Lucene search
+L

71 matches found

The Hacker News
The Hacker News
added 2026/01/07 11:0 a.m.10 views

The Future of Cybersecurity Includes Non-Human Employees

Non-human employees are becoming the future of cybersecurity, and enterprises need to prepare accordingly. As organizations scale Artificial Intelligence AI and cloud automation, there is exponential growth in Non-Human Identities NHIs, including bots, AI agents, service accounts and automation...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/14 12:0 a.m.5 views

SoK: Security Evaluation of Wi-Fi CSI Biometrics: Attacks, Metrics, and Systemic Weaknesses

Wi-Fi Channel State Information CSI has been repeatedly proposed as a biometric modality, often with reports of high accuracy and operational feasibility. However, the field lacks a consolidated understanding of its security properties, adversarial resilience, and methodological consistency. This...

7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2017-15563

Malware in sbrugna...

5.9CVSS6AI score0.01589EPSS
Exploits0References8
Securelist
Securelist
added 2025/08/22 9:0 a.m.6 views

Modern vehicle cybersecurity trends

Modern vehicles are transforming into full-fledged digital devices that offer a multitude of features, from common smartphone-like conveniences to complex intelligent systems and services designed to keep everyone on the road safe. However, this digitalization, while aimed at improving comfort an...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/08/17 12:0 a.m.5 views

MCPSecBench: a Systematic Security Benchmark and Playground for Testing Model Context Protocols

Large Language Models LLMs are increasingly integrated into real-world applications via the Model Context Protocol MCP, a universal, open standard for connecting AI agents with data sources and external tools. While MCP enhances the capabilities of LLM-based agents, it also introduces new securit...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/20 12:0 a.m.7 views

From Assistants to Adversaries: Exploring the Security Risks of Mobile LLM Agents

The growing adoption of large language models LLMs has led to a new paradigm in mobile computing--LLM-powered mobile AI agents--capable of decomposing and automating complex tasks directly on smartphones. However, the security implications of these agents remain largely unexplored. In this paper,...

7.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/02 12:0 a.m.6 views

Fine-Grained Manipulation Attacks to Local Differential Privacy Protocols for Data Streams

Local Differential Privacy LDP enables massive data collection and analysis while protecting end users' privacy against untrusted aggregators. It has been applied to various data types e.g., categorical, numerical, and graph data and application settings e.g., static and streaming. Recent finding...

7.2AI score
Exploits0
Talos Blog
Talos Blog
added 2024/07/11 6:0 p.m.20 views

Checking in on the state of cybersecurity and the Olympics

With the 2024 Olympics Opening Ceremony only two weeks away now, there is one thing thats an absolute guarantee of one thing happening during the traditionally unpredictable games: Cyber attacks. Every time there is a new Olympic Games, theres a renewed discussion about how threat actors,...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/06/20 3:43 p.m.15 views

GenAI risks to be aware of — and prepare for — according to Gartner®

The deployment of GenAI, LLMs, and chat interfaces expands potential attack surfaces and poses increased security threats...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/03/05 10:55 a.m.39 views

What is Exposure Management and How Does it Differ from ASM?

Startups and scales-ups are often cloud-first organizations and rarely have sprawling legacy on-prem environments. Likewise, knowing the agility and flexibility that cloud environments provide, the mid-market is predominantly running in a hybrid state, partly in the cloud but with some on-prem...

7.5AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2024/01/17 5:0 p.m.22 views

New TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgs

Since November 2023, Microsoft has observed a distinct subset of Mint Sandstorm PHOSPHORUS targeting high-profile individuals working on Middle Eastern affairs at universities and research organizations in Belgium, France, Gaza, Israel, the United Kingdom, and the United States. In this campaign,...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/12/13 1:15 p.m.29 views

Google Using Clang Sanitizers to Protect Android Against Cellular Baseband Vulnerabilities

Google is highlighting the role played by Clang sanitizers in hardening the security of the cellular baseband in the Android operating system and preventing specific kinds of vulnerabilities. This comprises Integer Overflow Sanitizer IntSan and BoundsSanitizer BoundSan, both of which are part of...

8.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/31 12:46 p.m.42 views

You Don't Know Where Your Secrets Are

Do you know where your secrets are? If not, I can tell you: you are not alone. Hundreds of CISOs, CSOs, and security leaders, whether from small or large companies, don't know either. No matter the organization's size, the certifications, tools, people, and processes: secrets are not visible in 9...

7AI score
Exploits0
CNNVD
CNNVD
added 2023/01/22 12:0 a.m.5 views

pyload 安全漏洞

pyload is a free and open source download manager written in Python, designed to be extremely lightweight, easily extensible and fully manageable over the Web. A security vulnerability exists in versions prior to pyload/pyload 0.5.0b3.dev41, which stems from the presence of too many attack surfac...

9.8CVSS5.6AI score0.0072EPSS
Exploits1References3
Rapid7 Blog
Rapid7 Blog
added 2022/07/25 5:54 p.m.19 views

ISO 27002 Emphasizes Need For Threat Intelligence

With employees reluctant to return to the office following the COVID-19 pandemic, the concept of a well-defined network perimeter has become a thing of the past for many organizations. Attack surfaces continue to expand, and as a result, threat intelligence has taken on even greater importance...

Exploits0
The Hacker News
The Hacker News
added 2022/07/18 4:33 p.m.36 views

New Study Finds Most Enterprise Vendors Failing to Mitigate Speculative Execution Attacks

With speculative execution attacks remaining a stubbornly persistent vulnerability ailing modern processors, new research has highlighted an "industry failure" to adopt mitigations released by AMD and Intel, posing a firmware supply chain threat. Dubbed FirmwareBleed by Binarly, the information...

0.1AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/07/06 5:56 a.m.13 views

EFB Tampering. Holdover Time

TL;DR Holdover applications are a relatively new method of calculating the effectiveness of anti-icing fluid sprayed onto aircraft wings. Applications such as these have additional attack surfaces as the developer and source databases need to be considered Airlines often view limits as targets to...

Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/06/28 12:0 a.m.8 views

Why It’s Time to Map the Digital Attack Surface

Trend Micro research reveals struggle to control cyber risks against mounting digital attack surfaces...

2AI score
Exploits0
Code423n4
Code423n4
added 2022/05/05 12:0 a.m.17 views

The ownership context is too centralized leaving room for other attack surfaces

Lines of code Vulnerability details Impact The ownership context is too centralized leaving room for other attack surfaces and leaving impression of distrust for the participants. Proof of Concept Almost all of the functions have onlyOwner modifier which allows accessing all the vital points of t...

7.1AI score
Exploits0
MSRC
MSRC
added 2022/03/22 5:24 p.m.33 views

Exploring a New Class of Kernel Exploit Primitive

The security landscape is dynamic, changing often and as a result, attack surfaces evolve. MSRC receives a wide variety of cases spanning different products, bug types and exploit primitives. One particularly interesting primitive we see is an arbitrary kernel pointer read. These often happen whe...

1.3AI score
Exploits0
Rows per page
Query Builder