Tag: exploit
-
Slashdot: Did a Vendor’s Leak Help Attackers Exploit Microsoft’s SharePoint Servers?
Source URL: https://it.slashdot.org/story/25/07/27/0337218/did-a-vendors-leak-help-attackers-exploit-microsofts-sharepoint-servers?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Did a Vendor’s Leak Help Attackers Exploit Microsoft’s SharePoint Servers? Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a serious security concern regarding zero-day exploits targeting Microsoft’s SharePoint servers, emphasizing potential leaks of vulnerability information and the impact of generative AI tools like Google Gemini in…
-
Unit 42: The Ηоmоgraph Illusion: Not Everything Is As It Seems
Source URL: https://unit42.paloaltonetworks.com/homograph-attacks/ Source: Unit 42 Title: The Ηоmоgraph Illusion: Not Everything Is As It Seems Feedly Summary: A subtle yet dangerous email attack vector: homograph attacks. Threat actors are using visually similar, non-Latin characters to bypass security filters. The post The Ηоmоgraph Illusion: Not Everything Is As It Seems appeared first on Unit 42.…
-
Schneier on Security: Subliminal Learning in AIs
Source URL: https://www.schneier.com/blog/archives/2025/07/subliminal-learning-in-ais.html Source: Schneier on Security Title: Subliminal Learning in AIs Feedly Summary: Today’s freaky LLM behavior: We study subliminal learning, a surprising phenomenon where language models learn traits from model-generated data that is semantically unrelated to those traits. For example, a “student” model learns to prefer owls when trained on sequences of numbers…
-
The Register: No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers
Source URL: https://www.theregister.com/2025/07/24/no_login_no_problem_cisco_flaw/ Source: The Register Title: No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers Feedly Summary: Shadowserver claims miscreants were already poking at a critical hole in early July, long before Switchzilla patched it Threat actors have actively exploited a newly patched vulnerability in Cisco’s Identity Services…
-
The Register: Microsoft: SharePoint attacks now officially include ransomware infections
Source URL: https://www.theregister.com/2025/07/24/microsoft_sharepoint_ransomware/ Source: The Register Title: Microsoft: SharePoint attacks now officially include ransomware infections Feedly Summary: Let the games begin Ransomware has officially entered the Microsoft SharePoint exploitation ring.… AI Summary and Description: Yes Summary: The text briefly mentions the emergence of ransomware targeting Microsoft SharePoint, highlighting a concerning trend in the security landscape.…
-
The Register: Coyote malware abuses Microsoft’s UI Automation to hunt banking creds
Source URL: https://www.theregister.com/2025/07/24/coyote_malware_microsoft_uia/ Source: The Register Title: Coyote malware abuses Microsoft’s UI Automation to hunt banking creds Feedly Summary: Some coyotes hunt squirrels, this one hunts users’ financial apps A new variant of the Coyote banking trojan abuses Microsoft’s UI Automation (UIA), making it the first reported malware to use UIA for credential theft.… AI…