secrets – Experimental News Clipping Site

The Register: Employees regularly paste company secrets into ChatGPT

Oct 7, 2025

—

by

Source URL: https://www.theregister.com/2025/10/07/gen_ai_shadow_it_secrets/ Source: The Register Title: Employees regularly paste company secrets into ChatGPT Feedly Summary: Microsoft Copilot, not so much Employees could be opening up to OpenAI in ways that put sensitive data at risk. According to a study by security biz LayerX, a large number of corporate users paste Personally Identifiable Information (PII)…

The Register: Beijing-backed burglars master .NET to target government web servers

Oct 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/01/phantom_taurus_apt/ Source: The Register Title: Beijing-backed burglars master .NET to target government web servers Feedly Summary: ‘Phantom Taurus’ created custom malware to hunt secrets across Asia, Africa, and the Middle East Threat-hunters at Palo Alto Networks’ Unit 42 have decided a gang they spotted two years ago is backed by China, after seeing…

Simon Willison’s Weblog: Designing agentic loops

Sep 30, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Sep/30/designing-agentic-loops/ Source: Simon Willison’s Weblog Title: Designing agentic loops Feedly Summary: Coding agents like Anthropic’s Claude Code and OpenAI’s Codex CLI represent a genuine step change in how useful LLMs can be for producing working code. These agents can now directly exercise the code they are writing, correct errors, dig through existing implementation…

Docker: Docker MCP Toolkit: MCP Servers That Just Work

Sep 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/mcp-toolkit-mcp-servers-that-just-work/ Source: Docker Title: Docker MCP Toolkit: MCP Servers That Just Work Feedly Summary: Today, we want to highlight Docker MCP Toolkit, a free feature in Docker Desktop that gives you access to more than 200 MCP servers. It’s the easiest and most secure way to run MCP servers locally for your AI…

Slashdot: Escalation in Akira Campaign Targeting SonicWall VPNs, Deploying Ransomware, With Malicious Logins

Sep 27, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/09/27/2055246/escalation-in-akira-campaign-targeting-sonicwall-vpns-deploying-ransomware-with-malicious-logins?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Escalation in Akira Campaign Targeting SonicWall VPNs, Deploying Ransomware, With Malicious Logins Feedly Summary: AI Summary and Description: Yes Summary: This text discusses a recent security incident involving the exploitation of a vulnerability in SonicWall SSL VPNs, leading to rapid ransomware deployment. The analysis highlights the critical need for…

The Cloudflare Blog: Announcing Cloudflare Email Service’s private beta

Sep 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.cloudflare.com/email-service/ Source: The Cloudflare Blog Title: Announcing Cloudflare Email Service’s private beta Feedly Summary: Today, we’re launching Cloudflare Email Service. Send and receive email directly from your Workers with native bindings—no API keys needed. Sign up for the private beta. AI Summary and Description: Yes Summary: The text discusses the launch of Cloudflare’s…

Cloud Blog: Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors

Sep 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/brickstorm-espionage-campaign/ Source: Cloud Blog Title: Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors Feedly Summary: Written by: Sarah Yoder, John Wolfram, Ashley Pearson, Doug Bienstock, Josh Madeley, Josh Murchie, Brad Slaybaugh, Matt Lin, Geoff Carstairs, Austin Larsen Introduction Google Threat Intelligence Group (GTIG) is tracking BRICKSTORM malware activity, which is…

Anchore: Strengthening Software Security: The Anchore and Chainguard Partnership

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://anchore.com/blog/chainguard-partnership/ Source: Anchore Title: Strengthening Software Security: The Anchore and Chainguard Partnership Feedly Summary: In 2018, Anchore partnered with the US Air Force on Platform One, a project focused on integrating DevSecOps principles into government software development. A core part of that project was the launch of the Iron Bank, a repository of…

Schneier on Security: Apple’s New Memory Integrity Enforcement

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/09/apples-new-memory-integrity-enforcement.html Source: Schneier on Security Title: Apple’s New Memory Integrity Enforcement Feedly Summary: Apple has introduced a new hardware/software security feature in the iPhone 17: “Memory Integrity Enforcement,” targeting the memory safety vulnerabilities that spyware products like Pegasus tend to use to get unauthorized system access. From Wired: In recent years, a movement…

The Register: OpenAI plugs ShadowLeak bug in ChatGPT that let miscreants raid inboxes

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/19/openai_shadowleak_bug/ Source: The Register Title: OpenAI plugs ShadowLeak bug in ChatGPT that let miscreants raid inboxes Feedly Summary: Radware says flaw enabled hidden email prompts to trick Deep Research agent into exfiltrating sensitive data ChatGPT’s research assistant sprung a leak – since patched – that let attackers steal Gmail secrets with just a…

Tag: secrets