Malicious Use – Page 2 – Experimental News Clipping Site

The Register: First AI-powered ransomware spotted, but it’s not active – yet

Aug 26, 2025

—

by

Source URL: https://www.theregister.com/2025/08/26/first_aipowered_ransomware_spotted_by/ Source: The Register Title: First AI-powered ransomware spotted, but it’s not active – yet Feedly Summary: Oh, look, a use case for OpenAI’s gpt-oss-20b model ESET malware researchers Anton Cherepanov and Peter Strycek have discovered what they describe as the “first known AI-powered ransomware," which they named PromptLock. … AI Summary and Description:…

Cloud Blog: Widespread Data Theft Targets Salesforce Instances via Salesloft Drift

Aug 26, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/data-theft-salesforce-instances-via-salesloft-drift/ Source: Cloud Blog Title: Widespread Data Theft Targets Salesforce Instances via Salesloft Drift Feedly Summary: Written by: Austin Larsen, Matt Lin, Tyler McLellan, Omar ElAhdan Introduction Google Threat Intelligence Group (GTIG) is issuing an advisory to alert organizations about a widespread data theft campaign, carried out by the actor tracked as UNC6395.…

Slashdot: Commissioner of Canada Elections Will ‘Explore the Use’ of AI

Aug 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://news.slashdot.org/story/25/08/14/1610236/commissioner-of-canada-elections-will-explore-the-use-of-ai?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Commissioner of Canada Elections Will ‘Explore the Use’ of AI Feedly Summary: AI Summary and Description: Yes Summary: The Office of the Commissioner of Canada Elections (OCCE) is exploring the use of AI and emerging technologies to enhance its operations and tackle electoral challenges. This initiative comes amid rising…

Simon Willison’s Weblog: Quoting @himbodhisattva

Aug 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Aug/4/himbodhisattva/#atom-everything Source: Simon Willison’s Weblog Title: Quoting @himbodhisattva Feedly Summary: for services that wrap GPT-3, is it possible to do the equivalent of sql injection? like, a prompt-injection attack? make it think it’s completed the task and then get access to the generation, and ask it to repeat the original instruction? — @himbodhisattva,…

The Cloudflare Blog: Vulnerability disclosure on SSL for SaaS v1 (Managed CNAME)

Aug 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.cloudflare.com/vulnerability-disclosure-on-ssl-for-saas-v1-managed-cname/ Source: The Cloudflare Blog Title: Vulnerability disclosure on SSL for SaaS v1 (Managed CNAME) Feedly Summary: An upcoming vulnerability disclosure in Cloudflare’s SSL for SaaSv1 is detailed, explaining the steps we’ve taken towards deprecation. AI Summary and Description: Yes Summary: The text discusses a vulnerability discovered in Cloudflare’s SSL for SaaS v1…

Cloud Blog: From Help Desk to Hypervisor: Defending Your VMware vSphere Estate from UNC3944

Jul 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/defending-vsphere-from-unc3944/ Source: Cloud Blog Title: From Help Desk to Hypervisor: Defending Your VMware vSphere Estate from UNC3944 Feedly Summary: Introduction In mid 2025, Google Threat Intelligence Group (GITG) identified a sophisticated and aggressive cyber campaign targeting multiple industries, including retail, airline, and insurance. This was the work of UNC3944, a financially motivated threat…

The Register: At last, a use case for AI agents with high sky-high ROI: Stealing crypto

Jul 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/07/10/ai_agents_automatically_steal_cryptocurrency/ Source: The Register Title: At last, a use case for AI agents with high sky-high ROI: Stealing crypto Feedly Summary: Boffins outsmart smart contracts with evil automation Using AI models to generate exploits for cryptocurrency contract flaws appears to be a promising business model, though not necessarily a legal one.… AI Summary…

Bulletins: Vulnerability Summary for the Week of June 23, 2025

Jun 30, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.cisa.gov/news-events/bulletins/sb25-181 Source: Bulletins Title: Vulnerability Summary for the Week of June 23, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 70mai–M300 A vulnerability was found in 70mai M300 up to 20250611 and classified as critical. Affected by this issue is some unknown functionality of the component Telnet…

The Register: Boffins devise voice-altering tech to jam ‘vishing’ schemes

Jun 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/06/19/voice_altering_vishing_jammer/ Source: The Register Title: Boffins devise voice-altering tech to jam ‘vishing’ schemes Feedly Summary: To stop AI scam callers, break automatic speech recognition systems Researchers based in Israel and India have developed a defense against automated call scams.… AI Summary and Description: Yes Summary: The text discusses a new defense mechanism developed…

Bulletins: Vulnerability Summary for the Week of June 9, 2025

Jun 16, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.cisa.gov/news-events/bulletins/sb25-167 Source: Bulletins Title: Vulnerability Summary for the Week of June 9, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info Acer–ControlCenter Acer ControlCenter contains Remote Code Execution vulnerability. The program exposes a Windows Named Pipe that uses a custom protocol to invoke internal functions. However, this Named…

Tag: Malicious Use