Experimental News Clipping Site

Tag: agents

  • Simon Willison’s Weblog: Cross-Agent Privilege Escalation: When Agents Free Each Other

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/24/cross-agent-privilege-escalation/ Source: Simon Willison’s Weblog Title: Cross-Agent Privilege Escalation: When Agents Free Each Other Feedly Summary: Cross-Agent Privilege Escalation: When Agents Free Each Other Here’s a clever new form of AI exploit from Johann Rehberger, who has coined the term Cross-Agent Privilege Escalation to describe an attack where multiple coding agents – GitHub…

  • Embrace The Red: Cross-Agent Privilege Escalation: When Agents Free Each Other

    by

    Kurt Seifried
    in

    Source URL: https://embracethered.com/blog/posts/2025/cross-agent-privilege-escalation-agents-that-free-each-other/ Source: Embrace The Red Title: Cross-Agent Privilege Escalation: When Agents Free Each Other Feedly Summary: During the Month of AI Bugs, I described an emerging vulnerability pattern that shows how commonly agentic systems have a design flaw that allows an agent to overwrite its own configuration and security settings. This allows the…

  • Cloud Blog: The new data scientist: From analyst to agentic architect

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/data-analytics/enabling-data-scientists-to-become-agentic-architects/ Source: Cloud Blog Title: The new data scientist: From analyst to agentic architect Feedly Summary: The role of the data scientist is rapidly transforming. For the past decade, their mission has centered on analyzing the past to run predictive models that informed business decisions. Today, that is no longer enough. The market…

  • The Cloudflare Blog: Giving users choice with Cloudflare’s new Content Signals Policy

    by

    Kurt Seifried
    in

    Source URL: https://blog.cloudflare.com/content-signals-policy/ Source: The Cloudflare Blog Title: Giving users choice with Cloudflare’s new Content Signals Policy Feedly Summary: Cloudflare’s Content Signals Policy gives creators a new tool to control use of their content. AI Summary and Description: Yes **Summary:** The text details the introduction of the Content Signals Policy by Cloudflare, which enables website…

  • Docker: MCP Horror Stories: The Drive-By Localhost Breach

    by

    Kurt Seifried
    in

    Source URL: https://www.docker.com/blog/mpc-horror-stories-cve-2025-49596-local-host-breach/ Source: Docker Title: MCP Horror Stories: The Drive-By Localhost Breach Feedly Summary: This is Part 4 of our MCP Horror Stories series, where we examine real-world security incidents that expose the devastating vulnerabilities in AI infrastructure and demonstrate how Docker MCP Gateway provides enterprise-grade protection against sophisticated attack vectors. The Model Context…

  • Simon Willison’s Weblog: CompileBench: Can AI Compile 22-year-old Code?

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/22/compilebench/ Source: Simon Willison’s Weblog Title: CompileBench: Can AI Compile 22-year-old Code? Feedly Summary: CompileBench: Can AI Compile 22-year-old Code? Interesting new LLM benchmark from Piotr Grabowski and Piotr Migdał: how well can different models handle compilation challenges such as cross-compiling gucr for ARM64 architecture? This is one of my favorite applications of…

  • Simon Willison’s Weblog: httpjail

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/19/httpjail/#atom-everything Source: Simon Willison’s Weblog Title: httpjail Feedly Summary: httpjail Here’s a promising new (experimental) project in the sandboxing space from Ammar Bandukwala at Coder. httpjail provides a Rust CLI tool for running an individual process against a custom configured HTTP proxy. The initial goal is to help run coding agents like Claude…

  • Simon Willison’s Weblog: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/19/notion-lethal-trifecta/ Source: Simon Willison’s Weblog Title: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration Feedly Summary: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration Abi Raghuram reports that Notion 3.0, released yesterday, introduces new prompt injection data exfiltration vulnerabilities…

  • The Register: ChatGPT joins human league, now solves CAPTCHAs for the right prompt

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/19/how_to_trick_chatgpt_agents/ Source: The Register Title: ChatGPT joins human league, now solves CAPTCHAs for the right prompt Feedly Summary: Could this bot-prevention technique now be obsolete? ChatGPT can be tricked via cleverly worded prompts to violate its own policies and solve CAPTCHA puzzles, potentially making this human-proving security mechanism obsolete, researchers say.… AI Summary…