Experimental News Clipping Site

Tag: tool

  • Embrace The Red: Windsurf: Memory-Persistent Data Exfiltration (SpAIware Exploit)

    by

    Kurt Seifried
    in

    Source URL: https://embracethered.com/blog/posts/2025/windsurf-spaiware-exploit-persistent-prompt-injection/ Source: Embrace The Red Title: Windsurf: Memory-Persistent Data Exfiltration (SpAIware Exploit) Feedly Summary: In this second post about Windsurf Cascade we are exploring the SpAIware attack, which allows memory persistent data exfiltration. SpAIware is an attack we first successfully demonstrated with ChatGPT last year and OpenAI mitigated. While inspecting the system prompt…

  • Simon Willison’s Weblog: ChatGPT release notes: Project-only memory

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/22/project-memory/#atom-everything Source: Simon Willison’s Weblog Title: ChatGPT release notes: Project-only memory Feedly Summary: ChatGPT release notes: Project-only memory The feature I’ve most wanted from ChatGPT’s memory feature (the newer version of memory that automatically includes relevant details from summarized prior conversations) just landed: With project-only memory enabled, ChatGPT can use other conversations in that project…

  • Simon Willison’s Weblog: too many model context protocol servers and LLM allocations on the dance floor

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/22/too-many-mcps/#atom-everything Source: Simon Willison’s Weblog Title: too many model context protocol servers and LLM allocations on the dance floor Feedly Summary: too many model context protocol servers and LLM allocations on the dance floor Useful reminder from Geoffrey Huntley of the infrequently discussed significant token cost of using MCP. Geoffrey estimate estimates that…

  • Cloud Blog: Don’t just speculate, investigate! Gemini Cloud Assist now offers root-cause analysis

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/management-tools/gemini-cloud-assist-investigations-performs-root-cause-analysis/ Source: Cloud Blog Title: Don’t just speculate, investigate! Gemini Cloud Assist now offers root-cause analysis Feedly Summary: Debugging in a complex, distributed cloud environment can feel like searching for a needle in a haystack. The sheer volume of data, intertwined dependencies, and ephemeral issues make traditional troubleshooting methods time-consuming and often reactive.…

  • The Cloudflare Blog: How a volunteer-run wildfire site in Portugal stayed online during DDoS attacks

    by

    Kurt Seifried
    in

    Source URL: https://blog.cloudflare.com/wildfire-fogos-pt-portugal-ddos-attack/ Source: The Cloudflare Blog Title: How a volunteer-run wildfire site in Portugal stayed online during DDoS attacks Feedly Summary: Fogos.pt, a volunteer-run wildfire tracker in Portugal, grew from a side project into a critical national resource used by citizens, media, and government. During 2025 fire season it was hit by DDoS AI…

  • The Register: Honey, I shrunk the image and now I’m pwned

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/21/google_gemini_image_scaling_attack/ Source: The Register Title: Honey, I shrunk the image and now I’m pwned Feedly Summary: Google’s Gemini-powered tools tripped up by image-scaling prompt injection Security researchers with Trail of Bits have found that Google Gemini CLI and other production AI systems can be deceived by image scaling attacks, a well-known adversarial challenge…

  • Docker: Prototyping an AI Tutor with Docker Model Runner

    by

    Kurt Seifried
    in

    Source URL: https://www.docker.com/blog/how-to-build-an-ai-tutor-with-model-runner/ Source: Docker Title: Prototyping an AI Tutor with Docker Model Runner Feedly Summary: Every developer remembers their first docker run hello-world. The mix of excitement and wonder as that simple command pulls an image, creates a container, and displays a friendly message. But what if AI could make that experience even better?…

  • Microsoft Security Blog: Think before you Click(Fix): Analyzing the ClickFix social engineering technique

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/08/21/think-before-you-clickfix-analyzing-the-clickfix-social-engineering-technique/ Source: Microsoft Security Blog Title: Think before you Click(Fix): Analyzing the ClickFix social engineering technique Feedly Summary: The ClickFix social engineering technique has been growing in popularity, with campaigns targeting thousands of enterprise and end-user devices daily. This technique exploits users’ tendency to resolve technical issues by tricking them into running malicious…

  • Cloud Blog: How startups can help build — and benefit from — the AI revolution

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/ai-machine-learning/industry-leaders-on-whats-next-for-startups-and-ai/ Source: Cloud Blog Title: How startups can help build — and benefit from — the AI revolution Feedly Summary: Startups are at the forefront of generative AI development, pushing current capabilities and unlocking new potential. Building on our Future of AI: Perspectives for Startups 2025 report, several of the AI industry leaders…