Experimental News Clipping Site

Tag: Lance

  • Slashdot: FBI Warns Russian Hackers Targeted ‘Thousands’ of Critical US Infrastructure IT Systems

    by

    Kurt Seifried
    in

    Source URL: https://news.slashdot.org/story/25/08/24/0638238/fbi-warns-russian-hackers-targeted-thousands-of-critical-us-infrastructure-it-systems?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: FBI Warns Russian Hackers Targeted ‘Thousands’ of Critical US Infrastructure IT Systems Feedly Summary: AI Summary and Description: Yes Summary: The text outlines a significant security threat posed by Russian state-sponsored hackers targeting U.S. critical infrastructure through vulnerabilities in Cisco devices. The report emphasizes the risks posed by unpatched…

  • Embrace The Red: Sneaking Invisible Instructions by Developers in Windsurf

    by

    Kurt Seifried
    in

    Source URL: https://embracethered.com/blog/posts/2025/windsurf-sneaking-invisible-instructions-for-prompt-injection/ Source: Embrace The Red Title: Sneaking Invisible Instructions by Developers in Windsurf Feedly Summary: Imagine a malicious instruction hidden in plain sight, invisible to you but not to the AI. This is a vulnerability discovered in Windsurf Cascade, it follows invisible instructions. This means there can be instructions in a file or…

  • Slashdot: Nvidia Release Massive AI-Ready Open European Language Dataset and Tools

    by

    Kurt Seifried
    in

    Source URL: https://hardware.slashdot.org/story/25/08/23/1731237/nvidia-release-massive-ai-ready-open-european-language-dataset-and-tools Source: Slashdot Title: Nvidia Release Massive AI-Ready Open European Language Dataset and Tools Feedly Summary: AI Summary and Description: Yes Summary: Nvidia has launched Granary, an extensive open-source dataset that significantly enhances AI translation capabilities for European languages. This initiative, alongside new AI models Canary and Parakeet, aims to improve the inclusivity…

  • Embrace The Red: Windsurf: Memory-Persistent Data Exfiltration (SpAIware Exploit)

    by

    Kurt Seifried
    in

    Source URL: https://embracethered.com/blog/posts/2025/windsurf-spaiware-exploit-persistent-prompt-injection/ Source: Embrace The Red Title: Windsurf: Memory-Persistent Data Exfiltration (SpAIware Exploit) Feedly Summary: In this second post about Windsurf Cascade we are exploring the SpAIware attack, which allows memory persistent data exfiltration. SpAIware is an attack we first successfully demonstrated with ChatGPT last year and OpenAI mitigated. While inspecting the system prompt…

  • Slashdot: Microsoft Reportedly Cuts China’s Early Access to Bug Disclosures, PoC Exploit Code

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/08/22/2059255/microsoft-reportedly-cuts-chinas-early-access-to-bug-disclosures-poc-exploit-code Source: Slashdot Title: Microsoft Reportedly Cuts China’s Early Access to Bug Disclosures, PoC Exploit Code Feedly Summary: AI Summary and Description: Yes Summary: Microsoft has modified its Microsoft Active Protections Program (MAPP) to restrict access to proof-of-concept exploit code for companies in certain countries, including China, to combat the leak of sensitive…

  • The Register: Saved you a click: Firefox 142 offers AI summaries of links

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/22/firefox_142/ Source: The Register Title: Saved you a click: Firefox 142 offers AI summaries of links Feedly Summary: CRLite, link previews, and a llama-shaped surprise for devs Good news, everyone! The new version of Mozilla’s browser now makes even more extensive use of AI, providing summaries of linked content and offering developers the…

  • Schneier on Security: AI Agents Need Data Integrity

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/08/ai-agents-need-data-integrity.html Source: Schneier on Security Title: AI Agents Need Data Integrity Feedly Summary: Think of the Web as a digital territory with its own social contract. In 2014, Tim Berners-Lee called for a “Magna Carta for the Web” to restore the balance of power between individuals and institutions. This mirrors the original charter’s…

  • The Register: Microsoft reportedly cuts China’s early access to bug disclosures, PoC exploit code

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/21/microsoft_cuts_chinas_early_access/ Source: The Register Title: Microsoft reportedly cuts China’s early access to bug disclosures, PoC exploit code Feedly Summary: Better late than never after SharePoint assault? Microsoft has reportedly stopped giving Chinese companies proof-of-concept exploit code for soon-to-be-disclosed vulnerabilities following last month’s SharePoint zero-day attacks, which appear to be related to a leak…

  • The Register: Honey, I shrunk the image and now I’m pwned

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/21/google_gemini_image_scaling_attack/ Source: The Register Title: Honey, I shrunk the image and now I’m pwned Feedly Summary: Google’s Gemini-powered tools tripped up by image-scaling prompt injection Security researchers with Trail of Bits have found that Google Gemini CLI and other production AI systems can be deceived by image scaling attacks, a well-known adversarial challenge…

  • Docker: Prototyping an AI Tutor with Docker Model Runner

    by

    Kurt Seifried
    in

    Source URL: https://www.docker.com/blog/how-to-build-an-ai-tutor-with-model-runner/ Source: Docker Title: Prototyping an AI Tutor with Docker Model Runner Feedly Summary: Every developer remembers their first docker run hello-world. The mix of excitement and wonder as that simple command pulls an image, creates a container, and displays a friendly message. But what if AI could make that experience even better?…