AI Code Hallucinations Increase the Risk of ‘Package Confusion’ Attacks

/in

A new study found that code generated by AI is more likely to contain made-up information that can be used to trick software into interacting with malicious code.

Security Latest – ​Read More

From TV5Monde to Govt: France Blames Russia’s APT28 for Cyberattacks

/in

France accuses Russia’s APT28 hacking group (Fancy Bear) of targeting French government entities in a cyber espionage campaign.…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Sick of AI slop on Pinterest? These two new features should help bring back real pins

/in

Pinterest has a plan to fix its AI mess.

Latest stories for ZDNET in Security – ​Read More

Apple notifies new victims of spyware attacks across the world

/in

Two alleged victims came forward claiming they received a spyware notification from Apple.

Security News | TechCrunch – ​Read More

US arrests two alleged leaders of online extremist 764 group

/in

An affidavit unsealed in Washington, D.C., alleges that the two “targeted vulnerable children online, coercing them into producing degrading and explicit content under threat and manipulation.”

The Record from Recorded Future News – ​Read More

Researchers Demonstrate How MCP Prompt Injection Can Be Used for Both Attack and Defense

/in

As the field of artificial intelligence (AI) continues to evolve at a rapid pace, new research has found how techniques that render the Model Context Protocol (MCP) susceptible to prompt injection attacks could be used to develop security tooling or identify malicious tools, according to a new report from Tenable.
MCP, launched by Anthropic in November 2024, is a framework designed to connect

The Hacker News – ​Read More

Tech Giants Propose Standard For End-of-Life Security Disclosures

/in

The OpenEoX model proposes a shared data format that can be integrated into SBOMs, security advisories, and other ecosystem tools. 

The post Tech Giants Propose Standard For End-of-Life Security Disclosures appeared first on SecurityWeek.

SecurityWeek – ​Read More

Phishers Take Advantage of Iberian Blackout Before It’s Even Over

/in

Opportunistic threat actors targeted Portuguese and Spanish speakers by spoofing Portugal’s national airline in a campaign offering compensation for delayed or disrupted flights.

darkreading – ​Read More

Sneaky WordPress Malware Disguised as Anti-Malware Plugin

/in

WordPress sites are under threat from a deceptive anti-malware plugin. Learn how this malware grants backdoor access, hides…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

GPT-4o update gets recalled by OpenAI for being too agreeable

/in

Users complained GPT-4o was too ‘sycophantic.’ Here’s why and what happens now.

Latest stories for ZDNET in Security – ​Read More