security threats – Page 3 – Experimental News Clipping Site

The Register: Anthropic scanning Claude chats for queries about DIY nukes for some reason

Aug 21, 2025

—

by

Source URL: https://www.theregister.com/2025/08/21/anthropic_claude_nuclear_chat_detection/ Source: The Register Title: Anthropic scanning Claude chats for queries about DIY nukes for some reason Feedly Summary: Because savvy terrorists always use public internet services to plan their mischief, right? Anthropic says it has scanned an undisclosed portion of conversations with its Claude AI model to catch concerning inquiries about nuclear…

The Register: Honey, I shrunk the image and now I’m pwned

Aug 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/21/google_gemini_image_scaling_attack/ Source: The Register Title: Honey, I shrunk the image and now I’m pwned Feedly Summary: Google’s Gemini-powered tools tripped up by image-scaling prompt injection Security researchers with Trail of Bits have found that Google Gemini CLI and other production AI systems can be deceived by image scaling attacks, a well-known adversarial challenge…

Microsoft Security Blog: Think before you Click(Fix): Analyzing the ClickFix social engineering technique

Aug 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/08/21/think-before-you-clickfix-analyzing-the-clickfix-social-engineering-technique/ Source: Microsoft Security Blog Title: Think before you Click(Fix): Analyzing the ClickFix social engineering technique Feedly Summary: The ClickFix social engineering technique has been growing in popularity, with campaigns targeting thousands of enterprise and end-user devices daily. This technique exploits users’ tendency to resolve technical issues by tricking them into running malicious…

Krebs on Security: Oregon Man Charged in ‘Rapper Bot’ DDoS Service

Aug 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/08/oregon-man-charged-in-rapper-bot-ddos-service/ Source: Krebs on Security Title: Oregon Man Charged in ‘Rapper Bot’ DDoS Service Feedly Summary: A 22-year-old Oregon man has been arrested on suspicion of operating “Rapper Bot," a massive botnet used to power a service for launching distributed denial-of-service (DDoS) attacks against targets — including a March 2025 DDoS that knocked…

Unit 42: Fashionable Phishing Bait: GenAI on the Hook

Aug 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/genai-phishing-bait/ Source: Unit 42 Title: Fashionable Phishing Bait: GenAI on the Hook Feedly Summary: GenAI-created phishing campaigns misuse tools ranging from website builders to text generators in order to create more convincing and scalable attacks. The post Fashionable Phishing Bait: GenAI on the Hook appeared first on Unit 42. AI Summary and Description:…

Embrace The Red: Data Exfiltration via Image Rendering Fixed in Amp Code

Aug 17, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/amp-code-fixed-data-exfiltration-via-images/ Source: Embrace The Red Title: Data Exfiltration via Image Rendering Fixed in Amp Code Feedly Summary: In this post we discuss a vulnerability that was present in Amp Code from Sourcegraph by which an attacker could exploit markdown driven image rendering to exfiltrate sensitive information. This vulnerability is common in AI applications…

The Register: Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole

Aug 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/15/cisco_secure_firewall_management_bug/ Source: The Register Title: Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole Feedly Summary: Switchzilla’s summer of perfect 10s Cisco has issued a patch for a maximum-severity bug in its Secure Firewall Management Center (FMC) software that could allow an unauthenticated, remote attacker to inject arbitrary…

Slashdot: Russian Hackers Seized Control of Norwegian Dam, Spy Chief Says

Aug 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/08/14/232228/russian-hackers-seized-control-of-norwegian-dam-spy-chief-says?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Russian Hackers Seized Control of Norwegian Dam, Spy Chief Says Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a recent cyber-attack attributed to Russian hackers, who gained control over a Norwegian hydropower dam. This incident highlights increasing cybersecurity threats from pro-Russian actors aimed at instilling fear…

Cisco Talos Blog: What happened in Vegas (that you actually want to know about)

Aug 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.talosintelligence.com/what-happened-in-vegas-that-you-actually-want-to-know-about/ Source: Cisco Talos Blog Title: What happened in Vegas (that you actually want to know about) Feedly Summary: Hazel braves Vegas, overpriced water and the Black Hat maze to bring you Talos’ latest research — including a deep dive into the PS1Bot malware campaign. AI Summary and Description: Yes Summary: This newsletter…

Cloud Blog: Cloud CISO Perspectives: New Threat Horizons details evolving risks — and defenses

Aug 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-new-threat-horizons-details-evolving-risks-and-defenses/ Source: Cloud Blog Title: Cloud CISO Perspectives: New Threat Horizons details evolving risks — and defenses Feedly Summary: Welcome to the first Cloud CISO Perspectives for August 2025. Today, our Office of the CISO’s Bob Mechler and Anton Chuvakin dive into the key trends and evolving threats that we tracked in our…

Tag: security threats