21 matches found
EUVD-2025-132568
Malicious code in teate-thy-sonic-moral npm...
EUVD-2025-117222
Malicious code in moral-beige-ape npm...
EUVD-2025-103725
Malicious code in moralorangutanz3n npm...
Malicious code in moral_damselfly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45d9b7d209609922ad96dc4f86119a97d0f8f10892bb524aa0f7c2f9abccf807 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-90039
Malicious code in moraldamselflyz3n npm...
EUVD-2025-78771
Malicious code in moralswordfishz3n npm...
EUVD-2025-63019
Malicious code in moral-silver-jellyfish npm...
EUVD-2025-63014
Malicious code in moralwoodpeckerz3n npm...
EUVD-2025-53165
Malicious code in moral-violet-crawdad npm...
EUVD-2025-53168
Malicious code in moral-beige-moth npm...
EUVD-2025-53166
Malicious code in moral-magenta-meerkat npm...
EUVD-2025-53167
Malicious code in moral-brown-orangutan npm...
EUVD-2025-46325
Malicious code in moralbedbugz3n npm...
PRISON: Unmasking the Criminal Potential of Large Language Models
As large language models LLMs advance, concerns about their misconduct in complex social contexts intensify. Existing research overlooked the systematic understanding and assessment of their criminal capability in realistic interactions. We propose a unified framework PRISON, to quantify LLMs'...
Ethical Problems in Computer Security
Tadayoshi Kohno, Yasemin Acar, and Wulf Loh wrote excellent paper on ethical thinking within the computer security community: "Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversation": Abstract: The computer security research community regularly tackles ethical...
Moral hazard of borrower calling liquidate() and potential Oracle manipulation
Lines of code Vulnerability details Impact In the InceptionVaultsCore contract, the liquidate and liquidatePartial function can be called anyone. This means that the borrower for a specific vaultId can call liquidate or liquidatePartial on his own vault. Furthermore, the project incentivizes...
Friday Squid Blogging: Do Squid Have Emotions?
Scientists are now debating whether octopuses, squid, and crabs have emotions. Short answer: we dont know, but cant rule it out. There may be a point when humans can no longer assume that crayfish, shrimp, and other invertebrates dont feel pain and other emotions. "If they can no longer be...
UAE Hack and Leak Operations
Interesting paper on recent hack-and-leak operations attributed to the UAE: Abstract: Four hack-and-leak operations in U.S. politics between 2016 and 2019, publicly attributed to the United Arab Emirates UAE, Qatar, and Saudi Arabia, should be seen as the "simulation of scandal" -- deliberate...
Technology and the power of moral panic
Moral panic is a fascinating topic, and often finds itself tied up in the cutting edge-technology of the times once it works its way into the hands of younger generations. Music, games, movies—pretty much anything you can think of is liable to gatecrash the “won’t somebody think of the children?”...
On Cybersecurity Insurance
Good paper on cybersecurity insurance: both the history and the promise for the future. From the conclusion: Policy makers have long held high hopes for cyber insurance as a tool for improving security. Unfortunately, the available evidence so far should give policymakers pause. Cyber insurance...