Lucene search
K
PacketstormnewsRecent

6825 matches found

Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.12 views

QORE : Quantum Secure 5G/B5G Core

Quantum computing is reshaping the security landscape of modern telecommunications. The cryptographic foundations that secure todays 5G systems, including RSA, Elliptic Curve Cryptography ECC, and Diffie-Hellman DH, are all susceptible to attacks enabled by Shors algorithm. Protecting 5G networks...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.10 views

Quantum Autoencoders for Anomaly Detection in Cybersecurity

Anomaly detection in cybersecurity is a challenging task, where normal events far outnumber anomalous ones with new anomalies occurring frequently. Classical autoencoders have been used for anomaly detection, but struggles in data-limited settings which quantum counterparts can potentially...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.4 views

GNUnet P2P Framework 0.25.2

GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP IPv4 and IPv6, TCP IPv4 and IPv6, HTTP, o...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.4 views

Ultra-Fast Wireless Power Hacking

The rapid growth of electric vehicles EVs has driven the development of roadway wireless charging technology, effectively extending EV driving range. However, wireless charging introduces significant cybersecurity challenges. Any receiver within the magnetic field can potentially extract energy,...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.8 views

Sensing Security in Near-Field ISAC: Exploiting Scatterers for Eavesdropper Deception

In this paper, we explore sensing security in near-field NF integrated sensing and communication ISAC scenarios by exploiting known scatterers in the sensing scene. We propose a location deception LD scheme where scatterers are deliberately illuminated with probing power that is higher than that...

6.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.6 views

Exploring the Effect of DNN Depth on Adversarial Attacks in Network Intrusion Detection Systems

Adversarial attacks pose significant challenges to Machine Learning ML systems and especially Deep Neural Networks DNNs by subtly manipulating inputs to induce incorrect predictions. This paper investigates whether increasing the layer depth of deep neural networks affects their robustness agains...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.30 views

Who Coordinates U.S. Cyber Defense? A Co-Authorship Network Analysis of Joint Cybersecurity Advisories (2024--2025)

Cyber threats increasingly demand joint responses, yet the organizational dynamics behind multi-agency cybersecurity collaboration remain poorly understood. Understanding who leads, who bridges, and how agencies coordinate is critical for strengthening both U.S. homeland security and allied defen...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.6 views

Separating Pseudorandom Generators from Logarithmic Pseudorandom States

Pseudorandom generators PRGs are a foundational primitive in classical cryptography, underpinning a wide range of constructions. In the quantum setting, pseudorandom quantum states PRSs were proposed as a potentially weaker assumption that might serve as a substitute for PRGs in cryptographic...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.6 views

Falco 0.42.0

Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/22 12:0 a.m.5 views

Active Localization of Close-Range Adversarial Acoustic Sources for Underwater Data Center Surveillance

Underwater data infrastructures offer natural cooling and enhanced physical security compared to terrestrial facilities, but are susceptible to acoustic injection attacks that can disrupt data integrity and availability. This work presents a comprehensive surveillance framework for localizing and...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.8 views

The Trust Paradox in LLM-Based Multi-Agent Systems: When Collaboration Becomes a Security Vulnerability

Multi-agent systems powered by large language models are advancing rapidly, yet the tension between mutual trust and security remains underexplored. We introduce and empirically validate the Trust-Vulnerability Paradox TVP: increasing inter-agent trust to enhance coordination simultaneously expan...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.4 views

Censorship Chokepoints: New Battlegrounds for Regional Surveillance, Censorship and Influence on the Internet

Undoubtedly, the Internet has become one of the most important conduits to information for the general public. Nonetheless, Internet access can be and has been limited systematically or blocked completely during political events in numerous countries and regions by various censorship mechanisms...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.6 views

Forward to Hell? on the Potentials of Misusing Transparent DNS Forwarders in Reflective Amplification Attacks

The DNS infrastructure is infamous for facilitating reflective amplification attacks. Various countermeasures such as server shielding, access control, rate limiting, and protocol restrictions have been implemented. Still, the threat remains throughout the deployment of DNS servers. In this paper...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.4 views

Real-World Usability of Vulnerability Proof-Of-Concepts: A Comprehensive Study

The Proof-of-Concept PoC for a vulnerability is crucial in validating its existence, mitigating false positives, and illustrating the severity of the security threat it poses. However, research on PoCs significantly lags behind studies focusing on vulnerability data. This discrepancy can be...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.12 views

HarmNet: A Framework for Adaptive Multi-Turn Jailbreak Attacks on Large Language Models

Large Language Models LLMs remain vulnerable to multi-turn jailbreak attacks. We introduce HarmNet, a modular framework comprising ThoughtNet, a hierarchical semantic network; a feedback-driven Simulator for iterative query refinement; and a Network Traverser for real-time adaptive attack...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.6 views

HAMLOCK: HArdware-Model LOgically Combined AttacK

The growing use of third-party hardware accelerators e.g., FPGAs, ASICs for deep neural networks DNNs introduces new security vulnerabilities. Conventional model-level backdoor attacks, which only poison a model's weights to misclassify inputs with a specific trigger, are often detectable because...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.6 views

The Attribution Story of WhisperGate: An Academic Perspective

This paper explores the challenges of cyberattack attribution, specifically APTs, applying the case study approach for the WhisperGate cyber operation of January 2022 executed by the Russian military intelligence service GRU and targeting Ukrainian government entities. The study provides a detail...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.6 views

DRsam: Detection of Fault-Based Microarchitectural Side-Channel Attacks in RISC-V Using Statistical Preprocessing and Association Rule Mining

RISC-V processors are becoming ubiquitous in critical applications, but their susceptibility to microarchitectural side-channel attacks is a serious concern. Detection of microarchitectural attacks in RISC-V is an emerging research topic that is relatively underexplored, compared to x86 and ARM...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.5 views

Cyberattack Detection in Critical Infrastructure and Supply Chains

Cyberattack detection in Critical Infrastructure and Supply Chains has become challenging in Industry 4.0. Intrusion Detection Systems IDS are deployed to counter the cyberattacks. However, an IDS effectively detects attacks based on the known signatures and patterns, Zero-day attacks go...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.17 views

Genesis: Evolving Attack Strategies for LLM Web Agent Red-Teaming

As large language model LLM agents increasingly automate complex web tasks, they boost productivity while simultaneously introducing new security risks. However, relevant studies on web agent attacks remain limited. Existing red-teaming approaches mainly rely on manually crafted attack strategies...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.5 views

Securing IoT Communications Via Anomaly Traffic Detection: Synergy of Genetic Algorithm and Ensemble Method

The rapid growth of the Internet of Things IoT has transformed industries by enabling seamless data exchange among connected devices. However, IoT networks remain vulnerable to security threats such as denial of service DoS attacks, anomalous traffic, and data manipulation due to decentralized...

6.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.7 views

Evaluating Large Language Models in Detecting Secrets in Android Apps

Mobile apps often embed authentication secrets, such as API keys, tokens, and client IDs, to integrate with cloud services. However, developers often hardcode these credentials into Android apps, exposing them to extraction through reverse engineering. Once compromised, adversaries can exploit...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.5 views

Prompting the Priorities: A First Look at Evaluating LLMs for Vulnerability Triage and Prioritization

Security analysts face increasing pressure to triage large and complex vulnerability backlogs. Large Language Models LLMs offer a potential aid by automating parts of the interpretation process. We evaluate four models ChatGPT, Claude, Gemini, and DeepSeek across twelve prompting techniques to...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.6 views

Quantifying Security for Networked Control Systems: A Review

Networked Control Systems NCSs are integral in critical infrastructures such as power grids, transportation networks, and production systems. Ensuring the resilient operation of these large-scale NCSs against cyber-attacks is crucial for societal well-being. Over the past two decades, extensive...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.22 views

CLASP: Cost-Optimized LLM-Based Agentic System for Phishing Detection

Phishing websites remain a significant cybersecurity threat, necessitating accurate and cost-effective detection mechanisms. In this paper, we present CLASP, a novel system that effectively identifies phishing websites by leveraging multiple intelligent agents, built using large language models...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.7 views

RESCUE: Retrieval Augmented Secure Code Generation

Despite recent advances, Large Language Models LLMs still generate vulnerable code. Retrieval-Augmented Generation RAG has the potential to enhance LLMs for secure code generation by incorporating external security knowledge. However, the conventional RAG design struggles with the noise of raw...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.5 views

The Hidden Dangers of Public Serverless Repositories: An Empirical Security Assessment

Serverless computing has rapidly emerged as a prominent cloud paradigm, enabling developers to focus solely on application logic without the burden of managing servers or underlying infrastructure. Public serverless repositories have become key to accelerating the development of serverless...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.9 views

WhatWeb Scanner 0.6.3

WhatWeb is a next-generation web scanner. WhatWeb recognizes web technologies including content management systems CMS, blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices. WhatWeb has over 1800 plugins, each to recognize something different...

7.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.7 views

Exploiting the Potential of Linearity in Automatic Differentiation and Computational Cryptography

The concept of linearity plays a central role in both mathematics and computer science, with distinct yet complementary meanings. In mathematics, linearity underpins functions and vector spaces, forming the foundation of linear algebra and functional analysis. In computer science, it relates to...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.5 views

BlueCodeAgent: A Blue Teaming Agent Enabled by Automated Red Teaming for CodeGen AI

As large language models LLMs are increasingly used for code generation, concerns over the security risks have grown substantially. Early research has primarily focused on red teaming, which aims to uncover and evaluate vulnerabilities and risks of CodeGen models. However, progress on the blue...

7.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.12 views

Multimodal Safety Is Asymmetric: Cross-Modal Exploits Unlock Black-Box MLLMs Jailbreaks

Multimodal large language models MLLMs have demonstrated significant utility across diverse real-world applications. But MLLMs remain vulnerable to jailbreaks, where adversarial inputs can collapse their safety constraints and trigger unethical responses. In this work, we investigate jailbreaks i...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.13 views

CrossGuard: Safeguarding MLLMs against Joint-Modal Implicit Malicious Attacks

Multimodal Large Language Models MLLMs achieve strong reasoning and perception capabilities but are increasingly vulnerable to jailbreak attacks. While existing work focuses on explicit attacks, where malicious content resides in a single modality, recent studies reveal implicit attacks, in which...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/20 12:0 a.m.29 views

Cybersecurity AI: Evaluating Agentic Cybersecurity in Attack/Defense CTFs

We empirically evaluate whether AI systems are more effective at attacking or defending in cybersecurity. Using CAI Cybersecurity AI's parallel execution framework, we deployed autonomous agents in 23 Attack/Defense CTF battlegrounds. Statistical analysis reveals defensive agents achieve 54.3%...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/19 12:0 a.m.6 views

Can Transformer Memory Be Corrupted? Investigating Cache-Side Vulnerabilities in Large Language Models

Even when prompts and parameters are secured, transformer language models remain vulnerable because their key-value KV cache during inference constitutes an overlooked attack surface. This paper introduces Malicious Token Injection MTI, a modular framework that systematically perturbs cached key...

7.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/19 12:0 a.m.7 views

When AI Takes the Wheel: Security Analysis of Framework-Constrained Program Generation

In recent years, the AI wave has grown rapidly in software development. Even novice developers can now design and generate complex framework-constrained software systems based on their high-level requirements with the help of Large Language Models LLMs. However, when LLMs gradually "take the whee...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/19 12:0 a.m.6 views

Cryptanalysis of a Privacy-Preserving Ride-Hailing Service from NSS 2022

Ride-Hailing Services RHS match a ride request initiated by a rider with a suitable driver responding to the ride request. A Privacy-Preserving RHS PP-RHS aims to facilitate ride matching while ensuring the privacy of riders' and drivers' location data w.r.t. the Service Provider SP. At NSS 2022,...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/19 12:0 a.m.4 views

BreakFun: Jailbreaking LLMs Via Schema Exploitation

The proficiency of Large Language Models LLMs in processing structured data and adhering to syntactic rules is a capability that drives their widespread adoption but also makes them paradoxically vulnerable. In this paper, we investigate this vulnerability through BreakFun, a jailbreak methodolog...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/19 12:0 a.m.9 views

ThreatIntel-Andro: Expert-Verified Benchmarking for Robust Android Malware Research

The rapidly evolving Android malware ecosystem demands high-quality, real-time datasets as a foundation for effective detection and defense. With the widespread adoption of mobile devices across industrial systems, they have become a critical yet often overlooked attack surface in industrial...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/18 12:0 a.m.6 views

Feedback Lunch: Deep Feedback Codes for Wiretap Channels

We consider reversely-degraded wiretap channels, for which the secrecy capacity is zero if there is no channel feedback. This work focuses on a seeded modular code design for the Gaussian wiretap channel with channel output feedback, combining universal hash functions for security and learned...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/18 12:0 a.m.6 views

$Ρ$Hammer: Reviving RowHammer Attacks on New Architectures Via Prefetching

Rowhammer is a critical vulnerability in dynamic random access memory DRAM that continues to pose a significant threat to various systems. However, we find that conventional load-based attacks are becoming highly ineffective on the most recent architectures such as Intel Alder and Raptor Lake. In...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/18 12:0 a.m.20 views

Structuring Security: A Survey of Cybersecurity Ontologies, Semantic Log Processing, and LLMs Application

This survey investigates how ontologies, semantic log processing, and Large Language Models LLMs enhance cybersecurity. Ontologies structure domain knowledge, enabling interoperability, data integration, and advanced threat analysis. Security logs, though critical, are often unstructured and...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/18 12:0 a.m.7 views

Toward Understanding Security Issues in the Model Context Protocol Ecosystem

The Model Context Protocol MCP is an emerging open standard that enables AI-powered applications to interact with external tools through structured metadata. A rapidly growing ecosystem has formed around MCP, including a wide range of MCP hosts i.e., Cursor, Windsurf, Claude Desktop, and Cline, M...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/18 12:0 a.m.5 views

Colliding with Adversaries at ECML-PKDD 2025 Adversarial Attack Competition 1st Prize Solution

This report presents the winning solution for Task 1 of Colliding with Adversaries: A Challenge on Robust Learning in High Energy Physics Discovery at ECML-PKDD 2025. The task required designing an adversarial attack against a provided classification model that maximizes misclassification while...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.8 views

Don't Look Up: There Are Sensitive Internal Links in the Clear on GEO Satellites

Geosynchronous GEO satellite links provide IP backhaul to remote critical infrastructure for utilities, telecom, government, military, and commercial users. To date, academic studies of GEO infrastructure have focused on a handful of satellites and specific use cases. The authors of this paper...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.5 views

WebRTC Metadata and IP Leakage in Modern Browsers: A Cross-Platform Measurement Study

Web Real-Time Communication WebRTC enables real-time peer-to-peer communication, but its Interactive Connectivity Establishment ICE process can unintentionally expose internal and public IP addresses as metadata. This paper presents a cross-platform measurement study of WebRTC metadata leakage...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.8 views

When Intelligence Fails: An Empirical Study on Why LLMs Struggle with Password Cracking

The remarkable capabilities of Large Language Models LLMs in natural language understanding and generation have sparked interest in their potential for cybersecurity applications, including password guessing. In this study, we conduct an empirical investigation into the efficacy of pre-trained LL...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.10 views

Towards Proactive Defense against Cyber Cognitive Attacks

Cyber cognitive attacks leverage disruptive innovations DIs to exploit psychological biases and manipulate decision-making processes. Emerging technologies, such as AI-driven disinformation and synthetic media, have accelerated the scale and sophistication of these threats. Prior studies primaril...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.13 views

MalCVE: Malware Detection and CVE Association Using Large Language Models

Malicious software attacks are having an increasingly significant economic impact. Commercial malware detection software can be costly, and tools that attribute malware to the specific software vulnerabilities it exploits are largely lacking. Understanding the connection between malware and the...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.20 views

C/N0 Analysis-Based GPS Spoofing Detection with Variable Antenna Orientations

GPS spoofing poses a growing threat to aviation by falsifying satellite signals and misleading aircraft navigation systems. This paper demonstrates a proof-of-concept spoofing detection strategy based on analyzing satellite Carrier-to-Noise Density Ratio C/N$0$ variation during controlled static...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/17 12:0 a.m.8 views

SoK: Taxonomy and Evaluation of Prompt Security in Large Language Models

Large Language Models LLMs have rapidly become integral to real-world applications, powering services across diverse sectors. However, their widespread deployment has exposed critical security risks, particularly through jailbreak prompts that can bypass model alignment and induce harmful outputs...

7AI score
Exploits0
Total number of security vulnerabilities6825