Lucene search
K
PacketstormnewsRecent

6803 matches found

Packet Storm News
Packet Storm News
•added 2026/05/18 12:0 a.m.•13 views

Explainable Machine Learning for Phishing Detection on Heterogeneous Datasets with MCP-Enabled Deployment

With the growth in digital transformation and Internet usage, the Social Engineering techniques such as Phishing have become a major concern for the users and the organizations. Phishing attacks involve deceptive techniques to trick users into revealing confidential information that causes...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/18 12:0 a.m.•56 views

Apple Security Advisory 05-11-2026-6

Apple Security Advisory 05-11-2026-6 - macOS Tahoe 26.5 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, null pointer, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities...

8.8CVSS6.9AI score0.07112EPSS
Exploits5
Packet Storm News
Packet Storm News
•added 2026/05/18 12:0 a.m.•20 views

Apple Security Advisory 05-11-2026-7

Apple Security Advisory 05-11-2026-7 - macOS Sequoia 15.7.7 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds write, and use-after-free vulnerabilities...

8.8CVSS6.6AI score0.07112EPSS
Exploits2
Packet Storm News
Packet Storm News
•added 2026/05/18 12:0 a.m.•19 views

Token by Token, Compromised: Backdoor Vulnerabilities in Unified Autoregressive Models

Unified autoregressive models UAMs are transformer models that generate text as well as image tokens within a single autoregressive pass. Shared parameters and a multimodal vocabulary simplify the training pipeline and facilitate flexible multimodal generation, yet might introduce new...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•29 views

ADR: An Agentic Detection System for Enterprise Agentic AI Security

We present the Agentic AI Detection and Response ADR system, the first large-scale, production-proven enterprise framework for securing AI agents operating through the Model Context Protocol MCP. We identify three persistent challenges in this domain: 1 limited observability -- existing Endpoint...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•20 views

ContraFix: Agentic Vulnerability Repair Via Differential Runtime Evidence and Skill Reuse

Large language model LLM agents are increasingly used for automated vulnerability repair AVR, where repository-level reasoning enables them to inspect context and produce source-code patches. However, recent empirical results show that these agents still struggle with real-world vulnerabilities...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•29 views

One Step Further: Understanding PLC Binaries through Cross-Platform Reverse Engineering and Function-Level Semantic Analysis

As emerging attacks increasingly target Industrial Control Systems ICS, the security of Programmable Logic Controllers PLCs has become a critical concern. Binary Code Analysis BCA, which enables analysts to understand compiled programs without source code, is essential for ICS security tasks such...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•18 views

MemRepair: Hierarchical Memory for Agentic Repository-Level Vulnerability Repair

Modern software ecosystems face a rapidly growing number of disclosed vulnerabilities, increasing the need for automated repair techniques that can operate reliably at repository scale. Although Large Language Model LLM-based agents have recently shown promise for automated vulnerability repair...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•12 views

Ablating Safety: Mechanisms for Removing Alignment in Language Models for Security Applications

Safety-aligned language models often refuse cybersecurity requests whose wording resembles misuse, even when the task is authorized and defensive. This makes security evaluation ambiguous: a failed answer may reflect missing capability or refusal-policy intervention. Ablating Safety studies...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•218 views

AI Agents May Always Fall for Prompt Injections

Prompt injection is the most critical vulnerability in deployed AI agents. Despite recent progress, we show that the prevailing defense paradigm data-instruction separation both fails to detect attacks that operate through contextual manipulation and degrades contextually appropriate behavior. We...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•17 views

Rethinking Side-Channel Analysis: Automated Discovery and Analysis of Side-Channel Leakage with LLM-Assisted Agents

Side-channel attacks exploit unintended information leakage from system behavior and continue to pose serious privacy risks in modern platforms. Despite extensive prior work, side-channel analysis remains largely manual and fragmented, typically assuming predefined target events and a fixed set o...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•58 views

LITE-SOC: Lightweight Security Operations Center Simulator for Cybersecurity Education

This innovative practice WIP paper describes LITE-SOC, a lightweight web-based Security Operations Center SOC simulator designed for instructor-led cybersecurity education. SOC analysts must triage large volumes of alerts, separate genuine threats from false positives, and communicate decisions...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/17 12:0 a.m.•14 views

Speed Kills: Exploring Confused Deputy Attacks through Edge AI Accelerators

AI Accelerator AIA are specialized hardware e.g., Tensor Processing Unit TPU, that enable optimal and efficient execution of AI applications and on-device inference. The growing demand for AI applications has led to the widespread adoption of AIAs on Edge or embedded devices on Edge or embedded...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/16 12:0 a.m.•12 views

Filter-Then-Verify: A Multiphase GNN and ModernBERT Framework for Social Engineering Detection in Email Networks

Social engineering attacks exploit human trust rather than software vulnerabilities, making them difficult to detect using conventional filters. We propose a two-stage filter-then-verify framework combining inductive Graph Neural Networks GNNs for structural anomaly detection with a co-attention...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/16 12:0 a.m.•12 views

A Red Teaming Framework for Evaluating Robustness of AI-Enabled Security Orchestration, Automation, and Response Systems

AI-enabled Security Orchestration, Automation, and Response SOAR systems increasingly employ autonomous agents for cyber defense, yet their resilience to adaptive adversaries is underexplored. We introduce an autonomous red teaming framework that integrates large language models LLMs with...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/16 12:0 a.m.•11 views

Integration of AI in Cybersecurity: Current Trends with a Focused Look at Intrusion Detection Applications

Artificial Intelligence AI is widely adopted today for its ability to detect patterns, automate tasks, and reduce time and cost across various applications. Its integration into Cybersecurity has garnered significant attention, particularly in areas such as intrusion detection, malware analysis,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•12 views

Security Analysis of a Communication Protocol: MQTT

This paper analyzes the security of the Message Queuing Telemetry Transport MQTT protocol in the context of the Internet of Things IoT. The main objective consists of identifying vulnerabilities and proposing security improvements. Adopting a hybrid methodology, a theoretical review was combined...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•10 views

STRIKE: A Structured Taxonomy of Cybercrime for Risk, Impact, Knowledge, and Evolution

Cybercrime has grown exponentially in both scale and sophistication, posing significant threats. As attack methods evolve rapidly, traditional classification schemes often fail to capture the complexity and diversity of modern threats. To address this gap, we introduce STRIKE,a Structured Taxonom...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•10 views

Quantum Futures Interactive: A Live Demonstration of Post-Quantum Blockchain Security, Infrastructure Tradeoffs, and Sustainable Distributed Trust

Advances in quantum computing introduce long-term security challenges for widely deployed public-key cryptographic systems used across blockchain platforms and decentralized applications. Although post-quantum cryptography PQC standards are emerging, understanding quantum risk remains fragmented...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•24 views

From AI-Generated Content to Agentic Action: Security and Safety Threats in Generative AI

Generative AI systems are increasingly used not only to produce content but also to retrieve data, invoke tools, and execute actions. This work examines the security and safety implications of that shift across content-level, model-level, and agentic threats. We analyze how attacker access...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•10 views

Context-Aware Entity-Relation Extraction for Threat Intelligence Knowledge Graphs

Cybersecurity Knowledge Graphs CKGs unify diverse Cyber Threat Intelligence CTI sources into structured, queryable formats, offering scalable solutions for automating proactive and real-time security responses. Their increasing adoption has significantly enhanced the workflow and decision-making...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•14 views

nimrm 1.1.0

nimrm is a native WinRM interactive shell client written in Nim. It's designed to be a compact and fast tool for system administration and authorized security testing. Key features include NTLM and Kerberos authentication, in-memory operations, file transfers, OPSEC awareness, and cross platform...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•18 views

Faraday 5.21.0

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•62 views

MalwarePT: A Binary-Level Foundation Model for Malware Analysis

Automated malware analysis increasingly relies on machine learning, yet most existing methods remain task-specific and depend on handcrafted features or narrowly scoped models. Recent developments in binary-level foundation models suggest a path toward reusable program representations, but their...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•14 views

Compile-Time Security Analysis and Optimization of Sensitive String Producers

Content composition vulnerabilities remain among the most prevalent and persistent classes of security weakness in deployed software. Prior mitigations, including developer training, static analysis tools, and domain-specific template languages, each face diminishing returns; AI code generation...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•9 views

DarkLLM: Learning Language-Driven Adversarial Attacks with Large Language Models

While vision and multimodal foundation models underpin critical tasks from perception to complex reasoning, they remain highly vulnerable to adversarial attacks. However, traditional adversarial attacks are typically limited to single, predefined objectives, tightly coupling each attack to a...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•10 views

On-Device Interpretable Tsetlin Machine-Based Intrusion Detection for Secure IoMT

The rapid evolution of digital health technologies is redefining healthcare services worldwide. The integration of wireless communication and Internet-enabled medical devices within Internet of Medical Things IoMT networks enables continuous, real-time patient monitoring. However, this increased...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•16 views

From Backup Restoration to Minimum Viable Factory Recovery: A Systematization of Ransomware Recovery in Manufacturing Systems

Ransomware recovery in critical manufacturing infrastructure is not only a backup-restoration problem. Production capability depends on coupled information-technology, operational-technology, physical-process, quality, logistics, identity, and supplier systems. After ransomware, a plant may rebui...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/15 12:0 a.m.•13 views

Rosemary 1.1.0

Rosemary is a cross-platform transparent tunneling platform designed for network pivoting. Unlike traditional tools that rely on TUN/TAP interfaces or require per-application proxy configuration like proxychains, Rosemary intercepts traffic at the kernel level...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•60 views

Joern 4.0.539

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•25 views

Capacitive Touchscreens at Risk: A Practical Side-Channel Attack on Smartphones Via Electromagnetic Emanations

Capacitive touchscreens in modern smartphones introduce severe side-channel vulnerabilities. However, existing attacks often require restrictive conditions or invasive measurements. This paper presents TESLA, a novel, contactless electromagnetic EM side-channel attack that exploits inherent EM...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•14 views

Apache HertzBeat 1.8.0 Remote Command Execution

Apache HertzBeat version 1.8.0 suffers from a remote command execution vulnerability via the scriptCommand parameter in a monitoring template definition...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•43 views

Exploiting LLM Agent Supply Chains Via Payload-Less Skills

Autonomous agents powered by Large Language Models LLMs acquire external functionalities through third-party skills available in open marketplaces. Adopting these integrations broadens the potential attack surface, prompting a need for systematic security evaluation. Current auditing mechanisms a...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•22 views

WARD: Adversarially Robust Defense of Web Agents against Prompt Injections

Web agents can autonomously complete online tasks by interacting with websites, but their exposure to open web environments makes them vulnerable to prompt injection attacks embedded in HTML content or visual interfaces. Existing guard models still suffer from limited generalization to unseen...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•28 views

Veritas: A Semantically Grounded Agentic Framework for Memory Corruption Vulnerability Detection in Binaries

Detecting memory corruption vulnerabilities in stripped binaries requires recovering object semantics, interprocedural propagation, and feasible triggers from low-level, lossy representations. Recent LLM-based approaches improve code understanding, but reliable detection still requires grounding ...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•30 views

Wapiti Web Application Vulnerability Scanner 3.3.0

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities. This is the source code release...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•16 views

WordPress Supsystic Contact Form 1.7.36 Server-Side Template Injection

Proof of concept code execution exploit for a server-side template injection vulnerability in WordPress Supsystic Contact Form plugin versions 1.7.36 and below...

9.8CVSS6.2AI score0.41475EPSS
Exploits8
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•14 views

Topical Shifts in the Dark Web: A Longitudinal Analysis of Content from the Cybercrime Ecosystem

The dark web hosts a dynamic ecosystem of cybercrime forums and marketplaces that adapt to law enforcement pressure, technological change, and economic incentives. Prior research has extracted cyber threat intelligence from these platforms using static snapshots, with limited attention to how...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•17 views

MetaBackdoor: Exploiting Positional Encoding As a Backdoor Attack Surface in LLMs

Backdoor attacks pose a serious security threat to large language models LLMs, which are increasingly deployed as general-purpose assistants in safety- and privacy-critical applications. Existing LLM backdoors rely primarily on content-based triggers, requiring explicit modification of the input...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•14 views

Personal AI Infrastructure 5.0.0

PAI is a Personalized AI Platform designed to magnify your capabilities. It's designed for humans most of all, but can be used by teams, companies, or Federations of Planets desiring to be better versions of themselves. The goal of the project is to get people working with AI and lower the bar...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•59 views

Do Coding Agents Understand Least-Privilege Authorization?

As coding agents gain access to shells, repositories, and user files, least-privilege authorization becomes a prerequisite for safe deployment: an agent should receive enough authority to complete the task, without unnecessary authority that exposes sensitive surfaces.To study whether current...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•19 views

Detecting Privilege Escalation in Polyglot Microservices Via Agentic Program Analysis

Microservices are widely adopted in modern cloud systems due to their scalability and fault tolerance. However, microservice architectures introduce significant complexity in privilege and permission control, creating risks of privilege escalation where attackers can gain unauthorized access to...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•17 views

GestioIP 3.5.7 Remote Command Execution

This Metasploit module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no password is required to exploit the vulnerability. Otherwise, an authenticated user with admin right on the web site is required to exploit...

9.8CVSS7.3AI score0.45109EPSS
Exploits5
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•22 views

FuzzAgent: Multi-Agent System for Evolutionary Library Fuzzing

Library fuzzing is essential for hardening the software supply chain, but adopting it at scale remains expensive. Practitioners still spend substantial effort on environment setup, struggle to generate harnesses that respect intricate API constraints, and lack reliable means to tell genuine libra...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•68 views

PickleFuzzer: A Case Study in Fuzzing for Discrepancies between Python Pickle Implementations

Python's native serialization protocol, pickle, is a powerful but insecure format for transferring untrusted data. It is frequently used, especially for saving machine learning models, despite known security challenges. While developers sometimes mitigate this risk by restricting imports during...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•26 views

Toward Securing AI Agents like Operating Systems

Autonomous agents based on large language models LLMs are rapidly emerging as a general-purpose technology, with recent systems such as OpenClaw extending their capabilities through broad tool use, third-party skills, and deeper integration into user environments. At the same time, these agentic...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•19 views

ePati Antikor NGFW 2.0.1301 Authentication Bypass

ePati Antikor NGFW version 2.0.1301 suffers from an authentication bypass vulnerability...

9.8CVSS5.8AI score0.02194EPSS
Exploits2
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•19 views

Dolibarr ERP/CRM Authenticated Code Injection

Dolibarr ERP/CRM versions prior to 17.0.1 allow remote code execution by an authenticated user who has access to the Website module...

8.8CVSS7.8AI score0.79335EPSS
Exploits16
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•26 views

UGen: An Agentic Framework for Generating Microarchitectural Attack PoCs

Microarchitectural attacks continue to evolve, uncovering new exploitation vectors in modern processors. From a defensive perspective, assessing a system's susceptibility to such attacks remains challenging. Developing functional attack implementations is labor-intensive, requires deep...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/14 12:0 a.m.•12 views

Widening the Gap: Exploiting LLM Quantization Via Outlier Injection

LLM quantization has become essential for memory-efficient deployment. Recent work has shown that quantization schemes can pose critical security risks: an adversary may release a model that appears benign in full precision but exhibits malicious behavior once quantized by users. However, existin...

5.8AI score
Exploits0
Total number of security vulnerabilities6803