Lucene search
+L

153 matches found

Packet Storm News
Packet Storm News
added 2025/04/28 12:0 a.m.9 views

The Automation Advantage in AI Red Teaming

This paper analyzes Large Language Model LLM security vulnerabilities based on data from Crucible, encompassing 214,271 attack attempts by 1,674 users across 30 LLM challenges. Our findings reveal automated approaches significantly outperform manual techniques 69.5% vs 47.6% success rate, despite...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/26 12:0 a.m.7 views

CipherBank: Exploring the Boundary of LLM Reasoning Capabilities through Cryptography Challenges

Large language models LLMs have demonstrated remarkable capabilities, especially the recent advancements in reasoning, such as o1 and o3, pushing the boundaries of AI. Despite these impressive achievements in mathematics and coding, the reasoning abilities of LLMs in domains requiring cryptograph...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/26 12:0 a.m.4 views

Steering the CensorShip: Uncovering Representation Vectors for LLM "Thought" Control

Large language models LLMs have transformed the way we access information. These models are often tuned to refuse to comply with requests that are considered harmful and to produce responses that better align with the preferences of those who control the models. To understand how this "censorship...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/18 12:0 a.m.160 views

Everything You Wanted to Know about LLM-Based Vulnerability Detection but Were Afraid to Ask

Large Language Models are a promising tool for automated vulnerability detection, thanks to their success in code generation and repair. However, despite widespread adoption, a critical question remains: Are LLMs truly effective at detecting real-world vulnerabilities? Current evaluations, which...

7.2AI score
Exploits0
Securelist
Securelist
added 2025/03/06 10:0 a.m.19 views

Trojans disguised as AI: Cybercriminals exploit DeepSeek’s popularity

Introduction Among the most significant events in the AI world in early 2025 was the release of DeepSeek-R1 – a powerful reasoning large language model LLM with open weights. It's available both for local use and as a free service. Since DeepSeek was the first service to offer access to a reasoni...

7.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/02/24 12:8 p.m.14 views

More Research Showing AI Breaking the Rules

These researchers had LLMs play chess against better opponents. When they couldn't win, they sometimes resorted to cheating. Researchers gave the models a seemingly impossible task: to win against Stockfish, which is one of the strongest chess engines in the world and a much better player than an...

7.2AI score
Exploits0
NVD
NVD
added 2024/05/17 2:15 p.m.18 views

CVE-2024-35820

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.6AI score
Exploits0
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.6 views

RTX 安全漏洞

RTX is RTXteam's prototype translation reasoning tool. A security vulnerability exists in RTX TRAP v1.0. An attacker can spoof the server by manipulating the host header field in an HTTP request, causing the server to process the request with a malicious hostname...

6.1CVSS6.3AI score0.00444EPSS
Exploits0References3
Kitploit
Kitploit
added 2021/08/17 9:30 p.m.62 views

SGXRay - Automating Vulnerability Detection for SGX Apps

Intel SGX protects isolated application logic and sensitive data inside an enclave with hardware-based memory encryption. To use such hardware-based security mechanism requires a strict programming model on memory usage, with complex APIs in and out the enclave boundary. Enclave developers are...

7.7AI score
Exploits0References6
hackapp
hackapp
added 2016/04/01 10:19 a.m.16 views

Reasoning Genius - Panda Games - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Reasoning Genius - Panda Games published at the 'play' market has multiple vulnerabilities...

Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2013/10/23 4:56 p.m.15 views

DARPA Cyber Grand Challenge Offers $2M to Winners

The bug bounty continues to be turned on its ear. Microsoft began the wave of paying premium money for mitigation technologies via its Blue Hat prizes, and now DARPA has gone all-in to the tune of $2 million for the development of an automated network defense system that not only scans for and...

0.7AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/06/29 12:0 a.m.47 views

Ubuntu 10.10 : linux vulnerabilities (USN-1160-1)

Dan Rosenberg discovered that IRDA did not correctly check the size of buffers. On non-x86 systems, a local attacker could exploit this to read kernel heap memory, leading to a loss of privacy. CVE-2010-4529 Dan Rosenburg discovered that the CAN subsystem leaked kernel addresses into the /proc...

9.8CVSS7.1AI score0.04177EPSS
Exploits25References43
Packet Storm
Packet Storm
added 2008/03/13 12:0 a.m.28 views

xoopsgal-sql.txt

XOOPS Module Gallery 0.2.2 SQL Injection Exploit AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 HOME : http://securityreason.com/search/101/c0BidW4=/1/0 MAİL : [email protected] DORKS 1 : allinurl :"modules/gallery" DORK 2 : allinurl :"modules/gallery"gid EXPLOIT :...

7.4AI score
Exploits0
Rows per page
Query Builder