security risks – Page 3 – Experimental News Clipping Site

Simon Willison’s Weblog: Why AI systems might never be secure

Sep 23, 2025

—

by

Source URL: https://simonwillison.net/2025/Sep/23/why-ai-systems-might-never-be-secure/#atom-everything Source: Simon Willison’s Weblog Title: Why AI systems might never be secure Feedly Summary: Why AI systems might never be secure The Economist have a new piece out about LLM security, with this headline and subtitle: Why AI systems might never be secure A “lethal trifecta” of conditions opens them to abuse…

The Register: ‘Technical debt’ in police database built to respond to child murders causing a ‘failing service’

Sep 22, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/22/police_database_built_to_respond/ Source: The Register Title: ‘Technical debt’ in police database built to respond to child murders causing a ‘failing service’ Feedly Summary: Project rated at ‘Red’ risk as it struggles to move off obsolete Oracle tech and cloud transition stalls The risk rating of the UK’s crime intelligence database is being elevated to…

Simon Willison’s Weblog: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Sep/19/notion-lethal-trifecta/ Source: Simon Willison’s Weblog Title: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration Feedly Summary: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration Abi Raghuram reports that Notion 3.0, released yesterday, introduces new prompt injection data exfiltration vulnerabilities…

Cloud Blog: Strengthen GCE and GKE security with new dashboards powered by Security Command Center

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/identity-security/new-gce-and-gke-dashboards-strengthen-security-posture/ Source: Cloud Blog Title: Strengthen GCE and GKE security with new dashboards powered by Security Command Center Feedly Summary: As cloud infrastructure evolves, so should how you safeguard that technology. As part of our efforts to help you maintain a strong security posture, we’ve introduced powerful capabilities that can address some of…

The Register: One token to pwn them all: Entra ID bug could have granted access to every tenant

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/19/microsoft_entra_id_bug/ Source: The Register Title: One token to pwn them all: Entra ID bug could have granted access to every tenant Feedly Summary: Until Microsoft lobbed it into a virtual volcano A security researcher claims to have found a flaw that could have handed him the keys to almost every Entra ID tenant…

The Register: Ruh-roh. DDR5 memory vulnerable to new Rowhammer attack

Sep 17, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/17/ddr5_dram_rowhammer/ Source: The Register Title: Ruh-roh. DDR5 memory vulnerable to new Rowhammer attack Feedly Summary: Google and ETH Zurich found problems with AMD/SK Hynix combo, will probe other hardware Researchers from Google and Swiss university ETH Zurich have found a new class of Rowhammer vulnerability that could allow attackers to access info stored…

Slashdot: The Mac App Flea Market

Sep 16, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://apple.slashdot.org/story/25/09/16/0629209/the-mac-app-flea-market?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: The Mac App Flea Market Feedly Summary: AI Summary and Description: Yes Summary: The text highlights the emergence of numerous imitation applications in the Mac App Store that mimic official AI chat applications like ChatGPT. These copycat apps raise concerns regarding authenticity and security in the AI landscape. Detailed…

Krebs on Security: Self-Replicating Worm Hits 180+ Software Packages

Sep 16, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/09/self-replicating-worm-hits-180-software-packages/ Source: Krebs on Security Title: Self-Replicating Worm Hits 180+ Software Packages Feedly Summary: At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on GitHub, experts warn. The malware, which briefly infected multiple code packages…

Slashdot: Vibe Coding Has Turned Senior Devs Into ‘AI Babysitters’

Sep 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://developers.slashdot.org/story/25/09/15/2056250/vibe-coding-has-turned-senior-devs-into-ai-babysitters?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Vibe Coding Has Turned Senior Devs Into ‘AI Babysitters’ Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the challenges faced by web developers using AI-generated code, highlighting the risks of dependency on AI tools for coding. It emphasizes the need for thorough verification of AI-generated outputs,…

The Register: Nork snoops whip up fake South Korean military ID with help from ChatGPT

Sep 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/15/north_korea_chatgpt_fake_id/ Source: The Register Title: Nork snoops whip up fake South Korean military ID with help from ChatGPT Feedly Summary: Kimsuky gang proves that with the right wording, you can turn generative AI into a counterfeit factory North Korean spies used ChatGPT to generate a fake military ID for use in an espionage…

Tag: security risks