92 matches found
The Cybersecurity Side of AI Crypto Bots: What Users Need to Know
Many crypto investors remain sceptical about using AI in their trading. They are aware that the technology exists,…...
EUVD-2018-3914
Malware in sbrugna...
EUVD-2024-18530
Malicious code in bioql PyPI...
EUVD-2022-25590
Malicious code in bioql PyPI...
EUVD-2025-20178
Malicious code in bioql PyPI...
EUVD-2024-46257
Malicious code in bioql PyPI...
CVE-2025-53168
Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness...
CVE-2025-53169
Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness...
CVE-2025-53168
Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness...
PT-2025-28102 · Huawei · Harmonyos
Name of the Vulnerable Software and Affected Versions: HarmonyOS version 5.1.0 Description: The issue allows a peer device to bypass the process and use related functions on distributed cameras without user awareness. Successful exploitation may enable the use of the camera without the user's...
Your Meta AI chats might be public, and it’s not a bug
Conversations that people are having with the Meta AI app are being exposed publicly, often without the users realizing it, revealing a variety of medical, legal, and private matters. The standalone app and the company's integrations with artificial intelligence AI across its platforms—Facebook,...
Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction
A novel attack technique named EchoLeak has been characterized as a "zero-click" artificial intelligence AI vulnerability that allows bad actors to exfiltrate sensitive data from Microsoft 365 M365 Copilot's context sans any user interaction. The critical-rated vulnerability has been assigned the...
Evaluating the Efficacy of LLM Safety Solutions : the Palit Benchmark Dataset
Large Language Models LLMs are increasingly integrated into critical systems in industries like healthcare and finance. Users can often submit queries to LLM-enabled chatbots, some of which can enrich responses with information retrieved from internal databases storing sensitive data. This gives...
BIT-GIT-2024-50349 Git does not sanitize URLs when asking for credentials interactively
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt i.e. without using any credential helper, it prints out the host name for whic...
Threat actors leverage tax season to deploy tax-themed phishing campaigns
As Tax Day approaches in the United States on April 15, Microsoft has observed several phishing campaigns using tax-related themes for social engineering to steal credentials and deploy malware. These campaigns notably use redirection methods such as URL shorteners and QR codes contained in...
CGA-7WFX-Q2H8-CRPG
Bulletin has no description...
CGA-J7P3-CGGX-HHFP
Bulletin has no description...
CVE-2024-20816
Improper authentication vulnerability in onCharacteristicWriteRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness...
CVE-2024-20816
Improper authentication vulnerability in onCharacteristicWriteRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness...
Authentication flaw
Improper authentication vulnerability in onCharacteristicReadRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness...