Lucene search
+L
PacketstormnewsRecent

6894 matches found

Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•1 views

Physical-Layer Signal Injection Attacks on EV Charging Ports: Bypassing Authentication Via Electrical-Level Exploits

The proliferation of electric vehicles in recent years has significantly expanded the charging infrastructure while introducing new security risks to both vehicles and chargers. In this paper, we investigate the security of major charging protocols such as SAE J1772, CCS, IEC 61851, GB/T 20234, a...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•5 views

Watermarking Autoregressive Image Generation

Watermarking the outputs of generative models has emerged as a promising approach for tracking their provenance. Despite significant interest in autoregressive image generation models and their potential for misuse, no prior work has attempted to watermark their outputs at the token level. In thi...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•4 views

Safety Interventions against Adversarial Patches in an Open-Source Driver Assistance System

Drivers are becoming increasingly reliant on advanced driver assistance systems ADAS as autonomous driving technology becomes more popular and developed with advanced safety features to enhance road safety. However, the increasing complexity of the ADAS makes autonomous vehicles AVs more exposed ...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•6 views

Advantech WISE 4060LAN / IoT Gateway Packet Injection

Remote attackers can execute Modbus commands to WISE-4060/LAN module and manipulate the DO channels. This could lead to unauthorized control of connected devices, such as turning systems on or off, causing disruptions or unsafe conditions. In industrial settings, the DO channels might control...

8.1CVSS7.5AI score0.00509EPSS
Exploits1
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•5 views

Spotting Tell-Tale Visual Artifacts in Face Swapping Videos: Strengths and Pitfalls of CNN Detectors

Face swapping manipulations in video streams represents an increasing threat in remote video communications, due to advances in automated and real-time tools. Recent literature proposes to characterize and exploit visual artifacts introduced in video frames by swapping algorithms when dealing wit...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•5 views

Automated Energy Billing with Blockchain and the Prophet Forecasting Model: a Holistic Approach

This paper presents a comprehensive approach to automated energy billing that leverages IoT-based smart meters, blockchain technology, and the Prophet time series forecasting model. The proposed system facilitates real-time power consumption monitoring via Wi-Fi-enabled ESP32 modules and a mobile...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•9 views

The Hitchhiker'S Guide to Efficient, End-To-End, and Tight DP Auditing

This paper systematizes research on auditing Differential Privacy DP techniques, aiming to identify key insights into the current state of the art and open challenges. First, we introduce a comprehensive framework for reviewing work in the field and establish three cross-contextual desiderata tha...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•5 views

Private Training and Data Generation by Clustering Embeddings

Deep neural networks often use large, high-quality datasets to achieve high performance on many machine learning tasks. When training involves potentially sensitive data, this process can raise privacy concerns, as large models have been shown to unintentionally memorize and reveal sensitive...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•8 views

Black-Box Privacy Attacks on Shared Representations in Multitask Learning

Multitask learning MTL has emerged as a powerful paradigm that leverages similarities among multiple learning tasks, each with insufficient samples to train a standalone model, to solve them simultaneously while minimizing data sharing across users and organizations. MTL typically accomplishes th...

6.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•10 views

Efficient Blockchain-Based Steganography Via Backcalculating Generative Adversarial Network

Blockchain-based steganography enables data hiding via encoding the covert data into a specific blockchain transaction field. However, previous works focus on the specific field-embedding methods while lacking a consideration on required field-generation embedding. In this paper, we propose a...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•5 views

Malware Classification Leveraging NLP and Machine Learning for Enhanced Accuracy

This paper investigates the application of natural language processing NLP-based n-gram analysis and machine learning techniques to enhance malware classification. We explore how NLP can be used to extract and analyze textual features from malware samples through n-grams, contiguous string or API...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/19 12:0 a.m.•3 views

Security through the Eyes of AI: How Visualization Is Shaping Malware Detection

Malware, a persistent cybersecurity threat, increasingly targets interconnected digital systems such as desktop, mobile, and IoT platforms through sophisticated attack vectors. By exploiting these vulnerabilities, attackers compromise the integrity and resilience of modern digital ecosystems. To...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•8 views

Dynamic Risk Assessments for Offensive Cybersecurity Agents

Foundation models are increasingly becoming better autonomous programmers, raising the prospect that they could also automate dangerous offensive cyber-operations. Current frontier model audits probe the cybersecurity risks of such agents, but most fail to account for the degrees of freedom...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

Sudoku: Decomposing DRAM Address Mapping into Component Functions

Decomposing DRAM address mappings into component-level functions is critical for understanding memory behavior and enabling precise RowHammer attacks, yet existing reverse-engineering methods fall short. We introduce novel timing-based techniques leveraging DRAM refresh intervals and consecutive...

7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•11 views

Bias Variation Compensation in Perimeter-Gated SPAD TRNGs

Random number generators that utilize arrays of entropy source elements suffer from bias variation BV. Despite the availability of efficient debiasing algorithms, optimized implementations of hardware friendly options depend on the bit bias in the raw bit streams and cannot accommodate a wide BV...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

Efficient Malware Detection with Optimized Learning on High-Dimensional Features

Malware detection using machine learning requires feature extraction from binary files, as models cannot process raw binaries directly. A common approach involves using LIEF for raw feature extraction and the EMBER vectorizer to generate 2381-dimensional feature vectors. However, the high...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•4 views

Trustworthy Artificial Intelligence for Cyber Threat Analysis

Artificial Intelligence brings innovations into the society. However, bias and unethical exist in many algorithms that make the applications less trustworthy. Threats hunting algorithms based on machine learning have shown great advantage over classical methods. Reinforcement learning models are...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

Tech-ASan: Two-Stage Check for Address Sanitizer

Address Sanitizer ASan is a sharp weapon for detecting memory safety violations, including temporal and spatial errors hidden in C/C++ programs during execution. However, ASan incurs significant runtime overhead, which limits its efficiency in testing large software. The overhead mainly comes fro...

7.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

ETrace:Event-Driven Vulnerability Detection in Smart Contracts Via LLM-Based Trace Analysis

With the advance application of blockchain technology in various fields, ensuring the security and stability of smart contracts has emerged as a critical challenge. Current security analysis methodologies in vulnerability detection can be categorized into static analysis and dynamic analysis...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•7 views

Clam AntiVirus Toolkit 1.4.3

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs ar...

9.8CVSS9.4AI score0.01535EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

Graph Neural Networks for Jamming Source Localization

Graph-based learning provides a powerful framework for modeling complex relational structures; however, its application within the domain of wireless security remains significantly underexplored. In this work, we introduce the first application of graph-based learning for jamming source...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•4 views

Beyond the Scope: Security Testing of Permission Management in Team Workspace

Nowadays team workspaces are widely adopted for multi-user collaboration and digital resource management. To further broaden real-world applications, mainstream team workspaces platforms, such as Google Workspace and Microsoft OneDrive, allow third-party applications referred to as add-ons to be...

6.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•6 views

Rubber Mallet: a Study of High Frequency Localized Bit Flips and Their Impact on Security

The increasing density of modern DRAM has heightened its vulnerability to Rowhammer attacks, which induce bit flips by repeatedly accessing specific memory rows. This paper presents an analysis of bit flip patterns generated by advanced Rowhammer techniques that bypass existing hardware defenses...

7.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

FARFETCH'D: a Side-Channel Analysis Framework for Privacy Applications on Confidential Virtual Machines

Confidential virtual machines CVMs based on trusted execution environments TEEs enable new privacy-preserving solutions. Yet, they leave side-channel leakage outside their threat model, shifting the responsibility of mitigating such attacks to developers. However, mitigations are either not gener...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

Unsourced Adversarial CAPTCHA: a Bi-Phase Adversarial CAPTCHA Framework

With the rapid advancements in deep learning, traditional CAPTCHA schemes are increasingly vulnerable to automated attacks powered by deep neural networks DNNs. Existing adversarial attack methods often rely on original image characteristics, resulting in distortions that hinder human...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•6 views

Version-Level Third-Party Library Detection in Android Applications Via Class Structural Similarity

Android applications apps integrate reusable and well-tested third-party libraries TPLs to enhance functionality and shorten development cycles. However, recent research reveals that TPLs have become the largest attack surface for Android apps, where the use of insecure TPLs can compromise both...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•7 views

On the Performance of Cyber-Biomedical Features for Intrusion Detection in Healthcare 5.0

Healthcare 5.0 integrates Artificial Intelligence AI, the Internet of Things IoT, real-time monitoring, and human-centered design toward personalized medicine and predictive diagnostics. However, the increasing reliance on interconnected medical technologies exposes them to cyber threats...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•3 views

A Nested Watermark for Large Language Models

The rapid advancement of large language models LLMs has raised concerns regarding their potential misuse, particularly in generating fake news and misinformation. To address these risks, watermarking techniques for autoregressive language models have emerged as a promising means for detecting...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•4 views

A Sea of Cyber Threats: Maritime Cybersecurity from the Perspective of Mariners

Maritime systems, including ships and ports, are critical components of global infrastructure, essential for transporting over 80% of the world's goods and supporting internet connectivity. However, these systems face growing cybersecurity threats, as shown by recent attacks disrupting Maersk, on...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•13 views

Tracking GPTs Third Party Service: Automation, Analysis, and Insights

ChatGPT has quickly advanced from simple natural language processing to tackling more sophisticated and specialized tasks. Drawing inspiration from the success of mobile app ecosystems, OpenAI allows developers to create applications that interact with third-party services, known as GPTs. GPTs ca...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•5 views

Multi-Use LLM Watermarking and the False Detection Problem

Digital watermarking is a promising solution for mitigating some of the risks arising from the misuse of automatically generated text. These approaches either embed non-specific watermarks to allow for the detection of any text generated by a particular sampler, or embed specific keys that allow...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/18 12:0 a.m.•26 views

Context Manipulation Attacks : Web Agents Are Susceptible to Corrupted Memory

Autonomous web navigation agents, which translate natural language instructions into sequences of browser actions, are increasingly deployed for complex tasks across e-commerce, information retrieval, and content discovery. Due to the stateless nature of large language models LLMs, these agents...

7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•40 views

SHADE-Arena: Evaluating Sabotage and Monitoring in LLM Agents

As Large Language Models LLMs are increasingly deployed as autonomous agents in complex and long horizon settings, it is critical to evaluate their ability to sabotage users by pursuing hidden objectives. We study the ability of frontier LLMs to evade monitoring and achieve harmful hidden goals...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•8 views

IP Leakage Attacks Targeting LLM-Based Multi-Agent Systems

The rapid advancement of Large Language Models LLMs has led to the emergence of Multi-Agent Systems MAS to perform complex tasks through collaboration. However, the intricate nature of MAS, including their architecture and agent interactions, raises significant concerns regarding intellectual...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•6 views

PolyGuard: Massive Multi-Domain Safety Policy-Grounded Guardrail Dataset

Whitepaper called PolyGuard: Massive Multi-Domain Safety Policy-Grounded Guardrail Dataset...

7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•11 views

KGMark: a Diffusion Watermark for Knowledge Graphs

Knowledge graphs KGs are ubiquitous in numerous real-world applications, and watermarking facilitates protecting intellectual property and preventing potential harm from AI-generated content. Existing watermarking methods mainly focus on static plain text or image data, while they can hardly be...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•4 views

Proposal for Improving Google A2A Protocol: Safeguarding Sensitive Data in Multi-Agent Systems

A2A, a protocol for AI agent communication, offers a robust foundation for secure AI agent communication. However, it has several critical issues in handling sensitive data, such as payment details, identification documents, and personal information. This paper reviews the existing protocol,...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•3 views

Technical Options for Flexible Hardware-Enabled Guarantees

Frontier AI models pose increasing risks to public safety and international security, creating a pressing need for AI developers to provide credible guarantees about their development activities without compromising proprietary information. We propose Flexible Hardware-Enabled Guarantees flexHEG,...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•7 views

Safety Features for a Centralised AGI Project

Recent AI progress has outpaced expectations, with some experts now predicting AI that matches or exceeds human capabilities in all cognitive areas AGI could emerge this decade, potentially posing grave national and global security threats. AI development is currently occurring primarily in the...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•5 views

On Key Exchange Protocol Based on Two-Side Multiplication Action

We present a cryptanalysis of a key exchange protocol based on the digital semiring. For this purpose, we find the maximal solution of a linear system over such semiring, and use the properties of circulant matrix to demonstrate that the protocol is vulnerable. Specifically, we provide an efficie...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•7 views

LLM Jailbreak Oracle

As large language models LLMs become increasingly deployed in safety-critical applications, the lack of systematic methods to assess their vulnerability to jailbreak attacks presents a critical security gap. We introduce the jailbreak oracle problem: given a model, prompt, and decoding strategy,...

7.4AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•3 views

Think Twice Before Adaptation: Improving Adaptability of DeepFake Detection Via Online Test-Time Adaptation

Whitepaper called Think Twice Before Adaptation: Improving Adaptability Of DeepFake Detection Via Online Test-Time Adaptation...

7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/17 12:0 a.m.•5 views

Falco 0.41.2

Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/16 12:0 a.m.•7 views

Mitigating Data Poisoning Attacks to Local Differential Privacy

The distributed nature of local differential privacy LDP invites data poisoning attacks and poses unforeseen threats to the underlying LDP-supported applications. In this paper, we propose a comprehensive mitigation framework for popular frequency estimation, which contains a suite of novel...

6.4AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/16 12:0 a.m.•4 views

Miliaris Amigdala 2.2.6 Cross Site Scripting

Miliaris Amigdala version 2.2.6 suffers from multiple reflective cross site scripting vulnerabilities. Please note this entry aggregates three separate advisories...

6.1CVSS6.7AI score0.00231EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/16 12:0 a.m.•6 views

Theoretically Unmasking Inference Attacks against LDP-Protected Clients in Federated Vision Models

Federated Learning enables collaborative learning among clients via a coordinating server while avoiding direct data sharing, offering a perceived solution to preserve privacy. However, recent studies on Membership Inference Attacks MIAs have challenged this notion, showing high success rates...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/16 12:0 a.m.•10 views

Specification and Evaluation of Multi-Agent LLM Systems -- Prototype and Cybersecurity Applications

Recent advancements in LLMs indicate potential for novel applications, e.g., through reasoning capabilities in the latest OpenAI and DeepSeek models. For applying these models in specific domains beyond text generation, LLM-based multi-agent approaches can be utilized that solve complex tasks by...

7.3AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/15 12:0 a.m.•6 views

Locally Differentially Private Frequency Estimation Via Joint Randomized Response

Local Differential Privacy LDP has been widely recognized as a powerful tool for providing a strong theoretical guarantee of data privacy to data contributors against an untrusted data collector. Under a typical LDP scheme, each data contributor independently randomly perturbs their data before...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/15 12:0 a.m.•4 views

The Safety Reminder: a Soft Prompt to Reactivate Delayed Safety Awareness in Vision-Language Models

As Vision-Language Models VLMs demonstrate increasing capabilities across real-world applications such as code generation and chatbot assistance, ensuring their safety has become paramount. Unlike traditional Large Language Models LLMs, VLMs face unique vulnerabilities due to their multimodal...

7.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2025/06/15 12:0 a.m.•10 views

I Know What You Said: Unveiling Hardware Cache Side-Channels in Local Large Language Model Inference

Large Language Models LLMs that can be deployed locally have recently gained popularity for privacy-sensitive tasks, with companies such as Meta, Google, and Intel playing significant roles in their development. However, the security of local LLMs through the lens of hardware cache side-channels...

6.7AI score
Exploits0
Total number of security vulnerabilities6894