Tag: disclosure
-
Slashdot: Ubuntu Linux Impacted By Decade-Old ‘needrestart’ Flaw That Gives Root
Source URL: https://it.slashdot.org/story/24/11/21/0057206/ubuntu-linux-impacted-by-decade-old-needrestart-flaw-that-gives-root?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Ubuntu Linux Impacted By Decade-Old ‘needrestart’ Flaw That Gives Root Feedly Summary: AI Summary and Description: Yes Summary: The text details five local privilege escalation vulnerabilities found in the Linux utility “needrestart,” crucial for professionals in security and compliance to recognize, as they highlight significant risks associated with resource…
-
Simon Willison’s Weblog: Preview: Gemini API Additional Terms of Service
Source URL: https://simonwillison.net/2024/Nov/19/preview-gemini/#atom-everything Source: Simon Willison’s Weblog Title: Preview: Gemini API Additional Terms of Service Feedly Summary: Preview: Gemini API Additional Terms of Service Google sent out an email last week linking to this preview of upcoming changes to the Gemini API terms. Key paragraph from that email: To maintain a safe and responsible environment…
-
The Register: Crook breaks into AI biz, points $250K wire payment at their own account
Source URL: https://www.theregister.com/2024/11/19/ilearningengines_bec_scam/ Source: The Register Title: Crook breaks into AI biz, points $250K wire payment at their own account Feedly Summary: Fastidious attacker then tidied up email trail behind them A Maryland AI company has confirmed to the Securities and Exchange Commission (SEC) that it lost $250,000 to a misdirected wire payment.… AI Summary…
-
Schneier on Security: Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days
Source URL: https://www.schneier.com/blog/archives/2024/11/most-of-2023s-top-exploited-vulnerabilities-were-zero-days.html Source: Schneier on Security Title: Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days Feedly Summary: Zero-day vulnerabilities are more commonly used, according to the Five Eyes: Key Findings In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks compared to 2022, allowing them to conduct cyber operations against higher-priority…
-
Simon Willison’s Weblog: Quoting Jack Clark
Source URL: https://simonwillison.net/2024/Nov/18/jack-clark/ Source: Simon Willison’s Weblog Title: Quoting Jack Clark Feedly Summary: The main innovation here is just using more data. Specifically, Qwen2.5 Coder is a continuation of an earlier Qwen 2.5 model. The original Qwen 2.5 model was trained on 18 trillion tokens spread across a variety of languages and tasks (e.g, writing,…
-
Blog | 0din.ai: Inyección de Prompts, el Camino a una Shell: Entorno de Contenedores de ChatGPT de OpenAI
Source URL: https://0din.ai/blog/inyeccion-de-prompts-el-camino-a-una-shell-entorno-de-contenedores-de-chatgpt-de-openai Source: Blog | 0din.ai Title: Inyección de Prompts, el Camino a una Shell: Entorno de Contenedores de ChatGPT de OpenAI Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses a blog exploring the boundaries of OpenAI’s ChatGPT container environment. It reveals unexpected capabilities allowing users to interact with the model’s…