Alibaba released Qwen1.5-110B, the first large model with hundreds of billions of parameters. It has previously released versions with different scale parameters of 0.5B, 1.8B, 4B, 7B, 14B and 72B. Alibaba said that the Qwen1.5-110B model is comparable to Meta-Llama3-70B in basic capability evaluation and performs well in Chat evaluation, including MT-Bench and AlpacaEval 2.0. Qwen1.5-110B is similar to other Qwen1.5 models and uses the same Transformer decoder architecture. It includes Grouped Query Attention (GQA), which is more efficient during model inference. The model supports a contex ..read more

Unlock the dynamic interplay between cybersecurity and agility in today’s business landscape. Explore how organizations can fortify their defenses, foster innovation, and thrive amidst uncertainty. In an era defined by rapid technology advances, geopolitical complexities, and economic uncertainties, organizations face a daunting challenge: how to thrive amidst constant disruption and change. As businesses look to digital transformation to drive innovation, efficiency, and growth, they must deal with growing cybersecurity risks. From sophisticated cyber attacks to the complexities of mod ..read more

Experts warn of an ongoing malware campaign targeting WP-Automatic plugin A critical vulnerability in the WordPress Automatic plugin is being exploited to inject backdoors and web shells into websites WordPress security scanner WPScan warns that threat actors are exploiting a critical SQL injection vulnerability in the plugin WordPress Automatic to inject malware into websites. The premium plugin “Automatic” developed by ValvePress enables users to automatically post content from any website to WordPress, including RSS feeds. It has over 38,000 paying customers. The vulnerability, tracked ..read more

By Will Song The Trail of Bits cryptography team is pleased to announce the open-sourcing of our pure Rust and Go implementations of Leighton-Micali Hash-Based Signatures (LMS)a well-studied NIST-standardized post-quantum digital signature algorithm. If you or your organization are looking to transition to post-quantum support for digital signatures, both of these implementations have been engineered and reviewed by several of our cryptographers, so please give them a try! For the Rust codebasewe’ve worked with the RustCrypto team to integrate our implementation into the RustCrypto/signature ..read more

Spring is not just a time for dusting off shelves and donating old clothes; it’s also the perfect season to declutter and organize your digital space. A cluttered digital space can lead to stress, decreased productivity, and even make you more susceptible to cyber threats. So, let’s dive into the comprehensive guide to mastering your digital wellbeing this spring with our ultimate cyber spring-cleaning series. Decluttering your digital home Digital clutter, while not visible, can weigh just as heavily on your mind and devices. Start by deleting duplicate files and tidying up your desktop wit ..read more

Kaiser Permanente data breach may have impacted 13.4 million patients Healthcare service provider Kaiser Permanente disclosed a security breach that may impact 13.4 million individuals in the United States. Kaiser Permanente is an American integrated managed care consortium, it is made up of three distinct but interdependent groups of entities: the Kaiser Foundation Health Plan, Inc. (KFHP) and its regional operating subsidiaries; Kaiser Foundation Hospitals; and the regional Permanente Medical Groups. The health giant operates 39 hospitals and more than 700 medical offices, with ove ..read more

The well-known sandbox game “Garry's Mod” has begun deleting all content related to Nintendo IP in the creative workshop. The game author Garry confirmed that he received a legal DMCA removal notice from Nintendo. This move has caused controversy. Currently, the most popular new community mod in “Garry's Mod” is “Nintendo-Office”. “Garry's Mod” was originally a free mod for the “Half-life” series. As it grew in popularity, developer Garry made it independent, established a studio and has been updating it to this day. Some of the removed community content is nearly 20 years old, and developer ..read more

Home Industry news Ubuntu 24.04 LTS (codenamed “Noble Numbat”) has been released As a very well-known Linux distribution, Ubuntu has released its latest long-term support version: Ubuntu 24.04 LTS (codenamed “Noble Numbat”), which includes desktop and server versions, and is currently available for download. @app Here are some key points about this new version: [New Features]: Ubuntu 24.04 LTS brings a series of new features, including an improved user interface and a default minimal installation. [Subiquity Installer]: The Subiquity installer is introduced for the first time in the LT ..read more

Over 1,400 CrushFTP internet-facing servers vulnerable to CVE-2024-4040 bug Over 1,400 CrushFTP internet-facing servers are vulnerable to attacks exploiting recently disclosed CVE-2024-4040 vulnerability. Over 1,400 CrushFTP internet-facing servers are vulnerable to attacks targeting the critical severity vulnerability CVE-2024-4040. CVE-2024-4040 is a CrushFTP VFS sandbox escape vulnerability. CrushFTP is a file transfer server software that enables secure and efficient file transfer capabilities. It supports various features such as FTP, SFTP, FTPS, HTTP, HTTPS, WebDAV, and We ..read more

As the popularity of Linux and UNIX-like operating systems has grown, so too has the attention from malicious actors seeking to exploit vulnerabilities. With the increasing adoption of these systems in various industries, they have become lucrative targets for cyber attacks. Consequently, the belief that Linux is immune to threats is dispelled as security breaches and incidents continue to rise. According to Trend Micro’s findings, there has been a notable development, with a “62% increase in Linux ransomware attack attempts from the first quarter of 2022 to 2023, marking a concerning trend ..read more