13 matches found
Analysis of LLMs against Prompt Injection and Jailbreak Attacks
Large Language Models LLMs are widely deployed in real-world systems. Given their broader applicability, prompt engineering has become an efficient tool for resource-scarce organizations to adopt LLMs for their own purposes. At the same time, LLMs are vulnerable to prompt-based attacks. Thus,...
Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs
New research from CrowdStrike has revealed that DeepSeek's artificial intelligence AI reasoning model DeepSeek-R1 produces more security vulnerabilities in response to prompts that contain topics deemed politically sensitive by China. "We found that when DeepSeek-R1 receives prompts containing...
EUVD-2025-26507
Malicious code in bioql PyPI...
CVE-2025-26210
DeepSeek R1 through V3.1 allows XSS, as demonstrated by JavaScript execution in the context of the run-html-chat.deepseeksvc.com domain. NOTE: some third parties have indicated that this is intended behavior...
CVE-2025-26210
DeepSeek R1 through V3.1 are affected by a Cross-Site Scripting (XSS) vulnerability described as enabling JavaScript execution in the context of the run-html-chat.deepseeksvc.com domain. The CVE-2025-26210 entry explicitly states XSS for versions R1–V3.1; third-party sources note that this behavi...
Malicious code in deepseek-r1-webgpu (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-41550 Malicious code in deepseek-r1-webgpu (npm)
--- -= Per source details. Do not edit below this line.=-...
Practical Reasoning Interruption Attacks on Reasoning Large Language Models
Reasoning large language models RLLMs have demonstrated outstanding performance across a variety of tasks, yet they also expose numerous security vulnerabilities. Most of these vulnerabilities have centered on the generation of unsafe content. However, recent work has identified a distinct...
AI Chatbot DeepSeek R1 Can Be Manipulated to Create Malware
Tenable Research reveals that AI chatbot DeepSeek R1 can be manipulated to generate keyloggers and ransomware code. While…...
Exploiting DeepSeek-R1: Breaking Down Chain of Thought Security
This entry explores how the Chain of Thought reasoning in the DeepSeek-R1 AI model can be susceptible to prompt attacks, insecure output generation, and sensitive data theft...
DeepSeek-R1 LLM Fails Over Half of Jailbreak Attacks in Security Analysis
DeepSeek-R1 LLM fails 58% of jailbreak attacks in Qualys security analysis. Learn about the vulnerabilities, compliance concerns, and risks for enterprise adoption...
Cisco Finds DeepSeek R1 Highly Vulnerable to Harmful Prompts
DeepSeek R1, a cost-efficient AI model, achieves impressive reasoning but fails all safety tests in a new study…...
DeepSeek Failed Over Half of the Jailbreak Tests by Qualys TotalAI
A comprehensive security analysis of DeepSeek 's flagship reasoning model reveals significant concerns for enterprise adoption. Introduction DeepSeek-R1, a groundbreaking Large Language Model recently released by a Chinese startup, DeepSeek, has captured the AI industry’s attention. The model...