Tag: command

—

by

Source URL: https://simonwillison.net/2025/Aug/15/the-summer-of-johann/#atom-everything Source: Simon Willison’s Weblog Title: The Summer of Johann: prompt injections as far as the eye can see Feedly Summary: Independent AI researcher Johann Rehberger has had an absurdly busy August. Under the heading The Month of AI Bugs he has been publishing one report per day across an array of different…

The Register: Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole

—

by

Source URL: https://www.theregister.com/2025/08/15/cisco_secure_firewall_management_bug/ Source: The Register Title: Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole Feedly Summary: Switchzilla’s summer of perfect 10s Cisco has issued a patch for a maximum-severity bug in its Secure Firewall Management Center (FMC) software that could allow an unauthenticated, remote attacker to inject arbitrary…

Cloud Blog: Beyond guardrails: A taxonomy of platform engineering control mechanisms

—

by

Source URL: https://cloud.google.com/blog/products/application-modernization/platform-engineering-control-mechanisms/ Source: Cloud Blog Title: Beyond guardrails: A taxonomy of platform engineering control mechanisms Feedly Summary: The promise of platform engineering is to accelerate software delivery by empowering developers with self-service capabilities. However, this must be balanced with security, compliance, and operational stability, and for this, you need robust controls. But all too…

Embrace The Red: Google Jules is Vulnerable To Invisible Prompt Injection

—

by

Source URL: https://embracethered.com/blog/posts/2025/google-jules-invisible-prompt-injection/ Source: Embrace The Red Title: Google Jules is Vulnerable To Invisible Prompt Injection Feedly Summary: The latest Gemini models quite reliably interpret hidden Unicode Tag characters as instructions. This vulnerability, first reported to Google over a year ago, has not been mitigated at the model or API level, hence now affects all…

Cisco Talos Blog: UAT-7237 targets Taiwanese web hosting infrastructure

—

by

Source URL: https://blog.talosintelligence.com/uat-7237-targets-web-hosting-infra/ Source: Cisco Talos Blog Title: UAT-7237 targets Taiwanese web hosting infrastructure Feedly Summary: Cisco Talos discovered UAT-7237, a Chinese-speaking advanced persistent threat (APT) group active since at least 2022, which has significant overlaps with UAT-5918. AI Summary and Description: Yes Summary: The text discusses the activities of UAT-7237, a Chinese-speaking advanced persistent…

Docker: Docker Desktop 4.44: Smarter AI Modeling, Platform Stability, and Streamlined Kubernetes Workflows

—

by

Source URL: https://www.docker.com/blog/docker-desktop-4-44/ Source: Docker Title: Docker Desktop 4.44: Smarter AI Modeling, Platform Stability, and Streamlined Kubernetes Workflows Feedly Summary: In Docker Desktop 4.44, we’ve focused on delivering enhanced reliability, tighter AI modeling controls, and simplified tool integrations so you can build on your terms. Docker Model Runner Enhancements Inspectable Model Runner Workflows Now you…

Cloud Blog: Scalable AI starts with storage: Guide to model artifact strategies

—

by

Source URL: https://cloud.google.com/blog/topics/developers-practitioners/scalable-ai-starts-with-storage-guide-to-model-artifact-strategies/ Source: Cloud Blog Title: Scalable AI starts with storage: Guide to model artifact strategies Feedly Summary: Managing large model artifacts is a common bottleneck in MLOps. Baking models into container images leads to slow, monolithic deployments, and downloading them at startup introduces significant delays. This guide explores a better way: decoupling your…

Docker: MCP Horror Stories: The GitHub Prompt Injection Data Heist

—

by

Source URL: https://www.docker.com/blog/mcp-horror-stories-github-prompt-injection/ Source: Docker Title: MCP Horror Stories: The GitHub Prompt Injection Data Heist Feedly Summary: This is Part 3 of our MCP Horror Stories series, where we examine real-world security incidents that validate the critical vulnerabilities threatening AI infrastructure and demonstrate how Docker MCP Toolkit provides enterprise-grade protection. The Model Context Protocol (MCP)…

Embrace The Red: Jules Zombie Agent: From Prompt Injection to Remote Control

—

by