security frameworks – Page 7 – Experimental News Clipping Site

The Register: Infosec hounds spot prompt injection vuln in Google Gemini apps

Aug 8, 2025

—

by

Source URL: https://www.theregister.com/2025/08/08/infosec_hounds_spot_prompt_injection/ Source: The Register Title: Infosec hounds spot prompt injection vuln in Google Gemini apps Feedly Summary: Not a very smart home: crims could hijack smart-home boiler, open and close powered windows and more. Now fixed Black hat A trio of researchers has disclosed a major prompt injection vulnerability in Google’s Gemini large…

The Register: OpenAI’s GPT-5 is here with up to 80% fewer hallucinations

Aug 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/07/openai_gpt_5/ Source: The Register Title: OpenAI’s GPT-5 is here with up to 80% fewer hallucinations Feedly Summary: That totally makes up for the single-digit benchmark gains, right? OpenAI unveiled its most capable model yet on Thursday with the launch of GPT-5.… AI Summary and Description: Yes Summary: The announcement of OpenAI’s GPT-5 represents…

OpenAI : GPT-5 and the new era of work

Aug 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://openai.com/index/gpt-5-new-era-of-work Source: OpenAI Title: GPT-5 and the new era of work Feedly Summary: GPT-5 is OpenAI’s most advanced model—transforming enterprise AI, automation, and workforce productivity in the new era of intelligent work. AI Summary and Description: Yes Summary: The text highlights the launch of GPT-5 by OpenAI, emphasizing its potential impacts on enterprise…

Slashdot: Citizen Lab Director Warns Cyber Industry About US Authoritarian Descent

Aug 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/08/06/228248/citizen-lab-director-warns-cyber-industry-about-us-authoritarian-descent?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Citizen Lab Director Warns Cyber Industry About US Authoritarian Descent Feedly Summary: AI Summary and Description: Yes Summary: The text concerns Ron Deibert, director of Citizen Lab, who is alerting the cybersecurity community to the increasing fusion of technology and authoritarianism, emphasizing the role of Big Tech in this…

Wired: Hackers Hijacked Google’s Gemini AI With a Poisoned Calendar Invite to Take Over a Smart Home

Aug 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.wired.com/story/google-gemini-calendar-invite-hijack-smart-home/ Source: Wired Title: Hackers Hijacked Google’s Gemini AI With a Poisoned Calendar Invite to Take Over a Smart Home Feedly Summary: For likely the first time ever, security researchers have shown how AI can be hacked to create real world havoc, allowing them to turn off lights, open smart shutters, and more.…

Cisco Security Blog: Foundation-sec-8B-Instruct: An Out-of-the-Box Security Copilot

Aug 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://feedpress.me/link/23535/17112350/foundation-sec-8b-instruct-out-of-the-box-security-copilot Source: Cisco Security Blog Title: Foundation-sec-8B-Instruct: An Out-of-the-Box Security Copilot Feedly Summary: Foundation-sec-8B-Instruct layers instruction fine-tuning on top of our domain-focused base model, giving you a chat-native copilotthat understands security. AI Summary and Description: Yes Summary: The text describes a new method of fine-tuning AI models, specifically designed for security applications. This…

Unit 42: When Good Accounts Go Bad: Exploiting Delegated Managed Service Accounts in Active Directory

Aug 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/badsuccessor-attack-vector/ Source: Unit 42 Title: When Good Accounts Go Bad: Exploiting Delegated Managed Service Accounts in Active Directory Feedly Summary: BadSuccessor is an attack vector in Windows Server 2025. Under certain conditions it allows privilege elevation via dMSAs. We analyze its mechanics. The post When Good Accounts Go Bad: Exploiting Delegated Managed Service…

Simon Willison’s Weblog: OpenAI’s new open weight (Apache 2) models are really good

Aug 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Aug/5/gpt-oss/ Source: Simon Willison’s Weblog Title: OpenAI’s new open weight (Apache 2) models are really good Feedly Summary: The long promised OpenAI open weight models are here, and they are very impressive. They’re available under proper open source licenses – Apache 2.0 – and come in two sizes, 120B and 20B. OpenAI’s own…

The Register: Three US agencies get failing grades for not following IT best practices

Aug 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/05/epa_dhs_gsa_get_failing_grades/ Source: The Register Title: Three US agencies get failing grades for not following IT best practices Feedly Summary: CIOs at the EPA, DHS, and GSA are called out for failure to implement critical cybersecurity recommendations The Government Accountability Office (GAO) scolded a trio of federal agencies on Monday because their CIOs haven’t…

Embrace The Red: Amp Code: Arbitrary Command Execution via Prompt Injection Fixed

Aug 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/amp-agents-that-modify-system-configuration-and-escape/ Source: Embrace The Red Title: Amp Code: Arbitrary Command Execution via Prompt Injection Fixed Feedly Summary: Sandbox-escape-style attacks can happen when an AI is able to modify its own configuration settings, such as by writing to configuration files. That was the case with Amp, an agentic coding tool built by Sourcegraph. The…

Tag: security frameworks