190 matches found
Thou Shall Not Pass: Gatekeeping Outbound TLS Connections
Despite the widespread use of Transport Layer Security TLS, its security guarantees are frequently compromised by outdated versions and misconfigurations. To analyze this problem, we collected more than 50 million TLS handshakes over a two-week period at our research institution, Fondazione Bruno...
Web-Based-Honeypot-for-Intrusion-Detection
Web-Based-Honeypot-for-Intrusion-Detection A Web-Based Honeypo...
TwinGate: Stateful Defense against Decompositional Jailbreaks in Untraceable Traffic Via Asymmetric Contrastive Learning
Decompositional jailbreaks pose a critical threat to large language models LLMs by allowing adversaries to fragment a malicious objective into a sequence of individually benign queries that collectively reconstruct prohibited content. In real-world deployments, LLMs face a continuous, untraceable...
EUVD-2026-10117
Checkmate is an open-source, self-hosted tool designed to track and monitor server hardware, uptime, response times, and incidents in real-time with beautiful visualizations. Prior to version 3.4.0, an unauthenticated information disclosure vulnerability exists in the GET /api/v1/status-page/:url...
Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code
Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code VS Code extensions that are advertised as artificial intelligence AI-powered coding assistants, but also harbor covert functionality to siphon developer data to China-based servers. The extensions, which have 1.5...
Cyberscurity Threats and Defense Mechanisms in IoT Network
The rapid proliferation of Internet of Things IoT technologies, projected to exceed 30 billion interconnected devices by 2030, has significantly escalated the complexity of cybersecurity challenges. This survey aims to provide a comprehensive analysis of vulnerabilities, threats, and defense...
Desktop Alert PingAlert Cross-Site Scripting Vulnerability
Desktop Alert PingAlert is a network status monitoring tool developed by Desktop Alert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from a cross-site scripting vulnerability for which no detailed vulnerability...
adaptivewaf
Adaptive Web Application Firewall WAF - v1 Rule-Based A hob...
cybersec-ids
cybersec-ids Full-stack AI-driven Web App Intrusion Detection...
EUVD-2014-0763
Malware in sbrugna...
EUVD-2014-7857
Malware in sbrugna...
EUVD-2014-3305
Malware in sbrugna...
EUVD-2023-56109
Malicious code in bioql PyPI...
EUVD-2024-39571
Malicious code in bioql PyPI...
EUVD-2023-56110
Malicious code in bioql PyPI...
EUVD-2023-56108
Malicious code in bioql PyPI...
EUVD-2023-56361
Malicious code in bioql PyPI...
iframe Security Exposed: The Blind Spot Fueling Payment Skimmer Attacks
Think payment iframes are secure by design? Think again. Sophisticated attackers have quietly evolved malicious overlay techniques to exploit checkout pages and steal credit card data by bypassing the very security policies designed to stop them. Download the complete iframe security guide here...
Automated Energy Billing with Blockchain and the Prophet Forecasting Model: a Holistic Approach
This paper presents a comprehensive approach to automated energy billing that leverages IoT-based smart meters, blockchain technology, and the Prophet time series forecasting model. The proposed system facilitates real-time power consumption monitoring via Wi-Fi-enabled ESP32 modules and a mobile...
Adversarial Threat Vectors and Risk Mitigation for Retrieval-Augmented Generation Systems
Retrieval-Augmented Generation RAG systems, which integrate Large Language Models LLMs with external knowledge sources, are vulnerable to a range of adversarial attack vectors. This paper examines the importance of RAG systems through recent industry adoption trends and identifies the prominent...