Tag: Microsoft
-
Hacker News: FIDO Alliance publishes new spec to let users move passkeys across providers
Source URL: https://fidoalliance.org/fido-alliance-publishes-new-specifications-to-promote-user-choice-and-enhanced-ux-for-passkeys/ Source: Hacker News Title: FIDO Alliance publishes new spec to let users move passkeys across providers Feedly Summary: Comments AI Summary and Description: Yes Summary: The FIDO Alliance’s new working draft for secure credential exchange aims to promote passkey adoption across different credential providers. By addressing the issues of unsecured credential transfer,…
-
The Register: Uncle Sam reportedly considers capping AI chip shipments to Middle East
Source URL: https://www.theregister.com/2024/10/16/us_export_cap_ai_chip_middle_east/ Source: The Register Title: Uncle Sam reportedly considers capping AI chip shipments to Middle East Feedly Summary: Meanwhile, ASML shares plunge as China export curbs hit forecast Amid fears that Middle Eastern nations are being used to funnel AI accelerators and other sensitive technologies to China, the Biden administration is reportedly considering…
-
The Register: Cisco confirms ‘ongoing investigation’ after crims brag about selling tons of data
Source URL: https://www.theregister.com/2024/10/15/cisco_confirm_ongoing_investigation/ Source: The Register Title: Cisco confirms ‘ongoing investigation’ after crims brag about selling tons of data Feedly Summary: IntelBroker claims the breach impacts Microsoft, SAP, AT&T, Verizon, T-Mobile US, and more Cisco has confirmed it is investigating claims of stealing — and now selling — data belonging to the networking giant.… AI Summary…
-
Cloud Blog: Cloud CISO Perspectives: AI vendors should share vulnerability research. Here’s why
Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-ai-vendors-should-share-vulnerability-research-heres-why/ Source: Cloud Blog Title: Cloud CISO Perspectives: AI vendors should share vulnerability research. Here’s why Feedly Summary: Welcome to the first Cloud CISO Perspectives for October 2024. Today I’m discussing new AI vulnerabilities that Google’s security teams discovered and helped fix, and why it’s important for AI vendors to share vulnerability research…
-
Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/15/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-30088 Microsoft Windows Kernel TOCTOU Race Condition Vulnerability CVE-2024-9680 Mozilla Firefox Use-After-Free Vulnerability CVE-2024-28987 SolarWinds Web Help Desk Hardcoded Credential Vulnerability These…
-
Hacker News: Invisible text that AI chatbots understand and humans can’t?
Source URL: https://arstechnica.com/security/2024/10/ai-chatbots-can-read-and-write-invisible-text-creating-an-ideal-covert-channel/ Source: Hacker News Title: Invisible text that AI chatbots understand and humans can’t? Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a sophisticated method of exploiting vulnerabilities in AI chatbots like Claude and Copilot through “ASCII smuggling,” where invisible characters are used to embed malicious instructions. This innovative…
-
The Register: Microsoft says governments should bear the responsibility for dealing with cybercrime
Source URL: https://www.theregister.com/2024/10/15/microsoft_digital_defense_report/ Source: The Register Title: Microsoft says governments should bear the responsibility for dealing with cybercrime Feedly Summary: Although it also reaffirmed commitment to secure-by-design initiatives Microsoft is calling for more robust deterrents to be placed on nation-states as criminals continue to run rife across online systems “without any meaningful consequences."… AI Summary…