Tag: Consent
-
The Cloudflare Blog: Addressing the unauthorized issuance of multiple TLS certificates for 1.1.1.1
Source URL: https://blog.cloudflare.com/unauthorized-issuance-of-certificates-for-1-1-1-1/ Source: The Cloudflare Blog Title: Addressing the unauthorized issuance of multiple TLS certificates for 1.1.1.1 Feedly Summary: Unauthorized TLS certificates were issued for 1.1.1.1 by a Certification Authority without permission from Cloudflare. These rogue certificates have now been revoked. AI Summary and Description: Yes Summary: The text describes a serious incident involving…
-
The Register: France fines Google, SHEIN, for undercooked Cookie policies that led to crummy privacy
Source URL: https://www.theregister.com/2025/09/04/france_google_shein_cookie_fines/ Source: The Register Title: France fines Google, SHEIN, for undercooked Cookie policies that led to crummy privacy Feedly Summary: Web giant and Chinese e-tailer whacked for dropping trackers without permission France’s data protection authority levied massive fines against Google and SHEIN for dropping cookies on customers without securing their permission, and also…
-
Schneier on Security: Indirect Prompt Injection Attacks Against LLM Assistants
Source URL: https://www.schneier.com/blog/archives/2025/09/indirect-prompt-injection-attacks-against-llm-assistants.html Source: Schneier on Security Title: Indirect Prompt Injection Attacks Against LLM Assistants Feedly Summary: Really good research on practical attacks against LLM agents. “Invitation Is All You Need! Promptware Attacks Against LLM-Powered Assistants in Production Are Practical and Dangerous” Abstract: The growing integration of LLMs into applications has introduced new security risks,…
-
Bulletins: Vulnerability Summary for the Week of August 25, 2025
Source URL: https://www.cisa.gov/news-events/bulletins/sb25-245 Source: Bulletins Title: Vulnerability Summary for the Week of August 25, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 1000projects–Online Project Report Submission and Evaluation System A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown…
-
Slashdot: Vivaldi Browser Doubles Down On Gen AI Ban
Source URL: https://tech.slashdot.org/story/25/08/29/217243/vivaldi-browser-doubles-down-on-gen-ai-ban Source: Slashdot Title: Vivaldi Browser Doubles Down On Gen AI Ban Feedly Summary: AI Summary and Description: Yes Summary: Vivaldi CEO Jon von Tetzchner emphasizes the company’s stance against integrating generative AI into its browser, arguing that such technologies can dehumanize the web, detract from content creators, and prioritize user data collection…
-
The Register: Five years – that’s how long Anthropic will store Claude chats unless you opt out
Source URL: https://www.theregister.com/2025/08/28/anthropic_five_year_data_retention/ Source: The Register Title: Five years – that’s how long Anthropic will store Claude chats unless you opt out Feedly Summary: My brain hurts a lot Claude creator Anthropic has given customers using its Free, Pro, and Max plans one month to prevent the engine from storing their chats for five years…
-
Slashdot: Anthropic Will Start Training Its AI Models on Chat Transcripts
Source URL: https://yro.slashdot.org/story/25/08/28/1643241/anthropic-will-start-training-its-ai-models-on-chat-transcripts?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Anthropic Will Start Training Its AI Models on Chat Transcripts Feedly Summary: AI Summary and Description: Yes Summary: Anthropic has announced a new policy regarding the use of user data for training its AI models, which now includes chat transcripts and coding sessions. Users must choose to opt out…
-
The Register: Google yet to take down ‘screenshot-grabbing’ Chrome VPN extension
Source URL: https://www.theregister.com/2025/08/21/freevpn_privacy_research/ Source: The Register Title: Google yet to take down ‘screenshot-grabbing’ Chrome VPN extension Feedly Summary: Researcher claims extension didn’t start out by exfiltrating info… while dev says its actions are ‘compliant’ Security boffins at Koi Security have warned of a shift in behavior of a popular Chrome VPN extension, FreeVPN.One, which recently…
-
Unit 42: Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth
Source URL: https://unit42.paloaltonetworks.com/attackers-sell-your-bandwidth-using-sdks/ Source: Unit 42 Title: Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth Feedly Summary: A campaign leverages CVE-2024-36401 to stealthily monetize victims’ bandwidth where legitimate software development kits (SDKs) are deployed for passive income. The post Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth…
-
Slashdot: Harvard Dropouts To Launch ‘Always On’ AI Smart Glasses That Listen, Record Every Conversation
Source URL: https://hardware.slashdot.org/story/25/08/20/2058229/harvard-dropouts-to-launch-always-on-ai-smart-glasses-that-listen-record-every-conversation?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Harvard Dropouts To Launch ‘Always On’ AI Smart Glasses That Listen, Record Every Conversation Feedly Summary: AI Summary and Description: Yes Summary: The launch of Halo X smart glasses represents an innovative leap in AI-powered wearable technology, capitalizing on continuous audio capture and real-time information delivery. This technology raises…