Lucene search
K

135 matches found

Packet Storm News
Packet Storm News
added 2026/06/08 12:0 a.m.5 views

Unveiling Privacy Risks in Multi-Modal Large Language Models: Task-Specific Vulnerabilities and Mitigation Challenges

Privacy risks in text-only Large Language Models LLMs are well studied, particularly their tendency to memorize and leak sensitive information. However, Multi-modal Large Language Models MLLMs, which process both text and images, introduce unique privacy challenges that remain underexplored...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/04 12:0 a.m.25 views

Credential Disclosure in (EU) Digital Identity Wallets: Privacy Risks and Practical Mitigations

The European Union will introduce the EUDI Wallet by late 2026, which allows users to hold digital credentials i.e., representations of physical official identity documents on their devices. This will allow users to securely and privately disclose identity attributes to websites. Although such a...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/22 12:0 a.m.15 views

Security, Privacy, and Ethical Risks in OpenClaw

This paper systematically investigates the security, privacy, and ethical risks, as well as the traceability challenges of OpenClaw, a locally executable AI agent system for natural language interaction and real-world task completion. While OpenClaw shows strong potential for personal assistance,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/06 12:0 a.m.2 views

Digital Privacy in IoT: Exploring Challenges, Approaches and Open Issues

Privacy has always been a critical issue in the digital era, particularly with the increasing use of Internet of Things IoT devices. As the IoT continues to transform industries such as healthcare, smart cities, and home automation, it has also introduced serious challenges regarding the security...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/01 12:0 a.m.7 views

"The System Will Choose Security over Humanity Every Time": Understanding Security and Privacy for U.S. Incarcerated Users

Digital devices like tablets, media players, and kiosks are increasingly deployed in U.S. prisons. These technologies can enable incarcerated people to access education, communicate with loved ones, and develop vital reentry skills. However, they can also introduce new privacy and security risks...

6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/03/18 11:7 a.m.4 views

Meta’s AI Glasses and Privacy

Surprising no one, Meta's new AI glasses are a privacy disaster. I'm not sure what can be done here. This is a technology that will exist, whether we like it or not. Meanwhile, there is a new Android app that detects when there are smart glasses nearby...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/23 12:0 a.m.9 views

Agents of Chaos

We report an exploratory red-teaming study of autonomous language-model-powered agents deployed in a live laboratory environment with persistent memory, email accounts, Discord access, file systems, and shell execution. Over a two-week period, twenty AI researchers interacted with the agents unde...

6.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/14 12:0 a.m.13 views

Private Links, Public Leaks: Consequences of Frictionless User Experience on the Security and Privacy Posture of SMS-Delivered URLs

Digital service providers often prioritize a frictionless user experience by adopting technologies that simplify access to their services. One widely used mechanism is the Short Message Service SMS to deliver links URLs that enable single-click access to online services with little to no...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/17 12:0 a.m.8 views

PT-2025-51874

Name of the Vulnerable Software and Affected Versions AVideo versions prior to 20.1 Description AVideo versions prior to 20.1 have an issue where sensitive user information is exposed through an unauthenticated public API endpoint. The responses from this endpoint include emails, usernames,...

7.5CVSS6.4AI score0.00731EPSS
Exploits2References7
Packet Storm News
Packet Storm News
added 2025/12/08 12:0 a.m.6 views

Privacy Practices of Browser Agents

This paper presents a systematic evaluation of the privacy behaviors and attributes of eight recent, popular browser agents. Browser agents are software that automate Web browsing using large language models and ancillary tooling. However, the automated capabilities that make browser agents...

6.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/10 12:0 a.m.8 views

Singling out People without Knowing Their Names - Behavioural Targeting, Pseudonymous Data, and the New Data Protection Regulation

Information about millions of people is collected for behavioural targeting, a type of marketing that involves tracking people's online behaviour for targeted advertising. It is hotly debated whether data protection law applies to behavioural targeting. Many behavioural targeting companies say...

6.7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.22 views

EUVD-2019-11013

Malware in sbrugna...

9.8CVSS9.2AI score0.02295EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/10/07 12:0 a.m.6 views

"Your Doctor Is Spying on You": An Analysis of Data Practices in Mobile Healthcare Applications

Mobile healthcare mHealth applications promise convenient, continuous patient-provider interaction but also introduce severe and often underexamined security and privacy risks. We present an end-to-end audit of 272 Android mHealth apps from Google Play, combining permission forensics, static...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6707

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00171EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-2842

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00538EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13284

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00137EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-28267

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.0169EPSS
Exploits4References5
Packet Storm News
Packet Storm News
added 2025/09/27 12:0 a.m.8 views

Noisy Networks, Nosy Neighbors: Inferring Privacy Invasive Information from Encrypted Wireless Traffic

This thesis explores the extent to which passive observation of wireless traffic in a smart home environment can be used to infer privacy-invasive information about its inhabitants. Using a setup that mimics the capabilities of a nosy neighbor in an adjacent flat, we analyze raw 802.11 packets an...

6.7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/09/26 11:4 a.m.6 views

Digital Threat Modeling Under Authoritarianism

Today's world requires us to make complex and nuanced decisions about our digital security. Evaluating when to use a secure messaging app like Signal or WhatsApp, which passwords to store on your smartphone, or what to share on social media requires us to assess risks and make judgments...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/09/24 12:0 a.m.4 views

RAG Security and Privacy: Formalizing the Threat Model and Attack Surface

Retrieval-Augmented Generation RAG is an emerging approach in natural language processing that combines large language models LLMs with external document retrieval to produce more accurate and grounded responses. While RAG has shown strong potential in reducing hallucinations and improving factua...

6.8AI score
Exploits0
Rows per page
Query Builder