Lucene search
K

25 matches found

Packet Storm News
Packet Storm News
added 2026/05/20 12:0 a.m.8 views

Profiling User Vulnerability to Phishing through Psychological and Behavioral Factors

Phishing remains one of the most pervasive cybersecurity threats, shifting the focus from technological vulnerabilities to human cognitive and psychological factors. In coherence with the trend of studies on phishing to increasingly focus on human aspects and vulnerable users profiling, this stud...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/19 12:0 a.m.7 views

The CTI Echo Chamber: Fragmentation, Overlap, and Vendor Specificity in Twenty Years of Cyber Threat Reporting

Despite the high volume of open-source Cyber Threat Intelligence CTI, our understanding of long-term threat actor-victim dynamics remains fragmented due to the lack of structured datasets and inconsistent reporting standards. In this paper, we present a large-scale automated analysis of open-sour...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/07 12:0 a.m.6 views

Evidence of Cognitive Biases in Capture-The-Flag Cybersecurity Competitions

Understanding how cognitive biases influence adversarial decision-making is essential for developing effective cyber defenses. Capture-the-Flag CTF competitions provide an ecologically valid testbed to study attacker behavior at scale, simulating real-world intrusion scenarios under pressure. We...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/27 12:0 a.m.5 views

Fairness and Bias in Algorithmic Hiring: a Multidisciplinary Survey

Employers are adopting algorithmic hiring technology throughout the recruitment pipeline. Algorithmic fairness is especially applicable in this domain due to its high stakes and structural inequalities. Unfortunately, most work in this space provides partial treatment, often constrained by two...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/26 12:0 a.m.6 views

Phare: a Safety Probe for Large Language Models

Ensuring the safety of large language models LLMs is critical for responsible deployment, yet existing evaluations often prioritize performance over identifying failure modes. We introduce Phare, a multilingual diagnostic framework to probe and evaluate LLM behavior across three critical...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.5 views

OpenUI 跨站脚本漏洞

OpenUI is a UI program open-sourced by Weights & Biases. A cross-site scripting vulnerability exists in OpenUI, which stems from a stored cross-site scripting vulnerability in the Edit HTML function that could lead to the theft of a user's alert history and other sensitive information...

5.4CVSS5.1AI score0.00279EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/04 12:0 a.m.6 views

Weights & Biases Detection

A Weights & Biases Python library is installed on the remote host. Note that Nessus has relied upon on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid208133; scriptversion"1.6";...

5.9AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/05/16 9:33 a.m.36 views

Withdrawn Advisory: Weights and Biases (wandb) has a Server-Side Request Forgery (SSRF) vulnerability

Withdrawn Advisory This advisory has been withdrawn because the underlying issue existed in Weights and Biases's backend server code, not the software development kit included in the wandb PyPI package, as originally reported. This link is maintained to preserve external references. Original...

7.4AI score
Exploits0References4Affected Software1
The Hacker News
The Hacker News
added 2023/11/20 11:2 a.m.34 views

Why Defenders Should Embrace a Hacker Mindset

Today's security leaders must manage a constantly evolving attack surface and a dynamic threat environment due to interconnected devices, cloud services, IoT technologies, and hybrid work environments. Adversaries are constantly introducing new attack techniques, and not all companies have intern...

7.5AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/09/15 7:12 p.m.16 views

LLM Summary of My Book Beyond Fear

Claude Anthropics LLM was given this prompt: Please summarize the themes and arguments of Bruce Schneiers book Beyond Fear. Im particularly interested in a taxonomy of his ethical arguments--please expand on that. Then lay out the most salient criticisms of the book. Claudes reply: Heres a brief...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/11 11:15 a.m.33 views

How to Apply MITRE ATT&CK to Your Organization

Discover all the ways MITRE ATT&CK can help you defend your organization. Build your security strategy and policies by making the most of this important framework. What is the MITRE ATT&CK Framework? MITRE ATT&CK Adversarial Tactics, Techniques, and Common Knowledge is a widely adopted framework...

6.9AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:38 a.m.5 views

SUSE CVE-2013-2566

The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext...

5.9CVSS7.4AI score0.84424EPSS
Exploits0References5
CISA
CISA
added 2023/01/17 12:0 a.m.83 views

CISA Updates Best Practices for Mapping to MITRE ATT&CK®

Today, CISA updated Best Practices for MITRE ATT&CK® Mapping. The MITRE ATT&CK® framework is a lens through which network defenders can analyze adversary behavior and, as CISA Executive Assistant Director Eric Goldstein noted in his June 2021 blog post on the framework, it directly supports...

1.4AI score
Exploits0References2
Akamai Blog
Akamai Blog
added 2023/01/13 2:0 p.m.21 views

Improving Popularity Rankings for Better Threat Intelligence, Part 1

AkaRank can overcome biases in current domain popularity lists and help ensure the best threat coverage and user experience...

1.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/08/10 5:0 p.m.13 views

Now it's BlenderBot's turn to make shocking, inappropriate, and untrue remarks

Last Friday, Meta unveiled its new BlenderBot 3 AI chatbot, a conversational AI prototype. The company said its chatbot is designed to learn by having natural conversations with people online. It also improves its skills via human feedback. Meta also asserts with confidence that the more the AI...

0.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/06/27 7:23 p.m.17 views

Brave Search wants to replace Google’s biased search results with yours

Brave Search, Brave Softwares privacy search engine, just turned one. To celebrate, the company says it is moving the search engine out of its beta phase to become the default search engine for all Brave browser users. Goodbye, Google? Not entirely. In May 2015, Mozilla alumni Brendan Eich and...

0.1AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/03/24 5:56 p.m.10 views

4 Fallacies That Keep SMBs Vulnerable to Ransomware, Pt. 1

This post is co-authored by Chris Henderson, Senior Director of Information Security at Datto, Inc. Ransomware has focused on big-game hunting of large enterprises in the past years, and those events often make the headlines. The risk can be even more serious for small and medium-sized businesses...

Exploits0
Microsoft Secure
Microsoft Secure
added 2020/03/24 4:0 p.m.30 views

Welcoming and retaining diversity in cybersecurity

I doubt I’d be in the role I am now if leaders at one of my first jobs hadn’t taken an interest in my career. Although I taught myself to code when I was young, I graduated from college with a degree in English Literature and began my post-college career in editorial. I worked my way up to...

7.3AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2019/03/21 11:0 a.m.39 views

Researchers Built an ‘Online Lie Detector.’ Honestly, That Could Be a Problem

Critics point out serious flaws in a study promising an "online polygraph," with potential to create deep biases...

2.6AI score
Exploits0
The Hacker News
The Hacker News
added 2015/07/16 7:47 p.m.24 views

How to Crack RC4 Encryption in WPA-TKIP and TLS

Security researchers have developed a more practical and feasible attack technique against the RC4 cryptographic algorithm that is still widely used to encrypt communications on the Internet. Despite being very old, RC4 Rivest Cipher 4 is still the most widely used cryptographic cipher implemente...

7.4AI score
Exploits0
Rows per page
Query Builder