Experimental News Clipping Site

Tag: assessment

  • Schneier on Security: Indirect Prompt Injection Attacks Against LLM Assistants

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/09/indirect-prompt-injection-attacks-against-llm-assistants.html Source: Schneier on Security Title: Indirect Prompt Injection Attacks Against LLM Assistants Feedly Summary: Really good research on practical attacks against LLM agents. “Invitation Is All You Need! Promptware Attacks Against LLM-Powered Assistants in Production Are Practical and Dangerous” Abstract: The growing integration of LLMs into applications has introduced new security risks,…

  • New York Times – Artificial Intelligence : How to Rethink A.I.

    by

    Kurt Seifried
    in

    Source URL: https://www.nytimes.com/2025/09/03/opinion/ai-gpt5-rethinking.html Source: New York Times – Artificial Intelligence Title: How to Rethink A.I. Feedly Summary: Building bigger A.I. isn’t leading to better A.I. AI Summary and Description: Yes Summary: The assertion that creating larger AI systems does not necessarily enhance their efficacy highlights a critical issue within the field of artificial intelligence. This…

  • The Register: Internet mapping and research tool Censys reveals state-based abuse, harassment

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/03/censys_abuse_sigcomm_paper/ Source: The Register Title: Internet mapping and research tool Censys reveals state-based abuse, harassment Feedly Summary: ‘Universities are being used to proxy offensive government operations, turning research access decisions political’ Censys Inc, vendor of the popular Censys internet-mapping tool, has revealed that state-based actors are trying to abuse its services by hiding…

  • Cisco Security Blog: Closing the Backdoor in TACACS+: Why Full-Session Encryption Matters More Than Ever

    by

    Kurt Seifried
    in

    Source URL: https://feedpress.me/link/23535/17134419/closing-the-backdoor-in-tacacs-why-full-session-encryption-matters-more-than-ever Source: Cisco Security Blog Title: Closing the Backdoor in TACACS+: Why Full-Session Encryption Matters More Than Ever Feedly Summary: Attackers exploited weak TACACS+ encryption to steal credentials and evade detection. Learn how Cisco ISE with TLS 1.3 and Duo MFA closes these backdoors. AI Summary and Description: Yes Summary: The text discusses…

  • The Register: Frostbyte10 bugs put thousands of refrigerators at major grocery chains at risk

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/02/frostbyte10_copeland_controller_bugs/ Source: The Register Title: Frostbyte10 bugs put thousands of refrigerators at major grocery chains at risk Feedly Summary: Major flaws uncovered in Copeland controllers: Patch now Ten vulnerabilities in Copeland controllers, which are found in thousands of devices used by the world’s largest supermarket chains and cold storage companies, could have allowed…

  • NCSC Feed: From bugs to bypasses: adapting vulnerability disclosure for AI safeguards

    by

    Kurt Seifried
    in

    Source URL: https://www.ncsc.gov.uk/blog-post/from-bugs-to-bypasses-adapting-vulnerability-disclosure-for-ai-safeguards Source: NCSC Feed Title: From bugs to bypasses: adapting vulnerability disclosure for AI safeguards Feedly Summary: Exploring how far cyber security approaches can help mitigate risks in generative AI systems AI Summary and Description: Yes Summary: The text addresses the intersection of cybersecurity strategies and generative AI systems, highlighting how established cybersecurity…

  • The Register: In the rush to adopt hot new tech, security is often forgotten. AI is no exception

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/02/exposed_ollama_servers_insecure_research/ Source: The Register Title: In the rush to adopt hot new tech, security is often forgotten. AI is no exception Feedly Summary: Cisco finds hundreds of Ollama servers open to unauthorized access, creating various nasty risks Cisco’s Talos security research team has found over 1,100 Ollama servers exposed to the public internet,…

  • Slashdot: Pentagon Halts Chinese Coders Affecting DOD Cloud Systems

    by

    Kurt Seifried
    in

    Source URL: https://tech.slashdot.org/story/25/08/29/1928258/pentagon-halts-chinese-coders-affecting-dod-cloud-systems Source: Slashdot Title: Pentagon Halts Chinese Coders Affecting DOD Cloud Systems Feedly Summary: AI Summary and Description: Yes Summary: The Pentagon has terminated a Microsoft program that permitted Chinese coders to work on sensitive Department of Defense (DOD) cloud systems under U.S. supervision. This decision was made due to concerns about unacceptable…

  • The Register: GitHub engineer claims team was ‘coerced’ to put Grok into Copilot

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/29/github_deepens_ties_with_elon/ Source: The Register Title: GitHub engineer claims team was ‘coerced’ to put Grok into Copilot Feedly Summary: Platform’s staffer complains security review was ‘rushed’ Microsoft-owned collaborative coding platform GitHub is deepening its ties with Elon Musk’s xAI, bringing early access to the company’s Grok Code Fast 1 large language model (LLM) into…