Tag: vetting processes
-
The Register: Compromised Amazon Q extension told AI to delete everything – and it shipped
Source URL: https://www.theregister.com/2025/07/24/amazon_q_ai_prompt/ Source: The Register Title: Compromised Amazon Q extension told AI to delete everything – and it shipped Feedly Summary: Malicious actor reportedly sought to expose AWS ‘security theater’ The official Amazon Q extension for Visual Studio Code (VS Code) was compromised to include a prompt to wipe the user’s home directory and…
-
Microsoft Security Blog: Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations
Source URL: https://www.microsoft.com/en-us/security/blog/2025/06/30/jasper-sleet-north-korean-remote-it-workers-evolving-tactics-to-infiltrate-organizations/ Source: Microsoft Security Blog Title: Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations Feedly Summary: Since 2024, Microsoft Threat Intelligence has observed remote IT workers deployed by North Korea leveraging AI to improve the scale and sophistication of their operations, steal data, and generate revenue for the North…
-
The Register: Crims defeat human intelligence with fake AI installers they poison with ransomware
Source URL: https://www.theregister.com/2025/05/30/fake_ai_installers_carry_ransomware/ Source: The Register Title: Crims defeat human intelligence with fake AI installers they poison with ransomware Feedly Summary: Take care when downloading AI freebies, researcher tells The Register Criminals are using installers for fake AI software to distribute ransomware and other destructive malware.… AI Summary and Description: Yes Summary: The text warns…
-
Slashdot: DeepMind is Holding Back Release of AI Research To Give Google an Edge
Source URL: https://tech.slashdot.org/story/25/04/01/1648250/deepmind-is-holding-back-release-of-ai-research-to-give-google-an-edge?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: DeepMind is Holding Back Release of AI Research To Give Google an Edge Feedly Summary: AI Summary and Description: Yes Summary: Google DeepMind has altered its publication policy to maintain a competitive advantage in AI research, introducing stringent vetting processes that hinder the release of studies. This shift, aimed…
-
Slashdot: How AI Coding Assistants Could Be Compromised Via Rules File
Source URL: https://developers.slashdot.org/story/25/03/23/2138230/how-ai-coding-assistants-could-be-compromised-via-rules-file?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: How AI Coding Assistants Could Be Compromised Via Rules File Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a significant security vulnerability in AI coding assistants like GitHub Copilot and Cursor, highlighting how malicious rule configuration files can be used to inject backdoors and vulnerabilities in…
-
The Register: Apple missed screenshot-snooping malware in code that made it into the App Store, Kaspersky claims
Source URL: https://www.theregister.com/2025/02/07/infected_apps_google_apple_stores/ Source: The Register Title: Apple missed screenshot-snooping malware in code that made it into the App Store, Kaspersky claims Feedly Summary: OCR plugin great for extracting crypto-wallet secrets from galleries Kaspersky eggheads say they’ve spotted the first app containing hidden optical character recognition spyware in Apple’s App Store. Cunningly, the software nasty…