Experimental News Clipping Site

Tag: security professionals

  • Simon Willison’s Weblog: gpt-5 and gpt-5-mini rate limit updates

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/12/gpt-5-rate-limits/#atom-everything Source: Simon Willison’s Weblog Title: gpt-5 and gpt-5-mini rate limit updates Feedly Summary: gpt-5 and gpt-5-mini rate limit updates OpenAI have increased the rate limits for their two main GPT-5 models. These look significant: gpt-5 Tier 1: 30K → 500K TPM (1.5M batch) Tier 2: 450K → 1M (3M batch) Tier 3:…

  • The Register: HybridPetya: More proof that Secure Boot bypasses are not just an urban legend

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/12/hopefully_just_a_poc_hybridpetya/ Source: The Register Title: HybridPetya: More proof that Secure Boot bypasses are not just an urban legend Feedly Summary: Although it hasn’t been seen in the wild yet A new ransomware strain dubbed HybridPetya was able to exploit a patched vulnerability to bypass Unified Extensible Firmware Interface (UEFI) Secure Boot on unrevoked…

  • Cloud Blog: OpenTelemetry Protocol comes to Google Cloud Observability

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/management-tools/opentelemetry-now-in-google-cloud-observability/ Source: Cloud Blog Title: OpenTelemetry Protocol comes to Google Cloud Observability Feedly Summary: OpenTelemetry Protocol (OTLP) is a data exchange protocol designed to transport telemetry from a source to a destination in a vendor-agnostic fashion. Today, we’re pleased to announce that Cloud Trace, part of Google Cloud Observability, now supports users sending…

  • The Register: Google lands £400M MoD contract for secure UK cloud services

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/12/google_cloud_mod_contract/ Source: The Register Title: Google lands £400M MoD contract for secure UK cloud services Feedly Summary: Deal promises sovereign datacenters, AI, and cybersecurity to strengthen communication links with US The UK’s Ministry of Defence has signed a £400 million ($540 million) contract with Google sovereign cloud to support security and analytics workloads.……

  • Simon Willison’s Weblog: Comparing the memory implementations of Claude and ChatGPT

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Sep/12/claude-memory/#atom-everything Source: Simon Willison’s Weblog Title: Comparing the memory implementations of Claude and ChatGPT Feedly Summary: Claude Memory: A Different Philosophy Shlok Khemani has been doing excellent work reverse-engineering LLM systems and documenting his discoveries. Last week he wrote about ChatGPT memory. This week it’s Claude. Claude’s memory system has two fundamental characteristics.…

  • Cisco Talos Blog: Beaches and breaches

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/beaches-and-breaches/ Source: Cisco Talos Blog Title: Beaches and breaches Feedly Summary: Thor examines why supply chain and identity attacks took center stage in this week’s headlines, rather than AI and ransomware. AI Summary and Description: Yes Summary: The provided text discusses various contemporary cybersecurity threats, shifting from ransomware to breaches, particularly focusing on…

  • Krebs on Security: Bulletproof Host Stark Industries Evades EU Sanctions

    by

    Kurt Seifried
    in

    Source URL: https://krebsonsecurity.com/2025/09/bulletproof-host-stark-industries-evades-eu-sanctions/ Source: Krebs on Security Title: Bulletproof Host Stark Industries Evades EU Sanctions Feedly Summary: In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before Russia invaded Ukraine and quickly became a top source of Kremlin-linked cyberattacks and…

  • The Register: AI-powered penetration tool, an attacker’s dream, downloaded 10K times in 2 months

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/11/cobalt_strikes_ai_successor_downloaded/ Source: The Register Title: AI-powered penetration tool, an attacker’s dream, downloaded 10K times in 2 months Feedly Summary: Shady, China-based company, all the apps needed for a fully automated attack – sounds totally legit Villager, a new penetration-testing tool linked to a suspicious China-based company and described by researchers as “Cobalt Strike’s…

  • Cloud Blog: Prove your expertise with our Professional Security Operations Engineer certification

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/identity-security/prove-your-expertise-with-our-new-secops-engineer-certification/ Source: Cloud Blog Title: Prove your expertise with our Professional Security Operations Engineer certification Feedly Summary: Security leaders are clear about their priorities: After AI, cloud security is the top training topic for decision-makers. As threats against cloud workloads become more sophisticated, organizations are looking for highly-skilled professionals to help defend against…

  • The Register: Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/09/11/vmscape_spectre_vulnerability/ Source: The Register Title: Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets Feedly Summary: AMD Zen hardware and Intel Coffee Lake affected If you thought the world was done with side-channel CPU attacks, think again. ETH Zurich has identified yet another Spectre-based transient execution vulnerability that affects AMD Zen CPUs and…