Tag: Users

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/viewstate-deserialization-zero-day-vulnerability/ Source: Cloud Blog Title: ViewState Deserialization Zero-Day Vulnerability in Sitecore Products (CVE-2025-53690) Feedly Summary: Written by: Rommel Joven, Josh Fleischer, Joseph Sciuto, Andi Slok, Choon Kiat Ng In a recent investigation, Mandiant Threat Defense discovered an active ViewState deserialization attack affecting Sitecore deployments leveraging sample machine keys that had been exposed in…

Schneier on Security: Indirect Prompt Injection Attacks Against LLM Assistants

Sep 3, 2025

—

by

Source URL: https://www.schneier.com/blog/archives/2025/09/indirect-prompt-injection-attacks-against-llm-assistants.html Source: Schneier on Security Title: Indirect Prompt Injection Attacks Against LLM Assistants Feedly Summary: Really good research on practical attacks against LLM agents. “Invitation Is All You Need! Promptware Attacks Against LLM-Powered Assistants in Production Are Practical and Dangerous” Abstract: The growing integration of LLMs into applications has introduced new security risks,…

Unit 42: Model Namespace Reuse: An AI Supply-Chain Attack Exploiting Model Name Trust

Sep 3, 2025

—

by

Source URL: https://unit42.paloaltonetworks.com/model-namespace-reuse/ Source: Unit 42 Title: Model Namespace Reuse: An AI Supply-Chain Attack Exploiting Model Name Trust Feedly Summary: Model namespace reuse is a potential security risk in the AI supply chain. Attackers can misuse platforms like Hugging Face for remote code execution. The post Model Namespace Reuse: An AI Supply-Chain Attack Exploiting Model…

New York Times – Artificial Intelligence : ChatGPT Will Get Parental Controls and New Safety Features, OpenAI Says

—

by

Source URL: https://www.nytimes.com/2025/09/02/technology/personaltech/chatgpt-parental-controls-openai.html Source: New York Times – Artificial Intelligence Title: ChatGPT Will Get Parental Controls and New Safety Features, OpenAI Says Feedly Summary: After a California teenager spent months on ChatGPT discussing plans to end his life, OpenAI said it would introduce parental controls and better responses for users in distress. AI Summary and…

Slashdot: Hackers Threaten To Submit Artists’ Data To AI Models If Art Site Doesn’t Pay Up

—

by

Source URL: https://it.slashdot.org/story/25/09/02/1936245/hackers-threaten-to-submit-artists-data-to-ai-models-if-art-site-doesnt-pay-up?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Hackers Threaten To Submit Artists’ Data To AI Models If Art Site Doesn’t Pay Up Feedly Summary: AI Summary and Description: Yes Summary: The ransomware attack by LunaLock presents a significant threat to data privacy and security, especially with its novel approach of threatening to submit stolen artwork to…

Bulletins: Vulnerability Summary for the Week of August 25, 2025

—

by

Source URL: https://www.cisa.gov/news-events/bulletins/sb25-245 Source: Bulletins Title: Vulnerability Summary for the Week of August 25, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 1000projects–Online Project Report Submission and Evaluation System A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown…

The Register: Stolen OAuth tokens expose Palo Alto customer data

—

by

Source URL: https://www.theregister.com/2025/09/02/stolen_oauth_tokens_expose_palo/ Source: The Register Title: Stolen OAuth tokens expose Palo Alto customer data Feedly Summary: Security firm’s Salesforce instance accessed using credentials stolen from Salesloft’s Drift platform breach Palo Alto Networks is writing to customers that may have had commercially sensitive data exposed after criminals used stolen OAuth credentials lifted from the Salesloft…

OpenAI : Building more helpful ChatGPT experiences for everyone

—

by

Source URL: https://openai.com/index/building-more-helpful-chatgpt-experiences-for-everyone Source: OpenAI Title: Building more helpful ChatGPT experiences for everyone Feedly Summary: We’re partnering with experts, strengthening protections for teens with parental controls, and routing sensitive conversations to reasoning models in ChatGPT. AI Summary and Description: Yes Summary: The text outlines a commitment to enhancing teen safety through parental controls and the…

Krebs on Security: The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft

Sep 1, 2025

—

by