Experimental News Clipping Site

Tag: attacks

  • The Register: Hunt for RedNovember: Beijing hacked critical orgs in year-long snooping campaign

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/27/rednovember_chinese_espionage/ Source: The Register Title: Hunt for RedNovember: Beijing hacked critical orgs in year-long snooping campaign Feedly Summary: Not to be confused with all the other reports of Chinese intruders on US networks that came to light this week RedNovember, a Chinese state-sponsored cyberspy group, targeted government and critical private-sector networks around the…

  • Simon Willison’s Weblog: How to stop AI’s “lethal trifecta”

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/26/how-to-stop-ais-lethal-trifecta/ Source: Simon Willison’s Weblog Title: How to stop AI’s “lethal trifecta” Feedly Summary: How to stop AI’s “lethal trifecta” This is the second mention of the lethal trifecta in the Economist in just the last week! Their earlier coverage was Why AI systems may never be secure on September 22nd – I…

  • The Register: Microsoft spots fresh XCSSET malware strain hiding in Apple dev projects

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/26/microsoft_xcsset_macos/ Source: The Register Title: Microsoft spots fresh XCSSET malware strain hiding in Apple dev projects Feedly Summary: Upgraded nasty slips into Xcode builds, steals crypto, and disables macOS defenses The long-running XCSSET malware strain has evolved again, with Microsoft warning of a new macOS variant that expands its bag of tricks while…

  • The Register: LockBit’s new variant is ‘most dangerous yet,’ hitting Windows, Linux and VMware ESXi

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/26/lockbits_new_variant_is_most/ Source: The Register Title: LockBit’s new variant is ‘most dangerous yet,’ hitting Windows, Linux and VMware ESXi Feedly Summary: Operation Cronos didn’t kill LockBit – it just came back meaner Trend Micro has sounded the alarm over the new LockBit 5.0 ransomware strain, which it warns is “significantly more dangerous" than past…

  • Docker: The Trust Paradox: When Your AI Gets Catfished

    by

    Kurt Seifried
    in

    Source URL: https://www.docker.com/blog/mcp-prompt-injection-trust-paradox/ Source: Docker Title: The Trust Paradox: When Your AI Gets Catfished Feedly Summary: The fundamental challenge with MCP-enabled attacks isn’t technical sophistication. It’s that hackers have figured out how to catfish your AI. These attacks work because they exploit the same trust relationships that make your development team actually functional. When your…

  • The Register: Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/26/salesforce_agentforce_forceleak_attack/ Source: The Register Title: Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales Feedly Summary: More fun with AI agents and their security holes A now-fixed flaw in Salesforce’s Agentforce could have allowed external attackers to steal sensitive customer data via prompt injection, according to security researchers…

  • Cisco Talos Blog: Great Scott, I’m tired

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/great-scott-im-tired/ Source: Cisco Talos Blog Title: Great Scott, I’m tired Feedly Summary: Hazel celebrates unseen effort in cybersecurity and shares some PII. Completely unrelated, but did you know “Back to the Future” turns 40 this year? AI Summary and Description: Yes Summary: The content primarily discusses recent cybersecurity threats, including the emergence of…

  • The Cloudflare Blog: Safe in the sandbox: security hardening for Cloudflare Workers

    by

    Kurt Seifried
    in

    Source URL: https://blog.cloudflare.com/safe-in-the-sandbox-security-hardening-for-cloudflare-workers/ Source: The Cloudflare Blog Title: Safe in the sandbox: security hardening for Cloudflare Workers Feedly Summary: We are further hardening Cloudflare Workers with the latest software and hardware features. We use defense-in-depth, including V8 sandboxes and the CPU’s memory protection keys to keep your data safe. AI Summary and Description: Yes Summary:…

  • Cloud Blog: The global harms of restrictive cloud licensing, one year later

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/inside-google-cloud/global-harms-restrictive-cloud-licensing-one-year-later/ Source: Cloud Blog Title: The global harms of restrictive cloud licensing, one year later Feedly Summary: A year ago today, Google Cloud filed a formal complaint with the European Commission about Microsoft’s anti-competitive cloud licensing practices — specifically those that impose financial penalties on businesses that use Windows Server software on Azure’s…

  • Slashdot: Record-Breaking DDoS Attack Peaks At 22 Tbps and 10 Bpps

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/09/24/2010227/record-breaking-ddos-attack-peaks-at-22-tbps-and-10-bpps?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Record-Breaking DDoS Attack Peaks At 22 Tbps and 10 Bpps Feedly Summary: AI Summary and Description: Yes Summary: Cloudflare successfully mitigated a record-breaking DDoS attack against a European network infrastructure company, reaching peaks of 22.2 Tbps. The attack, attributed to the Aisuru botnet, demonstrates the increasing sophistication of cyber…