Tag: researchers

  • The Register: Lazarus Group cloned open source projects to plant backdoors, steal credentials

    Source URL: https://www.theregister.com/2025/01/29/lazarus_groups_supply_chain_attack/ Source: The Register Title: Lazarus Group cloned open source projects to plant backdoors, steal credentials Feedly Summary: Stealing crypto is so 2024. Supply-chain attacks leading to data exfil pays off better? North Korea’s Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing…

  • Wired: Exposed DeepSeek Database Revealed Chat Prompts and Internal Data

    Source URL: https://www.wired.com/story/exposed-deepseek-database-revealed-chat-prompts-and-internal-data/ Source: Wired Title: Exposed DeepSeek Database Revealed Chat Prompts and Internal Data Feedly Summary: China-based DeepSeek has exploded in popularity, drawing greater scrutiny. Case in point: Security researchers found more than 1 million records, including user data and API keys, in an open database. AI Summary and Description: Yes Summary: The text…

  • The Register: Tiny Linux kernel tweak could cut datacenter power use by 30%, boffins say

    Source URL: https://www.theregister.com/2025/01/29/linux_kernel_tweak/ Source: The Register Title: Tiny Linux kernel tweak could cut datacenter power use by 30%, boffins say Feedly Summary: Not bad for 30 lines of code Hardware keeps getting faster, but it’s still worth taking a step back periodically and revisiting your code. You might just uncover a little tweak that wrings…

  • Simon Willison’s Weblog: How we estimate the risk from prompt injection attacks on AI systems

    Source URL: https://simonwillison.net/2025/Jan/29/prompt-injection-attacks-on-ai-systems/ Source: Simon Willison’s Weblog Title: How we estimate the risk from prompt injection attacks on AI systems Feedly Summary: How we estimate the risk from prompt injection attacks on AI systems The “Agentic AI Security Team" at Google DeepMind share some details on how they are researching indirect prompt injection attacks. They…

  • Hacker News: Show HN: DeepSeek vs. ChatGPT – The Clash of the AI Generations

    Source URL: https://www.sigmabrowser.com/blog/deepseek-vs-chatgpt-which-is-better Source: Hacker News Title: Show HN: DeepSeek vs. ChatGPT – The Clash of the AI Generations Feedly Summary: Comments AI Summary and Description: Yes Summary: The provided text outlines a comparison between two AI chatbots, DeepSeek and ChatGPT, highlighting their distinct capabilities and advantages. This analysis is particularly relevant for AI security…

  • Hacker News: Microsoft Probing If DeepSeek-Linked Group Improperly Obtained OpenAI Data

    Source URL: https://www.bloomberg.com/news/articles/2025-01-29/microsoft-probing-if-deepseek-linked-group-improperly-obtained-openai-data Source: Hacker News Title: Microsoft Probing If DeepSeek-Linked Group Improperly Obtained OpenAI Data Feedly Summary: Comments AI Summary and Description: Yes Summary: Microsoft and OpenAI are reportedly investigating a potential data exfiltration incident involving their technology linked to a Chinese AI startup, DeepSeek. This raises critical concerns about security and integrity in…

  • The Register: SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac Silicon

    Source URL: https://www.theregister.com/2025/01/29/flop_and_slap_attacks_apple_silicon/ Source: The Register Title: SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac Silicon Feedly Summary: It’s another cousin of Spectre, here to read your email, browsing history, and more Many recent Apple laptops, desktops, tablets, and phones powered by Cupertino’s homegrown Silicon processors can be exploited…

  • Slashdot: Apple Chips Can Be Hacked To Leak Secrets From Gmail, ICloud, and More

    Source URL: https://it.slashdot.org/story/25/01/28/2140207/apple-chips-can-be-hacked-to-leak-secrets-from-gmail-icloud-and-more?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Apple Chips Can Be Hacked To Leak Secrets From Gmail, ICloud, and More Feedly Summary: AI Summary and Description: Yes Summary: The text discusses newly discovered vulnerabilities in Apple-designed chips that potentially leak sensitive data through side-channel attacks leveraging speculative execution. It highlights significant security issues that pose risks…

  • Hacker News: New Apple CPU side-channel attacks steals data from browsers

    Source URL: https://www.bleepingcomputer.com/news/security/new-apple-cpu-side-channel-attack-steals-data-from-browsers/ Source: Hacker News Title: New Apple CPU side-channel attacks steals data from browsers Feedly Summary: Comments AI Summary and Description: Yes Summary: A recent disclosure by security researchers reveals critical side-channel vulnerabilities in modern Apple processors, specifically regarding the FLOP and SLAP attacks. These flaws exploit speculative execution mechanisms to leak sensitive…

  • Slashdot: ‘AI Is Too Unpredictable To Behave According To Human Goals’

    Source URL: https://slashdot.org/story/25/01/28/0039232/ai-is-too-unpredictable-to-behave-according-to-human-goals?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: ‘AI Is Too Unpredictable To Behave According To Human Goals’ Feedly Summary: AI Summary and Description: Yes Summary: The excerpt discusses the challenges of alignment and interpretability in large language models (LLMs), emphasizing that despite ongoing efforts to create safe AI, fundamental limitations may prevent true alignment. Professor Marcus…