Lucene search
K
PacketstormnewsRecent

6803 matches found

Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•14 views

Modernizing User Privacy Preference Measurement through GPPI: A GDPR-Aligned Privacy Preference Item Bank

Privacy measurement instruments e.g., CFIP, IUIPC, PAQ predate GDPR by over a decade and measure privacy concerns, distinct from preferences for regulatory protections e.g., data portability, erasure, automated decision-making rights. This leaves practitioners without tools to assess whether user...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•15 views

Cybersecurity of Electric Vehicle Charging Infrastructure: Recent Advances, Open Challenges, and Future Directions

Electric Vehicles EVs have emerged as significant disruptors in the transportation sector over the past decade. Their growing popularity and adoption are accompanied by capital expenditures to deploy charging infrastructure. EV charging infrastructure sits at the intersection of the power grid, t...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•9 views

CodeQL 2.25.5

Discover vulnerabilities across a codebase with CodeQL, an industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•18 views

Are Frontier LLMs Ready for Cybersecurity? Evidence for Vertical Foundation Models from Dual-Mode Vulnerability Benchmarks

We evaluate whether frontier LLMs are ready for cybersecurity through a dual-mode benchmark: white-box function-level vulnerability detection VulnLLM-R, across C/Java/Python and black-box web application security testing five production-style applications with 118 ground-truth vulnerabilities...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•19 views

Security, Privacy, and Ethical Risks in OpenClaw

This paper systematically investigates the security, privacy, and ethical risks, as well as the traceability challenges of OpenClaw, a locally executable AI agent system for natural language interaction and real-world task completion. While OpenClaw shows strong potential for personal assistance,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•26 views

An Empirical Evaluation of LLM-Generated Code Security across Prompting Methods

The growing use of Large Language Models LLMs for automated code generation has enhanced software development efficiency, but often at the cost of security. Generated code frequently overlooks critical concerns, leaving it vulnerable to issues such as weak encryption and improper input validation...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•12 views

Unlocking Apple's Private Cloud Compute: An Analysis of Privacy-Preserving Artificial Intelligence

Many existing Artificial Intelligence AI solutions on mobile devices rely on an extensive collection of sensitive data, raising privacy concerns and often requiring storage for both context and model improvement. Apple's Private Cloud Compute PCC aims to address this by emphasizing mobile device...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•12 views

Joern 4.0.546

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•35 views

Validating Threat Modeling Results with the Help of Vulnerable Test Applications

Validating threat modeling results remains difficult because completeness is hard to judge without an external oracle. Existing studies often rely on expert-produced reference models and other human baselines, but these can contain omissions or disagreements. This paper evaluates a complementary,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•10 views

angr 9.2.217

angr is an open-source binary analysis platform for Python. It combines both static and dynamic symbolic "concolic" analysis, providing tools to solve a variety of tasks...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•14 views

Adversarial Vulnerability under Temporal Concept Drift: A Longitudinal Study of Android Malware Detection

We present a longitudinal, drift-aware evaluation of adversarial robustness across more than a decade of Android applications using static and dynamic feature representations extracted from emulator and real-device executions. The dataset is organized into yearly slices and evaluated under three...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/22 12:0 a.m.•23 views

Attested Tool-Server Admission: A Security Extension to the Model Context Protocol

The Model Context Protocol MCP standardizes how a large-language-model LLM agent and an external tool server exchange messages, but not trust: a host reads a server's self-declared tool list and dispatches calls, with no notion of which servers it may use, at what sensitivity, or which of a...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•9 views

Parser-Free Querying of Security Logs

Security analysts routinely query system logs to detect threats and investigate incidents, but each log source uses its own semi-structured format: logs are cheap to produce, but expensive to use. The standard approach, building per-source parsers to normalize logs into structured schemas, is...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•13 views

TriSweep: A Four-Drone Swarm Framework for Electromagnetic Side-Channel Analysis

Electromagnetic EM side-channel analysis traditionally assumes a stationary, close-proximity probe - a threat model that underestimates aerial adversaries. TriSweep is a simulation framework that designs and evaluates a four-drone swarm architecture for autonomous standoff EM-SCA of embedded...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•24 views

UNAD+: An Explainable Hybrid Framework for Unknown Network Attack Detection

The detection of previously unseen network attacks remains a major challenge for intrusion detection systems. Although supervised learning methods often perform well on known attack classes, they are limited when new attack types are not represented in the training data. Unsupervised methods are...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•30 views

Blind Spots in the Guard: How Domain-Camouflaged Injection Attacks Evade Detection in Multi-Agent LLM Systems

Injection detectors deployed to protect LLM agents are calibrated on static, template-based payloads that announce themselves as override directives. We identify a systematic blind spot: when payloads are generated to mimic the domain vocabulary and authority structures of the target document, wh...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•11 views

Encrypted Neural Networks without Overflows

Fully homomorphic encryption FHE enables private inference by evaluating neural networks on encrypted data. In this way, we can delegate the computation to a third party server without ever revealing the user's data. Currently, the CKKS scheme is the backbone of most efficient FHE implementations...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•13 views

Botnet Detection on CTU-13 Using Lightweight Machine Learning Models

Botnets are among the most persistent cyber threats, enabling large-scale attacks such as spam, credential theft, and distributed denial-of-service DDoS. While deep learning approaches have recently been applied to botnet detection, they are computationally intensive and often lack...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•11 views

Pretraining Data Exposure in Large Language Models: A Survey of Membership Inference, Data Contamination, and Security Implications

Large Language Models LLMs have become the predominant paradigm in NLP, advancing both research and industry. As model sizes and pretraining data grow, concerns about Pretraining Data Exposure PDE increase due to the scale and opacity of training datasets. PDE refers to determining whether specif...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•22 views

Practical Countermeasure against Attacks Exploiting Detection Efficiency Mismatch in Quantum Key Distribution

We demonstrate a practical countermeasure against a well-known class of attacks on quantum key distribution QKD systems that exploit detection efficiency mismatch, where the receiver's detectors do not exhibit identical responses to incoming photons across all degrees of freedom. This class of...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•16 views

UFONet 2.0

UFONet abuses OSI Layer 7-HTTP to create/manage 'zombies' and to conduct different attacks using GET/POST, multi-threading, proxies, origin spoofing methods, cache evasion techniques, etc...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•22 views

From Preventive to Reactive: How AI Coding Assistants Transform Developers' Security Awareness

AI coding assistants are now central to professional software development, yet their impact on how developers think about and practice security remains poorly understood. While prior work has documented vulnerability rates in AI-generated code, a more fundamental question persists: how do these...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•10 views

Innovations in Cardless Artificial Intelligence Banking: A Comprehensive Framework for Cyber Secure and Fraud Mitigation Using Machine Learning Algorithms

The advent of cardless artificial intelligence AI banking heralds a paradigm shift in the financial landscape, offering users unprecedented security and convenience. This paper outlines a comprehensive framework designed to enhance cybersecurity, introduce auto-generated virtual cards, and mitiga...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•10 views

Measuring Security without Fooling Ourselves: Why Benchmarking Agents Is Hard

The benchmarks used to evaluate AI agents in security-critical roles suffer from crucial weaknesses. Building on recent empirical evidence, we characterize three core challenges that undermine security evaluations: benchmark vulnerabilities, temporal staleness, and runtime uncertainty. We then...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•12 views

A First Measurement Study on Authentication Security in Real-World Remote MCP Servers

The Model Context Protocol MCP is emerging as a common interface connecting large language models LLMs with external services. Remote deployments are becoming increasingly important as agents connect to user-linked online services, such as social, productivity, and financial services. In such...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•19 views

Human Vulnerability Assessment in Cybersecurity: A Systematic Literature Review of Methods, Models, and Instruments

In cybersecurity, vulnerability assessment has typically focused on identifying and measuring vulnerabilities within digital assets and technical infrastructures. However, there is growing recognition that this approach alone is inadequate without a structured examination of the human factor, whi...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•11 views

BYOT-CPS: A Hybrid Cyber-Physical Systems Testbed for IoT Security Assessment and Platform Evaluation

Internet of Things IoT security research continues to face a methodological gap between scalable virtual experimentation and realistic device behaviour. While pure simulation and emulation platforms provide control, repeatability, and scale, they do not fully reproduce firmware-specific behaviour...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•18 views

Security of LLM-Generated Code: A Comparative Analysis

The majority of software developers use or are planning to use Artificial Intelligence AI tools in their development processes. Their top reasons include improving productivity and faster learning. In fact, Large Language Model LLM-generated code is currently in production, including in major tec...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•18 views

Market-Analysis-Driven Methodology for Assessing Charging Station Cybersecurity

Modern charging communication standards for electric vehicles include optional security controls such as TLS-based authentication and encryption. However, with tens of thousands of fast charging points deployed in any given country, individually testing each one for security control support is...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•14 views

Prompt Overflow: What the Guardrail Inspects Is Not What the Model Infers

Guardrail models a.k.a. safety checkers are widely deployed to screen user inputs before they reach large language models LLMs, serving as a primary defense against prompt injection attacks. Due to strict context constraints, these models handle overlength prompts through truncation or...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•23 views

Beyond Zero: Enterprise Security for the AI Era

The rise of autonomous AI agents and the accelerating velocity of corporate data access are stretching the application-centric model of zero trust security to its breaking point. This paper introduces Beyond Zero, a new security paradigm designed for the AI era. The Beyond Zero architecture...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/21 12:0 a.m.•27 views

Stabilising Explainability Fragility in Cybersecurity AI: The Impact and Mitigation of Multicollinearity in Public Benchmark Datasets

This paper investigates a unexplored yet impactful vulnerability in AI explainability used in intrusion detection IDS: multicollinearity-induced instability. Despite extensive reliance on post-hoc explainability tools such as SHAP or LIME, the impact of correlated features on explanation robustne...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•19 views

Profiling User Vulnerability to Phishing through Psychological and Behavioral Factors

Phishing remains one of the most pervasive cybersecurity threats, shifting the focus from technological vulnerabilities to human cognitive and psychological factors. In coherence with the trend of studies on phishing to increasingly focus on human aspects and vulnerable users profiling, this stud...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•11 views

GenAI-Driven Threat Detection with Microsoft Security Copilot

Defending against today's increasingly sophisticated cyberattacks requires security analysts to continuously translate evolving attacker tradecraft into detection logic. This places defenders in a reactive posture, requiring constantly updated expertise across an increasingly fragmented security...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•18 views

HIDBench: Benchmarking Large Language Models for Host-Based Intrusion Detection

Recent benchmark efforts have advanced the evaluation of large language models LLMs in cybersecurity, including tasks such as penetration testing and vulnerability identification. However, a critical cybersecurity task, namely intrusion detection from system logs, remains unexplored. In this work...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•19 views

Wireshark Analyzer 4.6.6

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. Thi...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•12 views

FreeBSD Security Advisory - FreeBSD-SA-26:20.fusefs

FreeBSD Security Advisory - When a fusefs file system implements extended attributes, the kernel may send a FUSELISTXATTR message to the userspace daemon to retrieve the list of extended attributes for a given file. The FUSE protocol requires the daemon to return a packed list of NUL-terminated...

5.5CVSS5.9AI score0.00284EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•8 views

A Large Language Model Approach to Generating Bypass Rules for Malware Evasion in Analysis Sandbox

Sandbox evasion remains a critical challenge for automated malware analysis, as modern malware employs environment checks to detect analysis platforms and suppress malicious behavior. Existing approaches rely on manually crafted bypass rules that require deep reverse engineering of each evasion...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•26 views

Auditing Apple'S DifferentialPrivacy.Framework: Implementation Bugs, Misconfigurations, and Practical Risks

Since 2016, Apple has claimed that device analytics collected to improve user experience are protected by differential privacy DP. Apple's DifferentialPrivacy.framework is deployed across its operating systems and handles sensitive signals such as Safari domains, keyboard events, photo attributes...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•11 views

Detecting Trojaned DNNs Via Spectral Regression Analysis

Modern DNNs are repeatedly fine-tuned to incorporate new data and functionality. This evolutionary workflow introduces a security risk when updated data cannot be fully trusted, as adversaries may implant Trojans during fine-tuning. We present MIST, a Trojan detection approach that analyzes how a...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•18 views

Quality and Security Signals in AI-Generated Python Refactoring Pull Requests

As AI agents increasingly contribute to code development and maintenance, there is still limited empirical evidence on the quality and risk characteristics of their changes in real-world projects, particularly for refactoring-oriented contributions. It remains unclear how agent-authored refactori...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•8 views

FreeBSD Security Advisory - FreeBSD-SA-26:18.setcred

FreeBSD Security Advisory - The setcred2 system call is only available to privileged users. However, before the privilege level of the caller is checked, the user-supplied list of supplementary groups is copied into a fixed-size kernel stack buffer without first validating its length. If the...

7.8CVSS6AI score0.00409EPSS
Exploits1
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•8 views

angr 9.2.216

angr is an open-source binary analysis platform for Python. It combines both static and dynamic symbolic "concolic" analysis, providing tools to solve a variety of tasks...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•11 views

VIPER-MCP: Detecting and Exploiting Taint-Style Vulnerabilities in Model Context Protocol Servers

Model Context Protocol MCP has emerged as a standard interface for connecting LLM agents to external tools. Because MCP servers expose privileged operations such as shell execution, network access, and file-system manipulation to agent-driven invocation, implementation flaws in tool handlers can...

6.4AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•22 views

FreeBSD Security Advisory - FreeBSD-SA-26:19.file

FreeBSD Security Advisory - A file descriptor can be closed while a thread is blocked in a poll2 or select2 call waiting for that descriptor. Because the blocked thread does not hold a reference to the underlying object, this closure may result in the object being freed while the thread remains...

7.8CVSS5.7AI score0.0017EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•9 views

Detecting Offensive Cyber Agents: A Detection-In-Depth Approach

Artificial Intelligence AI agents can now orchestrate cyberattacks. This development is already increasing the speed and scale of cyber attacks, decreasing attack costs, and improving the operational autonomy of cyber capabilities. To defend against these emerging threats, actors must first devel...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•27 views

FreeBSD Security Advisory - FreeBSD-SA-26:23.bsdinstall

FreeBSD Security Advisory - When bsdinstall or bsdconfig are prompted to scan for nearby Wi-Fi networks, they build up a list of network names and use bsddialog1 to prompt the user to select a network. This is implemented using a shell script, and the code which handled network names was not...

7.5CVSS5.9AI score0.00305EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•16 views

Domijn: The Security of Domain Registrars and the Risk of a Domain Name Takeover

Domain names are key assets for organisation. They anchor an organisation's online presence and reputation, and serve as linking pin for web services and, e.g., email. Consequently, a malicious takeover of a domain can lead to significant damages. Organisations register domain names through...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•9 views

FreeBSD Security Advisory - FreeBSD-SA-26:22.libcasper

FreeBSD Security Advisory - libcasper3 communicates with helper processes via UNIX domain sockets, and uses the select2 system call to wait for data to become available. However, it does not verify that its socket descriptor fits within select2's descriptor set size limit of FDSETSIZE 1024...

8.8CVSS5.8AI score0.00172EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/20 12:0 a.m.•9 views

FreeBSD Security Advisory - FreeBSD-SA-26:24.cap_net

FreeBSD Security Advisory - In the case of the capnet service, when a key present in the old limit was omitted from the new limit, the missing key was treated as "allow any" instead of being rejected...

6.5CVSS5.8AI score0.00194EPSS
Exploits0
Total number of security vulnerabilities6803