Experimental News Clipping Site

Tag: update

  • NCSC Feed: Cyber Assessment Framework v4.0 released in response to growing threat

    by

    Kurt Seifried
    in

    Source URL: https://www.ncsc.gov.uk/blog-post/caf-v4-0-released-in-respeonse-to-growing-threat Source: NCSC Feed Title: Cyber Assessment Framework v4.0 released in response to growing threat Feedly Summary: Updates to the CAF helps providers of essential services to better manage their cyber risks. AI Summary and Description: Yes Summary: The provided text addresses updates to the Cyber Assurance Framework (CAF), which is crucial for…

  • Simon Willison’s Weblog: OpenAI’s new open weight (Apache 2) models are really good

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/5/gpt-oss/ Source: Simon Willison’s Weblog Title: OpenAI’s new open weight (Apache 2) models are really good Feedly Summary: The long promised OpenAI open weight models are here, and they are very impressive. They’re available under proper open source licenses – Apache 2.0 – and come in two sizes, 120B and 20B. OpenAI’s own…

  • Simon Willison’s Weblog: Claude Opus 4.1

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/5/claude-opus-41/ Source: Simon Willison’s Weblog Title: Claude Opus 4.1 Feedly Summary: Claude Opus 4.1 Surprise new model from Anthropic today – Claude Opus 4.1, which they describe as “a drop-in replacement for Opus 4". My favorite thing about this model is the version number – treating this as a .1 version increment looks…

  • Cloud Blog: Announcements for AI Hypercomputer: The latest infrastructure news for ML practitioners

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/ai-machine-learning/q2-2025-ai-hypercomputer-updates/ Source: Cloud Blog Title: Announcements for AI Hypercomputer: The latest infrastructure news for ML practitioners Feedly Summary: Curious about the latest in AI infrastructure from Google Cloud? Every three months we share a roundup of the latest AI Hypercomputer news, resources, events, learning opportunities, and more. Read on to learn new ways…

  • Embrace The Red: Amp Code: Arbitrary Command Execution via Prompt Injection Fixed

    by

    Kurt Seifried
    in

    Source URL: https://embracethered.com/blog/posts/2025/amp-agents-that-modify-system-configuration-and-escape/ Source: Embrace The Red Title: Amp Code: Arbitrary Command Execution via Prompt Injection Fixed Feedly Summary: Sandbox-escape-style attacks can happen when an AI is able to modify its own configuration settings, such as by writing to configuration files. That was the case with Amp, an agentic coding tool built by Sourcegraph. The…

  • Cisco Talos Blog: ReVault! When your SoC turns against you…

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/revault-when-your-soc-turns-against-you/ Source: Cisco Talos Blog Title: ReVault! When your SoC turns against you… Feedly Summary: Talos reported 5 vulnerabilities to Broadcom and Dell affecting both the ControlVault3 Firmware and its associated Windows APIs that we are calling “ReVault”.  AI Summary and Description: Yes **Summary:** The report details significant vulnerabilities discovered in Dell’s ControlVault3…

  • Simon Willison’s Weblog: ChatGPT agent’s user-agent

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/4/chatgpt-agents-user-agent/#atom-everything Source: Simon Willison’s Weblog Title: ChatGPT agent’s user-agent Feedly Summary: I was exploring how ChatGPT agent works today. I learned some interesting things about how it exposes its identity through HTTP headers, then made a huge blunder in thinking it was leaking its URLs to Bingbot and Yandex… but it turned out…

  • Slashdot: CrowdStrike Investigated 320 North Korean IT Worker Cases In the Past Year

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/08/04/2032214/crowdstrike-investigated-320-north-korean-it-worker-cases-in-the-past-year Source: Slashdot Title: CrowdStrike Investigated 320 North Korean IT Worker Cases In the Past Year Feedly Summary: AI Summary and Description: Yes Summary: The report highlights a significant rise in North Korean operatives using generative AI to infiltrate tech jobs globally, particularly within Fortune 500 and smaller organizations. CrowdStrike’s observations underline a…

  • The Register: SonicWall investigates ‘cyber incidents,’ including ransomware targeting suspected 0-day

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/08/04/sonicwall_investigates_cyber_incidents/ Source: The Register Title: SonicWall investigates ‘cyber incidents,’ including ransomware targeting suspected 0-day Feedly Summary: Bypassing MFA and deploying ransomware…sounds like something that rhymes with ‘schmero-day’ SonicWall on Monday confirmed that it’s investigating a rash of ransomware activity targeting its firewall devices, following multiple reports of a zero-day bug under active exploit…