Tag: command

Source URL: https://embracethered.com/blog/posts/2024/claude-computer-use-c2-the-zombais-are-coming/ Source: Embrace The Red Title: ZombAIs: From Prompt Injection to C2 with Claude Computer Use Feedly Summary: A few days ago, Anthropic released Claude Computer Use, which is a model + code that allows Claude to control a computer. It takes screenshots to make decisions, can run bash commands and so forth.…

Cloud Blog: What’s new in PostgreSQL 17, now available in Cloud SQL

—

by

Source URL: https://cloud.google.com/blog/products/databases/postgresql-17-now-available-on-cloud-sql/ Source: Cloud Blog Title: What’s new in PostgreSQL 17, now available in Cloud SQL Feedly Summary: We’re excited to announce support for PostgreSQL 17 in Cloud SQL, complete with many new features and valuable enhancements across five key areas: Security Developer experience Performance Tooling Observability In this blog post, we explore these…

The Register: Anthropic’s latest Claude model can interact with computers – what could go wrong?

—

by

Source URL: https://www.theregister.com/2024/10/24/anthropic_claude_model_can_use_computers/ Source: The Register Title: Anthropic’s latest Claude model can interact with computers – what could go wrong? Feedly Summary: For starters, it could launch a prompt injection attack on itself… The latest version of AI startup Anthropic’s Claude 3.5 Sonnet model can use computers – and the developer makes it sound like…

The Register: Perfctl malware strikes again as crypto-crooks target Docker Remote API servers

—

by

Source URL: https://www.theregister.com/2024/10/24/perfctl_malware_strikes_again/ Source: The Register Title: Perfctl malware strikes again as crypto-crooks target Docker Remote API servers Feedly Summary: Attacks on unprotected servers reach ‘critical level’ An unknown attacker is abusing exposed Docker Remote API servers to deploy perfctl cryptomining malware on victims’ systems, according to Trend Micro researchers.… AI Summary and Description: Yes…

Cloud Blog: Investigating FortiManager Zero-Day Exploitation (CVE-2024-47575)

—

by

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/fortimanager-zero-day-exploitation-cve-2024-47575/ Source: Cloud Blog Title: Investigating FortiManager Zero-Day Exploitation (CVE-2024-47575) Feedly Summary: Written by: Foti Castelan, Max Thauer, JP Glab, Gabby Roncone, Tufail Ahmed, Jared Wilson Summary In October 2024, Mandiant collaborated with Fortinet to investigate the mass exploitation of FortiManager appliances across 50+ potentially compromised FortiManager devices in various industries. The vulnerability,…

The Register: Warning! FortiManager critical vulnerability under active attack

—

by

Source URL: https://www.theregister.com/2024/10/23/fortimanager_critical_vulnerability/ Source: The Register Title: Warning! FortiManager critical vulnerability under active attack Feedly Summary: Security shop and CISA urge rapid action Fortinet has gone public with news of a critical flaw in its software management platform.… AI Summary and Description: Yes Summary: The text discusses a critical security vulnerability in Fortinet’s FortiManager control…

Hacker News: Fearless SSH: Short-lived certificates bring Zero Trust to infrastructure

—

by

Source URL: https://blog.cloudflare.com/intro-access-for-infrastructure-ssh Source: Hacker News Title: Fearless SSH: Short-lived certificates bring Zero Trust to infrastructure Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses Cloudflare’s integration of Zero Trust principles into infrastructure access management through its Access for Infrastructure feature, which addresses security issues related to SSH access. By eliminating long-lived…

Simon Willison’s Weblog: Running prompts against images and PDFs with Google Gemini

—

by

Source URL: https://simonwillison.net/2024/Oct/23/prompt-gemini/#atom-everything Source: Simon Willison’s Weblog Title: Running prompts against images and PDFs with Google Gemini Feedly Summary: Running prompts against images and PDFs with Google Gemini New TIL. I’ve been experimenting with the Google Gemini APIs for running prompts against images and PDFs (in preparation for finally adding multi-modal support to LLM) –…

Hacker News: Nix at work: FlakeHub Cache and private flakes

—

by