Tag: security threat
-
Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/07/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-41713 Mitel MiCollab Path Traversal Vulnerability CVE-2024-55550 Mitel MiCollab Path Traversal Vulnerability CVE-2020-2883 Oracle WebLogic Server Unspecified Vulnerability Users and administrators are also encouraged to…
-
Embrace The Red: AI Domination: Remote Controlling ChatGPT ZombAI Instances
Source URL: https://embracethered.com/blog/posts/2025/spaiware-and-chatgpt-command-and-control-via-prompt-injection-zombai/ Source: Embrace The Red Title: AI Domination: Remote Controlling ChatGPT ZombAI Instances Feedly Summary: At Black Hat Europe I did a fun presentation titled SpAIware and More: Advanced Prompt Injection Exploits. Without diving into the details of the entire talk, the key point I was making is that prompt injection can impact…
-
The Register: After China’s Salt Typhoon, the reconstruction starts now
Source URL: https://www.theregister.com/2025/01/06/opinion_column_cybersec/ Source: The Register Title: After China’s Salt Typhoon, the reconstruction starts now Feedly Summary: If 40 years of faulty building gets blown down, don’t rebuild with the rubble Opinion When a typhoon devastates a land, it takes a while to understand the scale of the destruction. Disaster relief kicks in, communications rebuilt,…
-
Hacker News: GPON FTTH networks (in)security (2016)
Source URL: https://pierrekim.github.io/blog/2016-11-01-gpon-ftth-networks-insecurity.html#introduction Source: Hacker News Title: GPON FTTH networks (in)security (2016) Feedly Summary: Comments AI Summary and Description: Yes Summary: The text delves into the (in)security of GPON FTTH networks, particularly focusing on vulnerabilities inherent in devices like the Optical Network Terminal (ONT) used by major ISPs in France. It uncovers significant threats, including…
-
Krebs on Security: U.S. Army Soldier Arrested in AT&T, Verizon Extortions
Source URL: https://krebsonsecurity.com/2024/12/u-s-army-soldier-arrested-in-att-verizon-extortions/ Source: Krebs on Security Title: U.S. Army Soldier Arrested in AT&T, Verizon Extortions Feedly Summary: Federal authorities have arrested and indicted a 20-year-old U.S. Army soldier on suspicion of being Kiberphant0m, a cybercriminal who has been selling and leaking sensitive customer call records stolen earlier this year from AT&T and Verizon. As…
-
Hacker News: Passkey technology is elegant, but it’s most definitely not usable security
Source URL: https://arstechnica.com/security/2024/12/passkey-technology-is-elegant-but-its-most-definitely-not-usable-security/ Source: Hacker News Title: Passkey technology is elegant, but it’s most definitely not usable security Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the challenges and potential of using passkeys as a secure alternative to traditional passwords in the context of increasing data breaches and phishing attacks. While…
-
The Cloudflare Blog: What’s new in Cloudflare: MASQUE now powers 1.1.1.1 & WARP apps, DEX now generally available with Remote Captures
Source URL: https://blog.cloudflare.com/masque-now-powers-1-1-1-1-and-warp-apps-dex-available-with-remote-captures/ Source: The Cloudflare Blog Title: What’s new in Cloudflare: MASQUE now powers 1.1.1.1 & WARP apps, DEX now generally available with Remote Captures Feedly Summary: This roundup blog post shares the latest new features and capabilities at Cloudflare. AI Summary and Description: Yes Summary: Cloudflare announces two significant updates involving its 1.1.1.1…