continuous monitoring – Page 3 – Experimental News Clipping Site

Simon Willison’s Weblog: Google Gemini URL Context

Aug 19, 2025

—

by

Source URL: https://simonwillison.net/2025/Aug/18/google-gemini-url-context/ Source: Simon Willison’s Weblog Title: Google Gemini URL Context Feedly Summary: Google Gemini URL Context New feature in the Gemini API: you can now enable a url_context tool which the models can use to request the contents of URLs as part of replying to a prompt. I released llm-gemini 0.25 with a…

The Register: Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole

Aug 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/15/cisco_secure_firewall_management_bug/ Source: The Register Title: Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole Feedly Summary: Switchzilla’s summer of perfect 10s Cisco has issued a patch for a maximum-severity bug in its Secure Firewall Management Center (FMC) software that could allow an unauthenticated, remote attacker to inject arbitrary…

Docker: MCP Horror Stories: The GitHub Prompt Injection Data Heist

Aug 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/mcp-horror-stories-github-prompt-injection/ Source: Docker Title: MCP Horror Stories: The GitHub Prompt Injection Data Heist Feedly Summary: This is Part 3 of our MCP Horror Stories series, where we examine real-world security incidents that validate the critical vulnerabilities threatening AI infrastructure and demonstrate how Docker MCP Toolkit provides enterprise-grade protection. The Model Context Protocol (MCP)…

Embrace The Red: Jules Zombie Agent: From Prompt Injection to Remote Control

Aug 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/google-jules-remote-code-execution-zombai/ Source: Embrace The Red Title: Jules Zombie Agent: From Prompt Injection to Remote Control Feedly Summary: In the previous post, we explored two data exfiltration vectors that Jules is vulnerable to and that can be exploited via prompt injection. This post takes it further by demonstrating how Jules can be convinced to…

The Register: Secure chat darling Matrix admits pair of ‘high severity’ protocol flaws need painful fixes

Aug 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/13/secure_chat_darling_matrix_admits/ Source: The Register Title: Secure chat darling Matrix admits pair of ‘high severity’ protocol flaws need painful fixes Feedly Summary: Foundation warns federated servers face biggest risk, but single-instance users can take their time The maintainers of the federated secure chat protocol Matrix are warning users of a pair of “high severity…

Cisco Talos Blog: Malvertising campaign leads to PS1Bot, a multi-stage malware framework

Aug 12, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.talosintelligence.com/ps1bot-malvertising-campaign/ Source: Cisco Talos Blog Title: Malvertising campaign leads to PS1Bot, a multi-stage malware framework Feedly Summary: Cisco Talos has observed an ongoing malware campaign that seeks to infect victims with a multi-stage malware framework, implemented in PowerShell and C#, which we are referring to as “PS1Bot.” AI Summary and Description: Yes **Summary:**…

Embrace The Red: Claude Code: Data Exfiltration with DNS Requests

Aug 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/claude-code-exfiltration-via-dns-requests/ Source: Embrace The Red Title: Claude Code: Data Exfiltration with DNS Requests Feedly Summary: Today we cover Claude Code and a high severity vulnerability that Anthropic fixed in early June. The vulnerability allowed an attacker to hijack Claude Code via indirect prompt injection and leak sensitive information from the developer’s machine, e.g.…

The Register: Infosec hounds spot prompt injection vuln in Google Gemini apps

Aug 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/08/infosec_hounds_spot_prompt_injection/ Source: The Register Title: Infosec hounds spot prompt injection vuln in Google Gemini apps Feedly Summary: Not a very smart home: crims could hijack smart-home boiler, open and close powered windows and more. Now fixed Black hat A trio of researchers has disclosed a major prompt injection vulnerability in Google’s Gemini large…

Slashdot: Encryption Made For Police and Military Radios May Be Easily Cracked

Aug 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/08/07/217234/encryption-made-for-police-and-military-radios-may-be-easily-cracked Source: Slashdot Title: Encryption Made For Police and Military Radios May Be Easily Cracked Feedly Summary: AI Summary and Description: Yes Summary: The text highlights critical vulnerabilities in an encryption algorithm widely used in radios for essential sectors, including law enforcement and military. After researchers discovered a backdoor in the original algorithm,…

Wired: OpenAI Announces Massive US Government Partnership

Aug 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.wired.com/story/openai-is-giving-chatgpt-federal-workers/ Source: Wired Title: OpenAI Announces Massive US Government Partnership Feedly Summary: The ChatGPT maker is providing its frontier AI models to federal agencies for $1 for the next year. AI Summary and Description: Yes Summary: The offering of frontier AI models to federal agencies for a nominal fee highlights significant implications for…

Tag: continuous monitoring