exploits – Page 3 – Experimental News Clipping Site

Embrace The Red: AI Domination: Remote Controlling ChatGPT ZombAI Instances

Jan 7, 2025

—

by

Source URL: https://embracethered.com/blog/posts/2025/spaiware-and-chatgpt-command-and-control-via-prompt-injection-zombai/ Source: Embrace The Red Title: AI Domination: Remote Controlling ChatGPT ZombAI Instances Feedly Summary: At Black Hat Europe I did a fun presentation titled SpAIware and More: Advanced Prompt Injection Exploits. Without diving into the details of the entire talk, the key point I was making is that prompt injection can impact…

Hacker News: Aedan Cullen Cracks the Raspberry Pi RP2350’s Security Subsystem Wide Open

Jan 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.hackster.io/news/aedan-cullen-cracks-the-raspberry-pi-rp2350-s-security-subsystem-wide-open-a500925c7b35 Source: Hacker News Title: Aedan Cullen Cracks the Raspberry Pi RP2350’s Security Subsystem Wide Open Feedly Summary: Comments AI Summary and Description: Yes Summary: Aedan Cullen has demonstrated a method to breach the security of Raspberry Pi’s RP2350 microcontroller, a device intended for secure commercial applications. This incident highlights the ongoing vulnerabilities…

The Register: Telemetry data from 800K VW Group EVs exposed online

Jan 6, 2025

—

by

system automation

in Uncategorized

Source URL: https://www.theregister.com/2025/01/06/volkswagen_ev_data_exposed/ Source: The Register Title: Telemetry data from 800K VW Group EVs exposed online Feedly Summary: PLUS: DoJ bans data sale to enemy nations; Do Kwon extradited to US; Tenable CEO passes away; and more Infosec in Brief Welcome to 2025: hopefully you enjoyed a pleasant holiday season and returned to the security…

Hacker News: F-Droid Fake Signer PoC

Jan 3, 2025

—

by

system automation

in Uncategorized

Source URL: https://github.com/obfusk/fdroid-fakesigner-poc Source: Hacker News Title: F-Droid Fake Signer PoC Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses vulnerabilities in the APK signing process for Android, specifically how certain implementations of fdroidserver and related tools can be exploited, leading to potential bypasses of certificate pinning. This is critical for professionals…

The Register: How Androxgh0st rose from Mozi’s ashes to become ‘most prevalent malware’

Dec 24, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.theregister.com/2024/12/24/androxgh0st_botnet_mozi/ Source: The Register Title: How Androxgh0st rose from Mozi’s ashes to become ‘most prevalent malware’ Feedly Summary: Botnet’s operators ‘driven by similar interests as that of the Chinese state’ After the Mozi botnet mysteriously disappeared last year, a new and seemingly more powerful botnet, Androxgh0st, rose from its ashes and has quickly…

The Register: T-Mobile US CSO: Spies jumped from one telco to another in a way ‘I’ve not seen in my career’

Dec 21, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.theregister.com/2024/12/05/tmobile_cso_telecom_attack/ Source: The Register Title: T-Mobile US CSO: Spies jumped from one telco to another in a way ‘I’ve not seen in my career’ Feedly Summary: Security chief talks to El Reg as Feds urge everyone to use encrypted chat interview While Chinese-government-backed spies maintained access to US telecommunications providers’ networks for months…

The Register: T-Mobile US CSO: Spies jumped from one telco to another in a way ‘I’ve not seen in my career’

Dec 21, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.theregister.com/2024/12/05/tmobile_cso_telecom_attack/ Source: The Register Title: T-Mobile US CSO: Spies jumped from one telco to another in a way ‘I’ve not seen in my career’ Feedly Summary: Security chief talks to El Reg as Feds urge everyone to use encrypted chat interview While Chinese-government-backed spies maintained access to US telecommunications providers’ networks for months…

Alerts: CISA Releases Eight Industrial Control Systems Advisories

Dec 19, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.cisa.gov/news-events/alerts/2024/12/19/cisa-releases-eight-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Eight Industrial Control Systems Advisories Feedly Summary: CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-354-01 Hitachi Energy RTU500 series CMU ICSA-24-354-02 Hitachi Energy SDM600 ICSA-24-354-03 Delta Electronics DTM…

Threat Research Archives – Unit 42: From RA Group to RA World: Evolution of a Ransomware Group

Dec 18, 2024

—

by

system automation

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/ra-world-ransomware-group-updates-tool-set/ Source: Threat Research Archives – Unit 42 Title: From RA Group to RA World: Evolution of a Ransomware Group Feedly Summary: AI Summary and Description: Yes Summary: The text provides an in-depth analysis of the RA World ransomware group, previously known as RA Group, detailing their increased activity since March 2024, their…

Krebs on Security: How to Lose a Fortune with Just One Bad Click

Dec 18, 2024

—

by

system automation

in Uncategorized

Source URL: https://krebsonsecurity.com/2024/12/how-to-lose-a-fortune-with-just-one-bad-click/ Source: Krebs on Security Title: How to Lose a Fortune with Just One Bad Click Feedly Summary: Adam Griffin is still in disbelief over how quickly he was robbed of nearly $500,000 in cryptocurrencies. A scammer called using a real Google phone number to warn his Gmail account was being hacked, sent…

Tag: exploits