Security Research – Experimental News Clipping Site

The Register: Today’s LLMs craft exploits from patches at lightning speed

Apr 21, 2025

—

by

Source URL: https://www.theregister.com/2025/04/21/ai_models_can_generate_exploit/ Source: The Register Title: Today’s LLMs craft exploits from patches at lightning speed Feedly Summary: Erlang? Er, man, no problem. ChatGPT, Claude to go from flaw disclosure to actual attack code in hours The time from vulnerability disclosure to proof-of-concept (PoC) exploit code can now be as short as a few hours,…

Microsoft Security Blog: Securing our future: April 2025 progress report on Microsoft’s Secure Future Initiative

Apr 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/04/21/securing-our-future-april-2025-progress-report-on-microsofts-secure-future-initiative/ Source: Microsoft Security Blog Title: Securing our future: April 2025 progress report on Microsoft’s Secure Future Initiative Feedly Summary: The Microsoft Secure Future Initiative (SFI) stands as the largest cybersecurity engineering project in history and most extensive effort of its kind at Microsoft. Now, we are sharing the second SFI progress report,…

Slashdot: Can You Run the Llama 2 LLM on DOS?

Apr 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://tech.slashdot.org/story/25/04/21/0026255/can-you-run-the-llama-2-llm-on-dos Source: Slashdot Title: Can You Run the Llama 2 LLM on DOS? Feedly Summary: AI Summary and Description: Yes Summary: The text revolves around an innovative project by an embedded security researcher who successfully ported Llama 2, a large language model (LLM), to run on vintage DOS machines. This challenges the conventional…

Microsoft Security Blog: Microsoft’s Secure by Design journey: One year of success

Apr 17, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/04/17/microsofts-secure-by-design-journey-one-year-of-success/ Source: Microsoft Security Blog Title: Microsoft’s Secure by Design journey: One year of success Feedly Summary: Read about the initiatives Microsoft has undertaken over the past 18 months to support secure by design, secure by default, and secure in operations objectives as part of our SFI Initiative. The post Microsoft’s Secure by…

Simon Willison’s Weblog: CaMeL offers a promising new direction for mitigating prompt injection attacks

Apr 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Apr/11/camel/#atom-everything Source: Simon Willison’s Weblog Title: CaMeL offers a promising new direction for mitigating prompt injection attacks Feedly Summary: In the two and a half years that we’ve been talking about prompt injection attacks I’ve seen alarmingly little progress towards a robust solution. The new paper Defeating Prompt Injections by Design from Google…

Simon Willison’s Weblog: A Sneaky Phish Just Grabbed my Mailchimp Mailing List

Apr 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Apr/4/a-sneaky-phish/ Source: Simon Willison’s Weblog Title: A Sneaky Phish Just Grabbed my Mailchimp Mailing List Feedly Summary: A Sneaky Phish Just Grabbed my Mailchimp Mailing List In further evidence that phishing attacks can catch out the most sophisticated among us, security researcher (and operator of ‘;–have i been pwned?) Troy Hunt reports on…

Simon Willison’s Weblog: A Sneaky Phish Just Grabbed my Mailchimp Mailing List

Apr 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Apr/4/a-sneaky-phish/ Source: Simon Willison’s Weblog Title: A Sneaky Phish Just Grabbed my Mailchimp Mailing List Feedly Summary: A Sneaky Phish Just Grabbed my Mailchimp Mailing List In further evidence that phishing attacks can catch out the most sophisticated among us, security researcher (and operator of ‘;–have i been pwned?) Troy Hunt reports on…

The Register: Oracle Health reportedly warns of info leak from legacy server

Mar 30, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/30/infosec_news_in_brief/ Source: The Register Title: Oracle Health reportedly warns of info leak from legacy server Feedly Summary: PLUS: OpenAI bumps bug bounties bigtime; INTERPOL arrests 300 alleged cyber-scammers; And more! Infosec in brief Oracle Health appears to have fallen victim to an info stealing attack that has led to patient data stored by…

Slashdot: New Ubuntu Linux Security Bypasses Require Manual Mitigations

Mar 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/03/29/0555241/new-ubuntu-linux-security-bypasses-require-manual-mitigations?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: New Ubuntu Linux Security Bypasses Require Manual Mitigations Feedly Summary: AI Summary and Description: Yes Summary: The text discusses significant security bypasses discovered in Ubuntu Linux that could allow local attackers to exploit kernel vulnerabilities. With the involvement of cloud security researchers from Qualys, it highlights the limitations in…

The Register: Malware in Lisp? Now you’re just being cruel

Mar 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/29/malware_obscure_languages/ Source: The Register Title: Malware in Lisp? Now you’re just being cruel Feedly Summary: Miscreants warming to Delphi, Haskell, and the like to evade detection Malware authors looking to evade analysis are turning to less popular programming languages like Delphi or Haskell.… AI Summary and Description: Yes Summary: The text discusses a…

Tag: Security Research