Tag: responsible disclosure
-
Slashdot: Proton Mail Suspended Journalist Accounts At Request of Cybersecurity Agency
Source URL: https://it.slashdot.org/story/25/09/12/230259/proton-mail-suspended-journalist-accounts-at-request-of-cybersecurity-agency?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Proton Mail Suspended Journalist Accounts At Request of Cybersecurity Agency Feedly Summary: AI Summary and Description: Yes Summary: The incident involving Proton Mail’s suspension of journalists’ accounts raises serious concerns about the security and confidentiality of communication platforms used by media professionals. It highlights a potential breach of trust…
-
Schneier on Security: Google Project Zero Changes Its Disclosure Policy
Source URL: https://www.schneier.com/blog/archives/2025/08/google-project-zero-changes-its-disclosure-policy.html Source: Schneier on Security Title: Google Project Zero Changes Its Disclosure Policy Feedly Summary: Google’s vulnerability finding team is again pushing the envelope of responsible disclosure: Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full disclosure takes place,…
-
Google Online Security Blog: Mitigating prompt injection attacks with a layered defense strategy
Source URL: http://security.googleblog.com/2025/06/mitigating-prompt-injection-attacks.html Source: Google Online Security Blog Title: Mitigating prompt injection attacks with a layered defense strategy Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses emerging security threats associated with generative AI, particularly focusing on indirect prompt injections that manipulate AI systems through hidden malicious instructions. Google outlines its layered security…
-
OpenAI : Scaling security with responsible disclosure
Source URL: https://openai.com/index/scaling-coordinated-vulnerability-disclosure Source: OpenAI Title: Scaling security with responsible disclosure Feedly Summary: OpenAI introduces its Outbound Coordinated Disclosure Policy to guide how it responsibly reports vulnerabilities in third-party software—emphasizing integrity, collaboration, and proactive security at scale. AI Summary and Description: Yes Summary: OpenAI’s introduction of its Outbound Coordinated Disclosure Policy marks a significant step…
-
The Cloudflare Blog: Resolving a request smuggling vulnerability in Pingora
Source URL: https://blog.cloudflare.com/resolving-a-request-smuggling-vulnerability-in-pingora/ Source: The Cloudflare Blog Title: Resolving a request smuggling vulnerability in Pingora Feedly Summary: Cloudflare patched a vulnerability (CVE-2025-4366) in the Pingora OSS framework, which exposed users of the framework and Cloudflare CDN’s free tier to potential request smuggling attacks. AI Summary and Description: Yes Summary: The text discusses a recently discovered…
-
Hacker News: Show HN: GuMCP – Open-source MCP servers, hosted for free
Source URL: https://github.com/gumloop/guMCP Source: Hacker News Title: Show HN: GuMCP – Open-source MCP servers, hosted for free Feedly Summary: Comments AI Summary and Description: Yes Summary: The Gumloop Unified Model Context Protocol (guMCP) is an open-source project designed to facilitate a community-driven collection of Model Context Protocol (MCP) servers. Its dual transport support and unified backend…