Experimental News Clipping Site

Tag: threats

  • Slashdot: $1M Stolen in ‘Industrial-Scale Crypto Theft’ Using AI-Generated Code

    by

    Kurt Seifried
    in

    Source URL: https://yro.slashdot.org/story/25/08/11/0037258/1m-stolen-in-industrial-scale-crypto-theft-using-ai-generated-code?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: $1M Stolen in ‘Industrial-Scale Crypto Theft’ Using AI-Generated Code Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a sophisticated cybercrime operation, GreedyBear, which utilizes a highly coordinated strategy, weaponizing browser extensions and phishing sites to facilitate industrial-scale crypto theft. The group’s innovative techniques, including the modification…

  • The Register: Trend Micro offers weak workaround for already-exploited critical vuln in management console

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/10/infosec_in_brief/ Source: The Register Title: Trend Micro offers weak workaround for already-exploited critical vuln in management console Feedly Summary: PLUS: Crypto mixer founders plead guilty; Another French telco hacked; Meta fights WhatsApp scams; And more! Infosec In Brief A critical vulnerability in the on-prem version of Trend Micro’s Apex One endpoint security platform…

  • Slashdot: Google Says Its AI-Based Bug Hunter Found 20 Security Vulnerabilities

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/08/09/1947230/google-says-its-ai-based-bug-hunter-found-20-security-vulnerabilities Source: Slashdot Title: Google Says Its AI-Based Bug Hunter Found 20 Security Vulnerabilities Feedly Summary: AI Summary and Description: Yes Summary: Google’s Big Sleep, an LLM-based vulnerability researcher, reported 20 vulnerabilities in popular open-source software, marking a significant advancement in automated vulnerability discovery. This highlights the increasing efficacy of AI tools in…

  • Simon Willison’s Weblog: When a Jira Ticket Can Steal Your Secrets

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/9/when-a-jira-ticket-can-steal-your-secrets/ Source: Simon Willison’s Weblog Title: When a Jira Ticket Can Steal Your Secrets Feedly Summary: When a Jira Ticket Can Steal Your Secrets Zenity Labs describe a classic lethal trifecta attack, this time against Cursor, MCP, Jira and Zendesk. They also have a short video demonstrating the issue. Zendesk support emails are…

  • Slashdot: AI Industry Horrified To Face Largest Copyright Class Action Ever Certified

    by

    Kurt Seifried
    in

    Source URL: https://yro.slashdot.org/story/25/08/08/2040214/ai-industry-horrified-to-face-largest-copyright-class-action-ever-certified?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: AI Industry Horrified To Face Largest Copyright Class Action Ever Certified Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses the potential repercussions of a major copyright class action lawsuit against Anthropic, which could significantly impact the entire AI industry. Claims from industry groups suggest that if…

  • Microsoft Security Blog: Announcing public preview: Phishing triage agent in Microsoft Defender

    by

    Kurt Seifried
    in

    Source URL: https://techcommunity.microsoft.com/blog/microsoftthreatprotectionblog/announcing-public-preview-phishing-triage-agent-in-microsoft-defender/4438301 Source: Microsoft Security Blog Title: Announcing public preview: Phishing triage agent in Microsoft Defender Feedly Summary: The Phishing Triage Agent in Microsoft Defender is now available in Public Preview. It tackles one of the most repetitive tasks in the SOC: handling reports of user-submitted phish. The post Announcing public preview: Phishing triage…

  • The Register: CISA releases malware analysis for Sharepoint Server attack

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/07/cisa_releases_malware_analysis/ Source: The Register Title: CISA releases malware analysis for Sharepoint Server attack Feedly Summary: Indications of compromise and Sigma rules report for your security scanners amid ongoing ‘ToolShell’ blitz CISA has published a malware analysis report with compromise indicators and Sigma rules for “ToolShell" attacks targeting specific Microsoft SharePoint Server versions.… AI…

  • Cisco Security Blog: Improving Cloud-VPN Resiliency to DoS Attacks With IKE Throttling

    by

    Kurt Seifried
    in

    Source URL: https://blogs.cisco.com/security/improving-cloud-vpn-resiliency-to-dos-attacks-with-ike-throttling Source: Cisco Security Blog Title: Improving Cloud-VPN Resiliency to DoS Attacks With IKE Throttling Feedly Summary: Explore a network-layer throttling mechanism to improve the resiliency of Cloud VPNs IKE servers, which are typically subject to IKE flood attacks. AI Summary and Description: Yes Summary: The text addresses a network-layer throttling mechanism aimed…

  • Slashdot: Citizen Lab Director Warns Cyber Industry About US Authoritarian Descent

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/08/06/228248/citizen-lab-director-warns-cyber-industry-about-us-authoritarian-descent?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Citizen Lab Director Warns Cyber Industry About US Authoritarian Descent Feedly Summary: AI Summary and Description: Yes Summary: The text concerns Ron Deibert, director of Citizen Lab, who is alerting the cybersecurity community to the increasing fusion of technology and authoritarianism, emphasizing the role of Big Tech in this…