Lucene search
K
PacketstormnewsRecent

6803 matches found

Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•18 views

ACIArena: Toward Unified Evaluation for Agent Cascading Injection

Collaboration and information sharing empower Multi-Agent Systems MAS but also introduce a critical security risk known as Agent Cascading Injection ACI. In such attacks, a compromised agent exploits inter-agent trust to propagate malicious instructions, causing cascading failures across the...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•4 views

OpenSCAP Libraries 1.4.4

The openscap project is a set of open source libraries that support the SCAP Security Content Automation Protocol set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•4 views

Why Network Segmentation Projects Fail

Network segmentation is a foundational enterprise security control. Despite its recognized benefits, segmentation initiatives frequently fail in practice, and the field lacks a systematic empirical explanation for why these projects do not achieve their intended outcomes. This paper presents an...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•18 views

Windows Telemetry Persistence

This is a Metasploit module that provides a persistence mechanism that installs a new telemetry provider for windows. If telemetry is turned on, when the scheduled task launches, it will execute the telemetry provider and execute our payload with system permissions...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•5 views

Vulnerability Detection with Interprocedural Context in Multiple Languages: Assessing Effectiveness and Cost of Modern LLMs

Large Language Models LLMs have been a promising way for automated vulnerability detection. However, most prior studies have explored the use of LLMs to detect vulnerabilities only within single functions, disregarding those related to interprocedural dependencies. These studies overlook...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•5 views

RansomTrack: A Hybrid Behavioral Analysis Framework for Ransomware Detection

Ransomware poses a serious and fast-acting threat to critical systems, often encrypting files within seconds of execution. Research indicates that ransomware is the most reported cybercrime in terms of financial damage, highlighting the urgent need for early-stage detection before encryption is...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•5 views

Follow My Eyes: Backdoor Attacks on VLM-Based Scanpath Prediction

Scanpath prediction models forecast the sequence and timing of human fixations during visual search, driving foveated rendering and attention-based interaction in mobile systems where their integrity is a first-class security concern. We present the first study of backdoor attacks against VLM-bas...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•4 views

Your Agent Is Mine: Measuring Malicious Intermediary Attacks on the LLM Supply Chain

Large language model LLM agents increasingly rely on third-party API routers to dispatch tool-calling requests across multiple upstream providers. These routers operate as application-layer proxies with full plaintext access to every in-flight JSON payload, yet no provider enforces cryptographic...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•5 views

Security Concerns in Generative AI Coding Assistants: Insights from Online Discussions on GitHub Copilot

Generative Artificial Intelligence GenAI has become a central component of many development tools e.g., GitHub Copilot that support software practitioners across multiple programming tasks, including code completion, documentation, and bug detection. However, current research has identified...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/09 12:0 a.m.•7 views

Tracing the Chain: Deep Learning for Stepping-Stone Intrusion Detection

Stepping-stone intrusions SSIs are a prevalent network evasion technique in which attackers route sessions through chains of compromised intermediate hosts to obscure their origin. Effective SSI detection requires correlating the incoming and outgoing flows at each relay host at extremely low fal...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•28 views

System Card: Claude Mythos Preview

This System Card describes Claude Mythos Preview, a large language model from Anthropic. Mythos Preview is their most capable frontier model to date, and shows a striking leap in scores on many evaluation benchmarks compared to their previous frontier model, Claude Opus 4.6. This System Card...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•20 views

VulGD: A LLM-Powered Dynamic Open-Access Vulnerability Graph Database

Software vulnerabilities continue to pose significant threats to modern information systems, requiring a timely and accurate risk assessment. Public repositories, such as the National Vulnerability Database and CVE details, are regularly updated, but predominantly utilize relational data models...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•5 views

Vulnerability Abundance: A Formal Proof of Infinite Vulnerabilities in Code

We present a constructive proof that a single C program, the Vulnerability Factory, admits a countably infinite set of distinct, independently CVE-assignable software vulnerabilities. We formalise the argument using elementary set theory, verify it against MITRE's CVE Numbering Authority counting...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•9 views

Aether Smart Contract Security Analysis Framework 6.0

Aether is a Python-based framework for analyzing Solidity smart contracts, generating vulnerability findings, producing Foundry-based proof-of-concept PoC tests, and validating exploits on mainnet forks. It combines Solidity AST parsing, taint analysis, control flow graph analysis, cross-contract...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•11 views

MCP-DPT: A Defense-Placement Taxonomy and Coverage Analysis for Model Context Protocol Security

The Model Context Protocol MCP enables large language models LLMs to dynamically discover and invoke third-party tools, significantly expanding agent capabilities while introducing a distinct security landscape. Unlike prompt-only interactions, MCP exposes pre-execution artifacts, shared context,...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•17 views

ARuleCon: Agentic Security Rule Conversion

Security Information and Event Management SIEM systems make it possible for detecting intrusion anomalies in real-time manner by their applied security rules. However, the heterogeneity of vendor-specific rules e.g., Splunk SPL, Microsoft KQL, IBM AQL, Google YARA-L, and RSA ESA makes...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•6 views

Hiding an Ear in Plain Sight: On the Practicality and Implications of Acoustic Eavesdropping with Telecom Fiber Optic Cable

Optical fibers are widely regarded as reliable communication channels due to their resistance to external interference and low signal loss. This paper demonstrates a critical side channel within telecommunication optical fiber that allows for acoustic eavesdropping. By exploiting the sensitivity ...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•6 views

Anamorphic Encryption with CCA Security: A Standard Model Construction

Anamorphic encryption serves as a vital tool for covert communication, maintaining secrecy even during post-compromise scenarios. Particularly in the receiver-anamorphic setting, a user can shield hidden messages even when coerced into surrendering their secret keys. However, a major bottleneck i...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•5 views

SentinelSphere: Integrating AI-Powered Real-Time Threat Detection with Cybersecurity Awareness Training

The field of cybersecurity is confronted with two interrelated challenges: a worldwide deficit of qualified practitioners and ongoing human-factor weaknesses that account for the bulk of security incidents. To tackle these issues, we present SentinelSphere, a platform driven by artificial...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•7 views

Beyond Single Reports: Evaluating Automated ATT&CK Technique Extraction in Multi-Report Campaign Settings

Large-scale cyberattacks, referred to as campaigns, are documented across multiple CTI reports from diverse sources, with some providing a high-level overview of attack techniques and others providing technical details. Extracting attack techniques from reports is essential for organizations to...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•24 views

Aether Smart Contract Security Analysis Framework 5.0.2

Aether is a Python-based framework for analyzing Solidity smart contracts, generating vulnerability findings, producing Foundry-based proof-of-concept PoC tests, and validating exploits on mainnet forks. It combines Solidity AST parsing, taint analysis, control flow graph analysis, cross-contract...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•4 views

Broken Quantum: A Systematic Formal Verification Study of Security Vulnerabilities across the Open-Source Quantum Computing Simulator Ecosystem

Quantum computing simulators form the classical software foundation on which virtually all quantum algorithm research depends. We present Broken Quantum, the first comprehensive formal security audit of the open-source quantum computing simulator ecosystem. Applying COBALT QAI -- a four-module...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•4 views

Hiding in the Tunnels: Unmasking the New Stealthy BPFDoor Variants

This is Rapid7's whitepaper discussing BPFDoor variants. Advanced persistent threats APTs are locked in a continuous arms race with network defenders. As static indicators of compromise IoCs for the notorious BPFDoor malware became widely deployed by security vendors, the threat actors went back ...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•5 views

OpenSSL Toolkit 3.0.20

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. This is the 3.0 LTS release...

7.5CVSS5.9AI score0.01059EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•5 views

OpenSSL Toolkit 3.3.7

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. This is the 3.3 release...

7.5CVSS5.9AI score0.01059EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•4 views

OpenSSL Toolkit 3.4.5

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. This is the 3.4 release...

7.5CVSS5.9AI score0.01059EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•5 views

OpenSSL Toolkit 3.6.2

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. This is the 3.6 release...

7.5CVSS5.9AI score0.01059EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•6 views

OpenSSL Toolkit 3.5.6

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. This is the 3.5 LTS release...

7.5CVSS5.9AI score0.01059EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/08 12:0 a.m.•5 views

SkillTrojan: Backdoor Attacks on Skill-Based Agent Systems

Skill-based agent systems tackle complex tasks by composing reusable skills, improving modularity and scalability while introducing a largely unexamined security attack surface. We propose SkillTrojan, a backdoor attack that targets skill implementations rather than model parameters or training...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•5 views

Understanding User Privacy Perceptions of GenAI Smartphones

GenAI smartphones, which natively embed generative AI at the system level, are transforming mobile interactions by automating a wide range of tasks and executing UI actions on behalf of users. Their superior capabilities rely on continuous access to sensitive and context-rich data, raising privac...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•12 views

WebSP-Eval: Evaluating Web Agents on Website Security and Privacy Tasks

Web agents automate browser tasks, ranging from simple form completion to complex workflows like ordering groceries. While current benchmarks evaluate general-purpose performancee.g., WebArena or safety against malicious actionse.g., SafeArena, no existing framework assesses an agent's ability to...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•21 views

ClawLess: A Security Model of AI Agents

Autonomous AI agents powered by Large Language Models can reason, plan, and execute complex tasks, but their ability to autonomously retrieve information and run code introduces significant security risks. Existing approaches attempt to regulate agent behavior through training or prompting, which...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•12 views

FortiClient EMS 7.4.6 Vulnerability Assessment Tool

CVE-2026-35616 is a pre-authentication API bypass in FortiClient EMS 7.4.5 and 7.4.6 that allows remote, unauthenticated attackers to bypass certificate-based authentication through HTTP header spoofing. The Django application trusts user-controllable HTTP headers X-SSL-CLIENT-VERIFY,...

9.8CVSS6.1AI score0.88505EPSS
Exploits8
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•13 views

Towards Resilient Intrusion Detection in CubeSats: Challenges, TinyML Solutions, and Future Directions

CubeSats have revolutionized access to space by providing affordable and accessible platforms for research and education. However, their reliance on Commercial Off-The-Shelf COTS components and open-source software has introduced significant cybersecurity vulnerabilities. Ensuring the cybersecuri...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•6 views

Windows Service for User (S4U) Scheduled Task Persistence Event Trigger

This Metasploit module creates a scheduled task that will run using service-for-user S4U. This allows the scheduled task to run even as an unprivileged user that is not logged into the device. This will result in lower security context, allowing access to local resources only. The module requires...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•8 views

LanG -- a Governance-Aware Agentic AI Platform for Unified Security Operations

Modern Security Operations Centers struggle with alert fatigue, fragmented tooling, and limited cross-source event correlation. Challenges that current Security Information Event Management and Extended Detection and Response systems only partially address through fragmented tools. This paper...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•7 views

PoC-Adapt: Semantic-Aware Automated Vulnerability Reproduction with LLM Multi-Agents and Reinforcement Learning-Driven Adaptive Policy

While recent approaches leverage large language models LLMs and multi-agent pipelines to automatically generate proof-of-concept PoC exploits from vulnerability reports, existing systems often suffer from two fundamental limitations: unreliable validation based on surface-level execution signals...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•5 views

Windows Service for User (S4U) Scheduled Task Persistence Schedule Trigger

This Metasploit module creates a scheduled task that will run using service-for-user S4U. This allows the scheduled task to run even as an unprivileged user that is not logged into the device. This will result in lower security context, allowing access to local resources only. The module requires...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•6 views

Auditable Agents

LLM agents call tools, query databases, delegate tasks, and trigger external side effects. Once an agent system can act in the world, the question is no longer only whether harmful actions can be prevented--it is whether those actions remain answerable after deployment. We distinguish...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•4 views

Argus: Reorchestrating Static Analysis Via a Multi-Agent Ensemble for Full-Chain Security Vulnerability Detection

Recent advancements in Large Language Models LLMs have sparked interest in their application to Static Application Security Testing SAST, primarily due to their superior contextual reasoning capabilities compared to traditional symbolic or rule-based methods. However, existing LLM-based approache...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•6 views

SoK: Understanding Anti-Forensics Concepts and Research Practices across Forensic Subdomains

Anti-forensics includes a growing set of techniques designed to obstruct forensic analysis. While cybercriminals increasingly rely on these methods, they also help researchers identify and remedy weaknesses in forensic tools, advancing the overall robustness of digital forensics. Despite repeated...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•18 views

Your Agent, Their Asset: A Real-World Safety Analysis of OpenClaw

OpenClaw, the most widely deployed personal AI agent in early 2026, operates with full local system access and integrates with sensitive services such as Gmail, Stripe, and the filesystem. While these broad privileges enable high levels of automation and powerful personalization, they also expose...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•4 views

Hybrid ResNet-1D-BiGRU with Multi-Head Attention for Cyberattack Detection in Industrial IoT Environments

This study introduces a hybrid deep learning model for intrusion detection in Industrial IoT IIoT systems, combining ResNet-1D, BiGRU, and Multi-Head Attention MHA for effective spatial-temporal feature extraction and attention-based feature weighting. To address class imbalance, SMOTE was applie...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•4 views

Signature Placement in Post-Quantum TLS Certificate Hierarchies: An Experimental Study of ML-DSA and SLH-DSA in TLS 1.3 Authentication

Post-quantum migration in TLS 1.3 should not be understood as a flat substitution problem in which one signature algorithm is replaced by another and deployment cost is inferred directly from primitive-level benchmarks. In certificate-based authentication, the practical effect of a signature fami...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•6 views

Your LLM Agent Can Leak Your Data: Data Exfiltration Via Backdoored Tool Use

Tool-use large language model LLM agents are increasingly deployed to support sensitive workflows, relying on tool calls for retrieval, external API access, and session memory management. While prior research has examined various threats, the risk of systematic data exfiltration by backdoored...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•5 views

From Incomplete Architecture to Quantified Risk: Multimodal LLM-Driven Security Assessment for Cyber-Physical Systems

Cyber-physical systems often contend with incomplete architectural documentation or outdated information resulting from legacy technologies, knowledge management gaps, and the complexity of integrating diverse subsystems over extended operational lifecycles. This architectural incompleteness...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•4 views

CritBench: A Framework for Evaluating Cybersecurity Capabilities of Large Language Models in IEC 61850 Digital Substation Environments

The advancement of Large Language Models LLMs has raised concerns regarding their dual-use potential in cybersecurity. Existing evaluation frameworks overwhelmingly focus on Information Technology IT environments, failing to capture the constraints, and specialized protocols of Operational...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•5 views

MA-IDS: Multi-Agent RAG Framework for IoT Network Intrusion Detection with an Experience Library

Network Intrusion Detection Systems NIDS face important limitations. Signature-based methods are effective for known attack patterns, but they struggle to detect zero-day attacks and often miss modified variants of previously known attacks, while many machine learning approaches offer limited...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•6 views

Stop Fixating on Prompts: Reasoning Hijacking and Constraint Tightening for Red-Teaming LLM Agents

With the widespread application of LLM-based agents across various domains, their complexity has introduced new security threats. Existing red-team methods mostly rely on modifying user prompts, which lack adaptability to new data and may impact the agent's performance. To address the challenge,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/04/07 12:0 a.m.•7 views

Guiding Symbolic Execution with Static Analysis and LLMs for Vulnerability Discovery

Symbolic execution detects vulnerabilities with precision, but applying it to large codebases requires harnesses that set up symbolic state, model dependencies, and specify assertions. Writing these harnesses has traditionally been a manual process requiring expert knowledge, which significantly...

6.1AI score
Exploits0
Total number of security vulnerabilities6803