Experimental News Clipping Site

Tag: attacks

  • Slashdot: Google To Eliminate SMS Authentication in Gmail, Implement QR Codes

    by

    Kurt Seifried
    in

    Source URL: https://tech.slashdot.org/story/25/02/24/1442246/google-to-eliminate-sms-authentication-in-gmail-implement-qr-codes?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Google To Eliminate SMS Authentication in Gmail, Implement QR Codes Feedly Summary: AI Summary and Description: Yes Summary: Google is transitioning away from SMS verification codes for Gmail authentication, opting for QR codes instead. This shift addresses significant vulnerabilities related to SMS-based authentication, such as phishing and fraud, thereby…

  • Hacker News: Grok 3 is highly vulnerable to indirect prompt injection

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Feb/23/grok-3-indirect-prompt-injection/ Source: Hacker News Title: Grok 3 is highly vulnerable to indirect prompt injection Feedly Summary: Comments AI Summary and Description: Yes Summary: The text highlights significant vulnerabilities in xAI’s Grok 3 related to indirect prompt injection attacks, especially in the context of its operation on Twitter (X). This raises critical security concerns…

  • The Register: Rather than add a backdoor, Apple decides to kill iCloud E2EE for UK peeps

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/02/24/rather_than_add_a_backdoor/ Source: The Register Title: Rather than add a backdoor, Apple decides to kill iCloud E2EE for UK peeps Feedly Summary: PLUS: SEC launches new crypto crime unit; Phishing toolkit upgraded; and more Infosec in brief Apple has responded to the UK government’s demand for access to its customers’ data stored in iCloud…

  • Hacker News: Russia’s War on Ukraine: Three Years, Three Hundred and Two False Claims

    by

    Kurt Seifried
    in

    Source URL: https://www.newsguardrealitycheck.com/p/russias-war-on-ukraine-three-years Source: Hacker News Title: Russia’s War on Ukraine: Three Years, Three Hundred and Two False Claims Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text discusses the role of artificial intelligence in Russian disinformation campaigns during the Ukraine war, detailing how AI tools have been used to amplify the spread…

  • Simon Willison’s Weblog: Grok 3 is highly vulnerable to indirect prompt injection

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Feb/23/grok-3-indirect-prompt-injection/#atom-everything Source: Simon Willison’s Weblog Title: Grok 3 is highly vulnerable to indirect prompt injection Feedly Summary: Grok 3 is highly vulnerable to indirect prompt injection xAI’s new Grok 3 is so far exclusively deployed on Twitter (aka “X"), and apparently uses its ability to search for relevant tweets as part of every…

  • Rekt: ByBit – Rekt

    by

    Kurt Seifried
    in

    Source URL: https://www.rekt.news/bybit-rekt Source: Rekt Title: ByBit – Rekt Feedly Summary: $1.43B heist on ByBit claims the throne on our Rekt Leaderboard! Lazarus pulled off the perfect digital sleight-of-hand, making multisig signers see legitimate transactions while signing away the keys to the kingdom. Now ByBit’s offering $140M to catch the hackers. AI Summary and Description:…

  • Hacker News: The $1.5B Bybit Hack: The Era of Operational Security Failures Has Arrived

    by

    Kurt Seifried
    in

    Source URL: https://blog.trailofbits.com/2025/02/21/the-1.5b-bybit-hack-the-era-of-operational-security-failures-has-arrived/ Source: Hacker News Title: The $1.5B Bybit Hack: The Era of Operational Security Failures Has Arrived Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a significant operation security breach in the cryptocurrency domain, highlighting how sophisticated attackers, particularly North Korean state-sponsored threat actors, have shifted from exploiting vulnerabilities…

  • Hacker News: SEAL Advisory on DPRK Threat to Crypto Exchanges

    by

    Kurt Seifried
    in

    Source URL: https://www.securityalliance.org/news/2025-02-dprk-advisory Source: Hacker News Title: SEAL Advisory on DPRK Threat to Crypto Exchanges Feedly Summary: Comments AI Summary and Description: Yes Summary: The text describes a significant cyber theft by DPRK operatives, detailing their sophisticated tactics for compromising crypto exchanges. It emphasizes the importance of internal reviews and specific security measures for exchanges…

  • Alerts: CISA Adds One Known Exploited Vulnerability to Catalog

    by

    Kurt Seifried
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2025/02/21/cisa-adds-one-known-exploited-vulnerability-catalog Source: Alerts Title: CISA Adds One Known Exploited Vulnerability to Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-24989 Microsoft Power Pages Improper Access Control Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose…