Tag: attackers

—

by

Source URL: https://unit42.paloaltonetworks.com/?p=138017 Source: Unit 42 Title: Bad Likert Judge: A Novel Multi-Turn Technique to Jailbreak LLMs by Misusing Their Evaluation Capability Feedly Summary: The jailbreak technique “Bad Likert Judge" manipulates LLMs to generate harmful content using Likert scales, exposing safety gaps in LLM guardrails. The post Bad Likert Judge: A Novel Multi-Turn Technique to…

The Register: US Treasury Department outs the blast radius of BeyondTrust’s key leak

—

by

Source URL: https://www.theregister.com/2024/12/31/us_treasury_department_hacked/ Source: The Register Title: US Treasury Department outs the blast radius of BeyondTrust’s key leak Feedly Summary: Data pilfered as miscreants roamed affected workstations The US Department of the Treasury has admitted that miscreants were in its systems, accessing documents in what has been called a “major incident."… AI Summary and Description:…

The Register: China’s cyber intrusions took a sinister turn in 2024

—

by

Source URL: https://www.theregister.com/2024/12/31/china_cyber_intrusions_2024/ Source: The Register Title: China’s cyber intrusions took a sinister turn in 2024 Feedly Summary: From targeted espionage to pre-positioning – not that they are mutually exclusive The Chinese government’s intrusions into America’s telecommunications and other critical infrastructure networks this year appears to signal a shift from cyberspying as usual to prepping…

Wired: US Treasury Department Admits It Got Hacked by China

—

by

Source URL: https://www.wired.com/story/us-treasury-hacked-by-china/ Source: Wired Title: US Treasury Department Admits It Got Hacked by China Feedly Summary: Treasury says hackers accessed “certain unclassified documents” in a “major” breach, but experts believe the attack’s impacts could prove to be more significant as new details emerge. AI Summary and Description: Yes Summary: The US Treasury Department experienced…

Hacker News: More telcos confirm Salt Typhoon breaches as White House weighs in

—

by

Source URL: https://www.theregister.com/2024/12/30/att_verizon_confirm_salt_typhoon_breach/ Source: Hacker News Title: More telcos confirm Salt Typhoon breaches as White House weighs in Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The recent revelation of a large-scale cyber intrusion by China-backed actors has affected several major telecommunications companies in the U.S., leading to grave concerns about national security and…

The Register: More telcos confirm Salt Typhoon breaches as White House weighs in

Dec 30, 2024

—

by

Source URL: https://www.theregister.com/2024/12/30/att_verizon_confirm_salt_typhoon_breach/ Source: The Register Title: More telcos confirm Salt Typhoon breaches as White House weighs in Feedly Summary: The intrusions allowed Beijing to ‘geolocate millions of individuals’ AT&T, Verizon, and Lumen Technologies confirmed that Chinese government-backed snoops accessed portions of their systems earlier this year, while the White House added another, yet-unnamed telecommunications…

Hacker News: Apache fixes Traffic Control bug that attackers could exploit

Dec 30, 2024

—

by

Source URL: https://www.scworld.com/news/apache-fixes-traffic-control-bug-that-attackers-could-exploit Source: Hacker News Title: Apache fixes Traffic Control bug that attackers could exploit Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a critical vulnerability in Apache Traffic Control, specifically the Traffic Ops component, which is rated 9.9 on the CVSS scale. This SQL injection vulnerability enables privileged attackers…

Hacker News: Breaking NATO Radio Encryption [video]

Dec 29, 2024

—

by

Source URL: https://media.ccc.de/v/38c3-breaking-nato-radio-encryption Source: Hacker News Title: Breaking NATO Radio Encryption Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text discusses significant vulnerabilities in the HALFLOOP-24 encryption algorithm utilized by the US military and NATO for high-frequency radio communication. It reveals that the encryption can be compromised within two hours of intercepted traffic…

The Register: It’s only a matter of time before LLMs jump start supply-chain attacks

Dec 29, 2024

—

by