📰 https://psa.ngo/news/eff-warns-take-it-down-act-threatens-free-speech-and-privacy/
Politicians Rushed Through An Online Speech “Solution.” Victims Deserve Better.
Earlier this year, both chambers of Congress passed the TAKE IT DOWN Act. This bill, while well-intentioned, gives powerful people a new legal tool to force online platforms to remove lawful speech that they simply don't like. The bill, sponsored by Senate Commerce Chair Ted Cruz (R-TX) and Rep....
www.eff.org
December 26, 2025 at 5:10 AM
psa.ngo
MongoDB紧急警告管理员:迅速修补严重远程执行漏洞

MongoDB警告管理员立即修补一个高危远程代码执行漏洞,避免攻击者远程入侵威胁数据库安全。

📰 https://psa.ngo/news/mongodb-warns-admins-patch-severe-rce-flaw-immediately/
MongoDB warns admins to patch severe RCE flaw immediately
MongoDB has warned IT admins to immediately patch a high-severity vulnerability that may be exploited in remote code execution (RCE) attacks targeting vulnerable servers.
www.bleepingcomputer.com
December 26, 2025 at 4:10 AM
psa.ngo
FBI查封涉盗取美国受害者银行凭据的非法网站

FBI查封了一个涉及窃取美国受害者银行凭据的网站,防止被盗信息进一步用于犯罪,并持续追查涉案黑客网络。

📰 https://psa.ngo/news/fbi-seizes-domain-storing-stolen-us-bank-credentials/
FBI seizes domain storing bank credentials stolen from U.S. victims
The U.S. government has seized the 'web3adspanels.org' domain and the associated database used by cybercriminals to host bank login credentials stolen in account takeover attacks.
www.bleepingcomputer.com
December 26, 2025 at 3:10 AM
psa.ngo
Microsoft为Windows 11引入硬件加速BitLocker提升数据安全

Microsoft宣布在Windows 11中推出硬件加速BitLocker功能,利用现代处理器提升加密效率并减少性能影响,进一步加强用户数据安全。

📰 https://psa.ngo/news/microsoft-windows11-hardware-accelerated-bitlocker/
Microsoft rolls out hardware-accelerated BitLocker in Windows 11
Microsoft is rolling out hardware-accelerated BitLocker in Windows 11 to address growing performance and security concerns by leveraging the capabilities of system-on-a-chip and CPU.
www.bleepingcomputer.com
December 26, 2025 at 2:10 AM
psa.ngo
全能AI代理时代到来,用户数据隐私面临新挑战

AI代理和助手的普及要求用户开放更多个人数据访问权限,令隐私与数据安全挑战不断升级。用户和企业都需重新审视技术便利和隐私保护的平衡。

📰 https://psa.ngo/news/age-of-ai-agents-user-data-privacy-challenge/
The Age of the All-Access AI Agent Is Here
Big AI companies courted controversy by scraping wide swaths of the public internet. With the rise of AI agents, the next data grab is far more private.
www.wired.com
December 26, 2025 at 1:10 AM
psa.ngo
Jeffrey Epstein案涉密文件遭技术手段解密,敏感信息外泄社交媒体

Jeffrey Epstein案件被打码的文件通过技术手段被部分还原,相关敏感内容已在社交媒体上广泛传播,引发隐私与信息安全关注。

📰 https://psa.ngo/news/epstein-case-redacted-files-exposed-on-social-media/
Some Epstein file redactions are being undone with hacks
Un-redacted text from released documents began circulating on social media on Monday evening
www.theguardian.com
December 26, 2025 at 12:10 AM
psa.ngo
欧盟酝酿扩大数据保留范围,VPN服务商或将面临新监管

欧盟正计划扩大数据保留政策,将VPN服务商纳入监管范围,引发对隐私和个人自由的新讨论。业界与隐私倡导者呼吁在安全与自由之间寻求平衡。

📰 https://psa.ngo/news/eu-data-retention-vpn-regulation/
The EU prepares ground for wider data retention – and VPN providers are among the targets
A legislative proposal is expected to be introduced in the first half of 2026
www.techradar.com
December 24, 2025 at 9:10 PM
psa.ngo
WebRAT恶意软件通过伪装漏洞利用工具在GitHub传播

WebRAT木马正通过假冒安全漏洞利用工具在GitHub上传播,安全专家呼吁用户警惕来源不明的开源项目。

📰 https://psa.ngo/news/webrat-malware-fake-vulnerability-github/
WebRAT malware spread via fake vulnerability exploits on GitHub
The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for recently disclosed vulnerabilities.
www.bleepingcomputer.com
December 24, 2025 at 8:10 PM
psa.ngo
2025年加密货币遭盗金额刷新纪录,黑客盗取超27亿美元

2025年,加密货币因黑客攻击损失金额首次突破27亿美元,创历史新高,最大案件为Bybit交易所被盗14亿美元,朝鲜黑客团体被认为是主谋。

📰 https://psa.ngo/news/2025-crypto-hacks-hit-2-7-billion-all-time-record/
Hackers stole over $2.7B in crypto in 2025, data shows | TechCrunch
This was another banner year for crypto hacks and heists — 2025 was the third year in a row that a new crypto theft record was set.
techcrunch.com
December 24, 2025 at 7:10 PM
psa.ngo
纽约警察涉嫌穆斯林监控引发新一轮诉讼

因对穆斯林社群“清真寺扫荡”监控项目的不满,一名前Rutgers穆斯林学生协会成员再次起诉NYPD要求披露相关监控纪录,该案件恰逢首位穆斯林市长上任,将成为其执法政策的风向标。

📰 https://psa.ngo/news/nypd-muslim-surveillance-new-lawsuit/
NYPD Sued Over Possible Records Collected Through Muslim Spying Program
The New York Police Department's “mosque-raking” program targeted Muslim communities across NYC. Now, as the city's first Muslim mayor takes office, one man is fighting—again—to fully expose it.
www.wired.com
December 24, 2025 at 6:10 PM
psa.ngo
Aflac遭大规模网络攻击,逾2260万用户个人和健康信息被窃取

Aflac证实2265万名客户的个人和健康信息在近期大规模数据泄露事件中被盗,波及广泛,涉事黑客疑与知名网络犯罪团伙有关,引发业界对保险行业安全的高度关注。

📰 https://psa.ngo/news/aflac-breach-exposes-22-6-million-users-personal-health-data/
US insurance giant Aflac says hackers stole personal and health data of 22.6 million people | TechCrunch
Aflac, one of the largest insurance companies in the U.S., confirmed hackers stole reams of personal data, including Social Security numbers, identity documents, and health information.
techcrunch.com
December 24, 2025 at 5:10 PM
psa.ngo
韩国推行手机实名新规:购SIM卡需进行人脸验证

韩国将通过人脸识别技术对新购SIM卡用户进行身份验证,以防止非法使用手机账户进行诈骗。

📰 https://psa.ngo/news/south-korea-sim-card-face-verification-policy/
South Korea to require face scans to buy a SIM
: SK Telecom's epic infosec fail will cost it another $1.5 billion
www.theregister.com
December 24, 2025 at 4:10 PM
psa.ngo
乌兹别克斯坦全国车牌监控系统曝安全漏洞,数百万信息风险外泄

乌兹别克斯坦全国车牌监控系统因数据库未设密码,数百万条车辆和个人数据暴露在互联网上,凸显出公共安全领域的隐私与安全风险。

📰 https://psa.ngo/news/uzbekistan-nationwide-license-plate-surveillance-database-exposed/
Exclusive: Inside Uzbekistan's nationwide license plate surveillance system
The Uzbek government's national license plate scanning system was discovered exposed to the internet for anyone to access without a password.
techcrunch.com
December 24, 2025 at 3:10 PM
psa.ngo
Chrome Web Store被曝存在窃取用户凭据的恶意扩展

Chrome Web Store曝出多款恶意扩展窃取用户账号密码,专家建议用户加强插件管理和账户安全。有关部门提醒定期检查扩展安装情况,防止信息泄露。

📰 https://psa.ngo/news/chrome-web-store-malicious-extensions-credential-theft/
Malicious extensions in Chrome Web store steal user credentials
Two Chrome extensions in the Web Store named 'Phantom Shuttle' are posing as plugins for a proxy service to hijack user traffic and steal sensitive data.
www.bleepingcomputer.com
December 24, 2025 at 2:10 PM
psa.ngo
Microsoft Teams将于明年1月默认提升信息安全保护

Microsoft宣布,Teams将在2025年1月起默认加强消息安全防护,将为用户带来更高的信息加密和安全标准。此举有助于防止信息泄露,提升企业通信的整体安全性。

📰 https://psa.ngo/news/microsoft-teams-messaging-security-default-upgrade-january/
Microsoft Teams strengthens messaging security by default in January
Microsoft Teams will automatically enable messaging safety features by default in January to strengthen defenses against content tagged as malicious.
www.bleepingcomputer.com
December 24, 2025 at 1:10 PM
psa.ngo
Baker University数据泄露事件影响逾五万名个人信息

Baker University确认,2024年一次数据泄露事件影响超过53,000人,涉及敏感个人信息。校方已启动应急响应,并加强安全防护。

📰 https://psa.ngo/news/baker-university-data-breach-impacts-53000-personal-records/
Baker University says 2024 data breach impacts 53,000 people
Baker University has disclosed a data breach after attackers gained access to its network one year ago and stole the personal, health, and financial information of over 53,000 individuals.
www.bleepingcomputer.com
December 24, 2025 at 12:10 PM
psa.ngo
Apple因App Store隐私政策被意大利罚款1.15亿美元

意大利监管机构因Apple双重同意隐私政策对开发者造成负担,对其处以1.15亿美元罚款,直指其滥用App Store主导地位。

📰 https://psa.ngo/news/apple-app-store-privacy-policy-italy-fine-115m/
Apple hit with $115M fine for “extremely burdensome” App Store privacy policy
Apple can't force app makers to get consent twice to track user data, Italian regulator says.
arstechnica.com
December 24, 2025 at 11:10 AM
psa.ngo
Microsoft将于2030年前用Rust全面取代C/C++代码,全面拥抱AI驱动重构

Microsoft宣布到2030年底用Rust全面取代所有C/C++代码,依靠AI及算法驱动的基础设施进行重写,重点提升内存安全和开发效率。这标志着其工程技术战略的一次重大转型。

📰 https://psa.ngo/news/microsoft-replace-c-cpp-with-rust-by-2030/
Microsoft to Replace All C/C++ Code With Rust by 2030
Microsoft is taking an impressive step in modernizing its biggest codebases and will eliminate all C/C++ code by the end of the decade.
www.thurrott.com
December 24, 2025 at 9:10 AM
psa.ngo
法国邮政及银行业务遭遇严重网络攻击服务中断

法国邮政及其银行业务因网络攻击遭遇服务中断,目前事件正由多部门联合调查并逐步恢复服务。

📰 https://psa.ngo/news/france-postal-banking-cyberattack-disruption/
Cyberattack disrupts France's postal service and banking during Christmas rush
A suspected cyberattack has knocked France’s national postal service and its banking arm offline during the busy Christmas season.
apnews.com
December 24, 2025 at 8:10 AM
psa.ngo
OpenAI承认AI浏览器难以彻底防御提示注入攻击

OpenAI称,AI浏览器面临的提示注入攻击将长期无法彻底消除,正通过自动化与多层防御持续加固安全,但业界普遍认为风险只能缓解难以完全根治。

📰 https://psa.ngo/news/openai-ai-browser-vulnerability-prompt-injection/
OpenAI says AI browsers may always be vulnerable to prompt injection attacks | TechCrunch
OpenAI says prompt injections will always be a risk for AI browsers with agentic capabilities, like Atlas. But the firm is beefing up its cybersecurity with an "LLM-based automated attacker."
techcrunch.com
December 24, 2025 at 6:10 AM