Experimental News Clipping Site

Tag: confidential information

  • Slashdot: Intel and AMD Trusted Enclaves, a Foundation For Network Security, Fall To Physical Attacks

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/10/01/229239/intel-and-amd-trusted-enclaves-a-foundation-for-network-security-fall-to-physical-attacks?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Intel and AMD Trusted Enclaves, a Foundation For Network Security, Fall To Physical Attacks Feedly Summary: AI Summary and Description: Yes Summary: Researchers have introduced two significant hardware attacks, Battering RAM and Wiretap, that compromise Intel SGX and AMD SEV-SNP trusted enclaves. These attacks exploit flaws in deterministic encryption…

  • Schneier on Security: Abusing Notion’s AI Agent for Data Theft

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/09/abusing-notions-ai-agent-for-data-theft.html Source: Schneier on Security Title: Abusing Notion’s AI Agent for Data Theft Feedly Summary: Notion just released version 3.0, complete with AI agents. Because the system contains Simon Willson’s lethal trifecta, it’s vulnerable to data theft though prompt injection. First, the trifecta: The lethal trifecta of capabilities is: Access to your private…

  • Slashdot: AI Tool Detects LLM-Generated Text in Research Papers and Peer Reviews

    by

    Kurt Seifried
    in

    Source URL: https://slashdot.org/story/25/09/19/1750226/ai-tool-detects-llm-generated-text-in-research-papers-and-peer-reviews Source: Slashdot Title: AI Tool Detects LLM-Generated Text in Research Papers and Peer Reviews Feedly Summary: AI Summary and Description: Yes Summary: Recent analysis conducted by the American Association for Cancer Research (AACR) reveals a significant increase in AI-generated text within academic submissions, particularly highlighting concerns about disclosure practices among authors. This…

  • Slashdot: Male-Oriented App ‘TeaOnHer’ Also Had Security Flaws That Could Leak Men’s Driver’s License Photos

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/08/18/0550252/male-oriented-app-teaonher-also-had-security-flaws-that-could-leak-mens-drivers-license-photos?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Male-Oriented App ‘TeaOnHer’ Also Had Security Flaws That Could Leak Men’s Driver’s License Photos Feedly Summary: AI Summary and Description: Yes Summary: The text discusses data breaches and security flaws in two dating-advice apps, focusing on the implications of such incidents for user privacy and corporate liability. These issues…

  • Wired: A Misconfiguration That Haunts Corporate Streaming Platforms Could Expose Sensitive Data

    by

    Kurt Seifried
    in

    Source URL: https://www.wired.com/story/corporate-livestreams-exposed-search-tool/ Source: Wired Title: A Misconfiguration That Haunts Corporate Streaming Platforms Could Expose Sensitive Data Feedly Summary: A security researcher discovered that flawed API configurations are plaguing corporate livestreaming platforms, potentially exposing internal company meetings—and he’s releasing a tool to find them. AI Summary and Description: Yes Summary: The text highlights a security…

  • The Register: OpenAI removes ChatGPT self-doxing option

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/01/openai_removes_chatgpt_selfdoxing_option/ Source: The Register Title: OpenAI removes ChatGPT self-doxing option Feedly Summary: Checkbox to make chatbot conversations appear in search engines deemed a footgun OpenAI has removed the option to make ChatGPT interactions indexable by search engines to prevent users from unwittingly exposing sensitive information.… AI Summary and Description: Yes Summary: OpenAI’s decision…

  • Cisco Talos Blog: PDFs: Portable documents, or perfect deliveries for phish?

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/pdfs-portable-documents-or-perfect-deliveries-for-phish/ Source: Cisco Talos Blog Title: PDFs: Portable documents, or perfect deliveries for phish? Feedly Summary: A popular social engineering technique returns: callback phishing, or TOAD attacks, which leverage PDFs, VoIP anonymity and even QR code tricks. AI Summary and Description: Yes Summary: Cisco’s update to its brand impersonation detection engine enhances email…

  • Cloud Blog: Cloud CISO Perspectives: How Google secures AI Agents

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-how-google-secures-ai-agents/ Source: Cloud Blog Title: Cloud CISO Perspectives: How Google secures AI Agents Feedly Summary: Welcome to the first Cloud CISO Perspectives for June 2025. Today, Anton Chuvakin, security advisor for Google Cloud’s Office of the CISO, discusses a new Google report on securing AI agents, and the new security paradigm they demand.As…