exploits – Page 19 – Experimental News Clipping Site

The Register: MINJA sneak attack poisons AI models for other chatbot users

Mar 11, 2025

—

by

Source URL: https://www.theregister.com/2025/03/11/minja_attack_poisons_ai_model_memory/ Source: The Register Title: MINJA sneak attack poisons AI models for other chatbot users Feedly Summary: Nothing like an OpenAI-powered agent leaking data or getting confused over what someone else whispered to it AI models with memory aim to enhance user interactions by recalling past engagements. However, this feature opens the door…

OpenAI : Detecting misbehavior in frontier reasoning models

Mar 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://openai.com/index/chain-of-thought-monitoring Source: OpenAI Title: Detecting misbehavior in frontier reasoning models Feedly Summary: Frontier reasoning models exploit loopholes when given the chance. We show we can detect exploits using an LLM to monitor their chains-of-thought. Penalizing their “bad thoughts” doesn’t stop the majority of misbehavior—it makes them hide their intent. AI Summary and Description:…

Threat Research Archives – Unit 42: Uncovering .NET Malware Obfuscated by Encryption and Virtualization

Mar 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/malware-obfuscation-techniques/ Source: Threat Research Archives – Unit 42 Title: Uncovering .NET Malware Obfuscated by Encryption and Virtualization Feedly Summary: AI Summary and Description: Yes **Summary:** This article provides a detailed examination of sophisticated obfuscation techniques utilized by various malware families, specifically focusing on how these methods enhance the ability of malware to evade…

Cloud Blog: Unraveling Time: A Deep Dive into TTD Instruction Emulation Bugs

Mar 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/ttd-instruction-emulation-bugs/ Source: Cloud Blog Title: Unraveling Time: A Deep Dive into TTD Instruction Emulation Bugs Feedly Summary: Written by: Dhanesh Kizhakkinan, Nino Isakovic Executive Summary This blog post presents an in-depth exploration of Microsoft’s Time Travel Debugging (TTD) framework, a powerful record-and-replay debugging framework for Windows user-mode applications. TTD relies heavily on accurate…

Hacker News: Apple rearranged its XNU kernel with exclaves

Mar 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/08/kernel_sanders_apple_rearranges_xnu/ Source: Hacker News Title: Apple rearranged its XNU kernel with exclaves Feedly Summary: Comments AI Summary and Description: Yes Summary: Apple is enhancing the security of its XNU kernel through the introduction of “exclaves,” which create isolated domains that enhance protection against kernel compromises. This architectural shift aims to combine the advantages…

Hacker News: Toward a Passwordless Future

Mar 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.privacyguides.org/articles/2025/03/08/toward-a-passwordless-future/ Source: Hacker News Title: Toward a Passwordless Future Feedly Summary: Comments AI Summary and Description: Yes Summary: The text explores the historical evolution of password-based authentication, its inherent vulnerabilities, and the transition towards using passkeys as a more secure and private alternative. This shift is particularly relevant for professionals in security and…

Alerts: CISA Releases Three Industrial Control Systems Advisories

Mar 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.cisa.gov/news-events/alerts/2025/03/06/cisa-releases-three-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Three Industrial Control Systems Advisories Feedly Summary: CISA released three Industrial Control Systems (ICS) advisories on March 6, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-065-01 Hitachi Energy PCU400 ICSA-25-065-02 Hitachi Energy Relion 670/650/SAM600-IO ICSA-25-037-02 Schneider Electric EcoStruxure (Update…

The Register: China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets

Mar 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/05/china_silk_typhoon_update/ Source: The Register Title: China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets Feedly Summary: They’re good at zero-day exploits, too Silk Typhoon, the Chinese government crew believed to be behind the December US Treasury intrusions, has been abusing stolen API keys and cloud credentials in ongoing…

Microsoft Security Blog: Silk Typhoon targeting IT supply chain

Mar 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/03/05/silk-typhoon-targeting-it-supply-chain/ Source: Microsoft Security Blog Title: Silk Typhoon targeting IT supply chain Feedly Summary: Silk Typhoon is a Chinese state actor focused on espionage campaigns targeting a wide range of industries in the US and throughout the world. In recent months, Silk Typhoon has shifted to performing IT supply chain attacks to gain…

Hacker News: Show HN: ArchGW – An open-source intelligent proxy server for prompts

Mar 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://github.com/katanemo/archgw Source: Hacker News Title: Show HN: ArchGW – An open-source intelligent proxy server for prompts Feedly Summary: Comments AI Summary and Description: Yes Summary: The text describes Arch Gateway, a system designed by Envoy Proxy contributors to streamline the handling of prompts and API interactions through purpose-built LLMs. It features intelligent routing,…

Tag: exploits