Experimental News Clipping Site

Tag: web

  • The Register: Japanese Police claim China ran five-year cyberattack campaign

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/09/japan_mirrorface_china_attack/ Source: The Register Title: Japanese Police claim China ran five-year cyberattack campaign Feedly Summary: ‘MirrorFace’ group found ways to run malware in the Windows sandbox, which is worrying Japan’s National Police Agency and Center of Incident Readiness and Strategy for Cybersecurity have confirmed third party reports of attacks on local orgs by…

  • Hacker News: SOTA on swebench-verified: relearning the bitter lesson

    by

    Kurt Seifried
    in

    Source URL: https://aide.dev/blog/sota-bitter-lesson Source: Hacker News Title: SOTA on swebench-verified: relearning the bitter lesson Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses advancements in AI, particularly around leveraging large language models (LLMs) for software engineering challenges through novel approaches such as test-time inference scaling. It emphasizes the key insight that scaling…

  • The Register: Mitel 0-day, 5-year-old Oracle RCE bugs under active exploit

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/08/mitel_0_day_oracle_rce_under_exploit/ Source: The Register Title: Mitel 0-day, 5-year-old Oracle RCE bugs under active exploit Feedly Summary: 3 CVEs added to CISA’s catalog Cybercriminals are actively exploiting two vulnerabilities in Mitel MiCollab, including a zero-day flaw, alongside a critical remote code execution vulnerability in Oracle WebLogic Server that has been exploited for at least…

  • Simon Willison’s Weblog: microsoft/phi-4

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Jan/8/phi-4/ Source: Simon Willison’s Weblog Title: microsoft/phi-4 Feedly Summary: microsoft/phi-4 Here’s the official release of Microsoft’s Phi-4 LLM, now officially under an MIT license. A few weeks ago I covered the earlier unofficial versions, where I talked about how the model used synthetic training data in some really interesting ways. It benchmarks favorably…

  • Hacker News: We Cracked a 512-Bit DKIM Key for Less Than $8 in the Cloud

    by

    Kurt Seifried
    in

    Source URL: https://dmarcchecker.app/articles/crack-512-bit-dkim-rsa-key Source: Hacker News Title: We Cracked a 512-Bit DKIM Key for Less Than $8 in the Cloud Feedly Summary: Comments AI Summary and Description: Yes Summary: The article discusses a successful attempt to crack a 512-bit DKIM key using cloud computing resources, highlighting vulnerabilities in current email security practices. It underscores the…

  • Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog

    by

    Kurt Seifried
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2025/01/07/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-41713 Mitel MiCollab Path Traversal Vulnerability CVE-2024-55550 Mitel MiCollab Path Traversal Vulnerability CVE-2020-2883 Oracle WebLogic Server Unspecified Vulnerability Users and administrators are also encouraged to…

  • AWS News Blog: Announcing the new AWS Asia Pacific (Thailand) Region

    by

    Kurt Seifried
    in

    Source URL: https://aws.amazon.com/blogs/aws/announcing-the-new-aws-asia-pacific-thailand-region/ Source: AWS News Blog Title: Announcing the new AWS Asia Pacific (Thailand) Region Feedly Summary: AWS launches Asia Pacific (Thailand) Region with 3 Availability Zones, accelerating cloud adoption. Strategically located to meet data residency needs, it drives innovation across industries. Early AWS adopters in Thailand share transformative success stories. Get started now!…

  • Hacker News: How is my Browser blocking RWX execution?

    by

    Kurt Seifried
    in

    Source URL: https://rwxstoned.github.io/2025-01-04-Reviewing-browser-hooks/ Source: Hacker News Title: How is my Browser blocking RWX execution? Feedly Summary: Comments AI Summary and Description: Yes Summary: The text describes a novel security feature implemented in a popular browser that functions similarly to an Endpoint Detection and Response (EDR) system. By monitoring thread creation at runtime, the browser can…

  • Hacker News: PostgreSQL Support for Certificate Transparency Logs Now Available

    by

    Kurt Seifried
    in

    Source URL: https://blog.transparency.dev/postgresql-support-for-certificate-transparency-logs-released Source: Hacker News Title: PostgreSQL Support for Certificate Transparency Logs Now Available Feedly Summary: Comments AI Summary and Description: Yes Summary: The recent integration of PostgreSQL as a storage backend for the Trillian certificate transparency ecosystem enhances data integrity and reliability for log operators. This shift, motivated by previous log failures, allows…