Experimental News Clipping Site

Tag: SoC

  • Embrace The Red: Windsurf: Memory-Persistent Data Exfiltration (SpAIware Exploit)

    by

    Kurt Seifried
    in

    Source URL: https://embracethered.com/blog/posts/2025/windsurf-spaiware-exploit-persistent-prompt-injection/ Source: Embrace The Red Title: Windsurf: Memory-Persistent Data Exfiltration (SpAIware Exploit) Feedly Summary: In this second post about Windsurf Cascade we are exploring the SpAIware attack, which allows memory persistent data exfiltration. SpAIware is an attack we first successfully demonstrated with ChatGPT last year and OpenAI mitigated. While inspecting the system prompt…

  • Slashdot: Microsoft Reportedly Cuts China’s Early Access to Bug Disclosures, PoC Exploit Code

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/08/22/2059255/microsoft-reportedly-cuts-chinas-early-access-to-bug-disclosures-poc-exploit-code Source: Slashdot Title: Microsoft Reportedly Cuts China’s Early Access to Bug Disclosures, PoC Exploit Code Feedly Summary: AI Summary and Description: Yes Summary: Microsoft has modified its Microsoft Active Protections Program (MAPP) to restrict access to proof-of-concept exploit code for companies in certain countries, including China, to combat the leak of sensitive…

  • Slashdot: Meta Signs $10 Billion Cloud Deal With Google

    by

    Kurt Seifried
    in

    Source URL: https://meta.slashdot.org/story/25/08/22/2043255/meta-signs-10-billion-cloud-deal-with-google Source: Slashdot Title: Meta Signs $10 Billion Cloud Deal With Google Feedly Summary: AI Summary and Description: Yes Summary: Google has entered into a significant six-year cloud computing partnership with Meta, valued at over $10 billion, to support Meta’s extensive AI infrastructure. This collaboration highlights the growing intersection of cloud computing and…

  • The Register: AI giants call for energy grid kumbaya

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/22/microsoft_nvidia_openai_power_grid/ Source: The Register Title: AI giants call for energy grid kumbaya Feedly Summary: Microsoft, Nvidia, and OpenAI researchers warn of uneven power usage associated with AI training, and propose possible fixes Researchers at Microsoft, Nvidia, and OpenAI have issued a call to designers of software, hardware, infrastructure, and utilities for help finding…

  • Slashdot: Apple Explores Using Google Gemini AI To Power Revamped Siri

    by

    Kurt Seifried
    in

    Source URL: https://apple.slashdot.org/story/25/08/22/1733230/apple-explores-using-google-gemini-ai-to-power-revamped-siri?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Apple Explores Using Google Gemini AI To Power Revamped Siri Feedly Summary: AI Summary and Description: Yes Summary: Apple is considering leveraging Google Gemini to enhance its Siri voice assistant, indicating a potential shift in its AI strategy towards outsourcing. This exploration comes as Apple seeks to catch up…

  • Simon Willison’s Weblog: too many model context protocol servers and LLM allocations on the dance floor

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/22/too-many-mcps/#atom-everything Source: Simon Willison’s Weblog Title: too many model context protocol servers and LLM allocations on the dance floor Feedly Summary: too many model context protocol servers and LLM allocations on the dance floor Useful reminder from Geoffrey Huntley of the infrequently discussed significant token cost of using MCP. Geoffrey estimate estimates that…

  • Cloud Blog: Don’t just speculate, investigate! Gemini Cloud Assist now offers root-cause analysis

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/management-tools/gemini-cloud-assist-investigations-performs-root-cause-analysis/ Source: Cloud Blog Title: Don’t just speculate, investigate! Gemini Cloud Assist now offers root-cause analysis Feedly Summary: Debugging in a complex, distributed cloud environment can feel like searching for a needle in a haystack. The sheer volume of data, intertwined dependencies, and ephemeral issues make traditional troubleshooting methods time-consuming and often reactive.…

  • The Register: Criminal background checker APCS faces data breach

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/22/apcs_breach/ Source: The Register Title: Criminal background checker APCS faces data breach Feedly Summary: The attack first affected an upstream provider of bespoke software Exclusive A leading UK provider of criminal record checks for employers is handling a data breach stemming from a third-party development company.… AI Summary and Description: Yes Summary: The…

  • The Register: Fake CAPTCHA tests trick users into running malware

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/22/clickfix_report/ Source: The Register Title: Fake CAPTCHA tests trick users into running malware Feedly Summary: ClickFix tricks Microsoft’s security team has published an in-depth report into ClickFix, the social engineering attack which tricks users into executing malicious commands in the guise of proving their humanity.… AI Summary and Description: Yes Summary: Microsoft’s security…

  • Slashdot: Coinbase Reverses Remote-First Policy After North Korean Infiltration Attempts

    by

    Kurt Seifried
    in

    Source URL: https://slashdot.org/story/25/08/22/1515238/coinbase-reverses-remote-first-policy-after-north-korean-infiltration-attempts?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Coinbase Reverses Remote-First Policy After North Korean Infiltration Attempts Feedly Summary: AI Summary and Description: Yes Summary: The text highlights the increasing security vulnerabilities associated with remote work policies, particularly in sensitive roles within cryptocurrency firms. It emphasizes the proactive measures taken by Coinbase to mitigate these risks, including…